Issued:

2009-07-02

Updated:

2009-07-02

RHBA-2009:1137 - bind bug fix update

Synopsis

bind bug fix update

Type/Severity

Bug Fix Advisory

Topic

Updated bind packages that resolve an issue are now available for Red Hat Enterprise Linux 5.

Description

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

These updated bind packages fix the following bug:

• DNSSEC, the Domain Name System Security Extensions, are a set of specifications used to secure information provided by the domain name system. One of the specifications, DNSSEC Lookaside Validation (DLV), failed to handle unknown algorithms, which caused the name resolution of "gov" and "org" top-level domains to fail. DLV in these updated packages is now able to handle unknown algorithms, and thus the validation and resolution of top-level domains (such as "org" and "gov") succeeds, thus resolving the issue. (BZ#504794)

All users of bind are advised to upgrade to these updated packages, which resolve this issue.

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

Updated Packages

• bind-utils-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-devel-9.3.4-10.P1.el5_3.1.ppc.rpm
• bind-devel-9.3.4-10.P1.el5_3.1.ia64.rpm
• bind-libbind-devel-9.3.4-10.P1.el5_3.1.ia64.rpm
• bind-sdb-9.3.4-10.P1.el5_3.1.x86_64.rpm
• bind-9.3.4-10.P1.el5_3.1.src.rpm
• bind-9.3.4-10.P1.el5_3.1.x86_64.rpm
• bind-libs-9.3.4-10.P1.el5_3.1.ia64.rpm
• bind-libs-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-chroot-9.3.4-10.P1.el5_3.1.ppc.rpm
• bind-devel-9.3.4-10.P1.el5_3.1.s390.rpm
• caching-nameserver-9.3.4-10.P1.el5_3.1.s390x.rpm
• bind-libbind-devel-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-devel-9.3.4-10.P1.el5_3.1.ppc64.rpm
• bind-libs-9.3.4-10.P1.el5_3.1.ppc64.rpm
• bind-utils-9.3.4-10.P1.el5_3.1.ppc.rpm
• bind-utils-9.3.4-10.P1.el5_3.1.s390x.rpm
• bind-sdb-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-libs-9.3.4-10.P1.el5_3.1.x86_64.rpm
• bind-sdb-9.3.4-10.P1.el5_3.1.s390x.rpm
• bind-libs-9.3.4-10.P1.el5_3.1.ppc.rpm
• bind-libbind-devel-9.3.4-10.P1.el5_3.1.s390x.rpm
• caching-nameserver-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-devel-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-9.3.4-10.P1.el5_3.1.ia64.rpm
• bind-sdb-9.3.4-10.P1.el5_3.1.ppc.rpm
• bind-chroot-9.3.4-10.P1.el5_3.1.ia64.rpm
• bind-utils-9.3.4-10.P1.el5_3.1.ia64.rpm
• bind-devel-9.3.4-10.P1.el5_3.1.x86_64.rpm
• bind-libbind-devel-9.3.4-10.P1.el5_3.1.x86_64.rpm
• bind-utils-9.3.4-10.P1.el5_3.1.x86_64.rpm
• caching-nameserver-9.3.4-10.P1.el5_3.1.ppc.rpm
• bind-libbind-devel-9.3.4-10.P1.el5_3.1.s390.rpm
• bind-chroot-9.3.4-10.P1.el5_3.1.s390x.rpm
• bind-chroot-9.3.4-10.P1.el5_3.1.x86_64.rpm
• bind-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-chroot-9.3.4-10.P1.el5_3.1.i386.rpm
• bind-sdb-9.3.4-10.P1.el5_3.1.ia64.rpm
• bind-libbind-devel-9.3.4-10.P1.el5_3.1.ppc64.rpm
• bind-libbind-devel-9.3.4-10.P1.el5_3.1.ppc.rpm
• bind-libs-9.3.4-10.P1.el5_3.1.s390x.rpm
• bind-9.3.4-10.P1.el5_3.1.s390x.rpm
• bind-libs-9.3.4-10.P1.el5_3.1.s390.rpm
• bind-devel-9.3.4-10.P1.el5_3.1.s390x.rpm
• bind-9.3.4-10.P1.el5_3.1.ppc.rpm
• caching-nameserver-9.3.4-10.P1.el5_3.1.ia64.rpm
• caching-nameserver-9.3.4-10.P1.el5_3.1.x86_64.rpm

Fixes

• This content is not included.BZ - 504794

CVEs

(none)

References

(none)

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.