[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] [ Security ] - bind DoS vulnerability
- Subject: RE: [cobalt-security] [ Security ] - bind DoS vulnerability
- From: "Jose Luis Aguilar" <jlaguilar@xxxxxxx>
- Date: Tue, 14 Nov 2000 11:06:25 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Jeff,
I get permission denied when I try to download those RPMs from the Cobalt's
FTP server. Are the permission set right?
Jose Aguilar
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Jeff Lovell
Sent: Tuesday, November 14, 2000 12:07 AM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: [cobalt-security] [ Security ] - bind DoS vulnerability
Overview:
---------
Recently a discovery of a vulnerability in the version of
bind ( 8.2.x ) that is shipped on Cobalt RaQ2, RaQ3, and RaQ4,
allows remote users to perform a DoS ( Denial of Service )
attack leaving the name services on the RaQs unavailable.
In order to help eliminate the immediate threat of these
attacks, Cobalt has made available a set of RPMs that can
be installed to eliminate the vulnerability.
These RPMs have not gone through extensive testing by
our Quality Assurance department, and it is recommended
that you do not install these if you are not familiar with
installing and un-install RPMs.
Details about the bug can be found at:
http://www.cert.org/advisories/CA-2000-20.html
Location:
---------
RaQ3 and RaQ4:
ftp://ftp.cobaltnet.com/pub/experimental/RPMS/i386/bind-8.2.2_P7-C1.i386.rpm
ftp://ftp.cobaltnet.com/pub/experimental/RPMS/i386/bind-devel-8.2.2_P7-C1.i3
86.rpm
ftp://ftp.cobaltnet.com/pub/experimental/RPMS/i386/bind-utils-8.2.2_P7-C1.i3
86.rpm
RaQ2:
ftp://ftp.cobaltnet.com/pub/experimental/RPMS/mips/bind-8.2.2_P7-C1.mips.rpm
ftp://ftp.cobaltnet.com/pub/experimental/RPMS/mips/bind-devel-8.2.2_P7-C1.mi
ps.rpm
ftp://ftp.cobaltnet.com/pub/experimental/RPMS/mips/bind-utils-8.2.2_P7-C1.mi
ps.rpm
Source:
ftp://ftp.cobaltnet.com/pub/experimental/SRPMS/bind-8.2.2_P7-C1.src.rpm
md5sum:
-------
RaQ3/RaQ4:
3f057959ab128f5c040d3cdc9252df18 bind-8.2.2_P7-C1.i386.rpm
947e57b001736d55bded515b1179a34e bind-devel-8.2.2_P7-C1.i386.rpm
ec02af0326da4c481c9302b4153e04a6 bind-utils-8.2.2_P7-C1.i386.rpm
RaQ2:
88e2fadca3c14516df9a976904e77c0a bind-8.2.2_P7-C1.mips.rpm
b31e935b725d3230fc0eaa4ccd53c829 bind-devel-8.2.2_P7-C1.mips.rpm
315c4472ceba0d89a437e9e5a94bafdc bind-utils-8.2.2_P7-C1.mips.rpm
Source:
bffa34c4ce87cb8c629879cbb3a8b852 bind-8.2.2_P7-C1.src.rpm
Notes:
------
The RPMS and SRPMS for 8.2.2_P5 are available if you would
like to reinstall the RPMS if you encounter problems. You
can get them from:
ftp://ftp.cobaltnet.com/pub/users/jlovell/rpms/
Please direct and bugs or comments about this patch to me
jlovell@xxxxxxxxxxx
Jeff
--
Jeff Lovell
Cobalt Networks, Inc.
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security