Bug 171765

Summary: Bind security problem: A Specially Crafted Resource Record Could Cause named to Terminate
Product: Base System Reporter: Alexey Kouznetsov <alexey>
Component: binAssignee: Doug Barton <dougb>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Unspecified   
Hardware: Any   
OS: Any   

Description Alexey Kouznetsov 2012-09-19 08:40:10 UTC 
http://www.isc.org/software/bind/advisories/cve-2012-4244

-cut-
A nameserver can be caused to exit with a REQUIRE exception if it can be induced to load a specially crafted resource record.

If a record with RDATA in excess of 65535 bytes is loaded into a nameserver, a subsequent query for that record will cause named to exit with an assertion failure.

Please Note: Versions of BIND 9.4 and 9.5 are also affected, but these branches are beyond their "end of life" (EOL) and no longer receive testing or security fixes from ISC.

This vulnerability can be exploited remotely against recursive servers by inducing them to query for records provided by an authoritative server. It affects authoritative servers if a zone containing this type of resource record is loaded from file or provided via zone transfer.
-cut-

Fix: 

ISC released patches for the problem. Merge patches to the source tree .

BIND versions where problem fixed:
BIND 9 version 9.7.7, 9.7.6-P3
BIND 9 version 9.6-ESV-R8, 9.6-ESV-R7-P3
BIND 9 version 9.8.4, 9.8.3-P3
BIND 9 version 9.9.2, 9.9.1-P3

port versions already updated. Problem still in main base.
Comment 1 Eitan Adler freebsd_committer freebsd_triage 2012-09-19 17:48:12 UTC 
Responsible Changed
From-To: freebsd-bugs->dougb

this is your area of expertise
Comment 2 Doug Barton freebsd_committer freebsd_triage 2012-09-19 19:26:11 UTC 
State Changed
From-To: open->closed


As you well know, I'm already aware of this issue. Your PRs are not helping.