Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 374623 (CVE-2010-3762) - net-dns/bind-9.7.2_P2: DoS (CVE-2010-3762)
Summary: net-dns/bind-9.7.2_P2: DoS (CVE-2010-3762)
Status: RESOLVED FIXED
Alias: CVE-2010-3762
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://www.isc.org/software/bind/adv...
Whiteboard: B4 [glsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2011-07-10 00:42 UTC by GLSAMaker/CVETool Bot
Modified: 2012-06-02 14:00 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2011-07-10 00:42:33 UTC
CVE-2010-3762 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3762):
  ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not
  properly handle certain bad signatures if multiple trust anchors exist for a
  single zone, which allows remote attackers to cause a denial of service
  (daemon crash) via a DNS query.


Opened for tracking purposes.
Comment 1 Stefan Behte (RETIRED) gentoo-dev Security 2011-07-10 00:45:16 UTC
Added to existing GLSA.
Comment 2 GLSAMaker/CVETool Bot gentoo-dev 2012-06-02 14:00:06 UTC
This issue was resolved and addressed in
 GLSA 201206-01 at http://security.gentoo.org/glsa/glsa-201206-01.xml
by GLSA coordinator Stefan Behte (craig).