Launchpad.net

CVE 2006-4095

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.

Related bugs and status

CVE-2006-4095 (Candidate) is related to these bugs:

Bug #59202: BIND vulnerability

Summary				In	Importance	Status
	59202	BIND vulnerability		bind9 (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.niscc.gov.u...
CERT-VN: VU#915404
SECTRACK: 1016794
SECUNIA: 21752
DEBIAN: DSA-1172
FREEBSD: FreeBSD-SA-06:20.bind
OPENBSD: [3.9] 20060908 010: SE...
UBUNTU: USN-343-1
BID: 19859
SECUNIA: 21816
SECUNIA: 21786
SECUNIA: 21818
SECUNIA: 21828
SECUNIA: 21835
SECUNIA: 21838
GENTOO: GLSA-200609-11
SECUNIA: 21912
SECUNIA: 21926
SUSE: SUSE-SR:2006:023
SUSE: SUSE-SR:2006:024
SECUNIA: 22298
CONFIRM: https://issues.rpath.c...
OPENPKG: OpenPKG-SA-2006.019
HP: HPSBTU02207
HP: SSRT061213
HP: SSRT061239
HP: SSRT071304
SECUNIA: 24950
CONFIRM: http://docs.info.apple...
SECUNIA: 25402
APPLE: APPLE-SA-2007-05-24
MANDRIVA: MDKSA-2006:163
VUPEN: ADV-2006-3473
VUPEN: ADV-2007-1401
VUPEN: ADV-2007-1939
SLACKWARE: SSA:2006-257-01
XF: bind-dnssec-rrset-dos(...
BUGTRAQ: 20060908 rPSA-2006-016...