Scientific Linux Security Update : bind on SL6.x, SL7.x i386/x86_64
High Nessus Plugin ID 85787
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA denial of service flaw was found in the way BIND parsed certain malformed DNSSEC keys. A remote attacker could use this flaw to send a specially crafted DNS query (for example, a query requiring a response from a zone containing a deliberately malformed key) that would cause named functioning as a validating resolver to crash. (CVE-2015-5722)
After installing the update, the BIND daemon (named) will be restarted automatically.
SolutionUpdate the affected packages.