patches/packages/bind-9.7.6_P1-i486-1_slack12.1.tgz
This release fixes an issue that could crash BIND, leading to a denial of
service. It also fixes the so-called “ghost names attack” whereby a
remote attacker may trigger continued resolvability of revoked domain names.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1033
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1667
IMPORTANT NOTE: This is a upgraded version of BIND, _not_ a patched one.
It is likely to be more strict about the correctness of configuration files.
Care should be taken about deploying this upgrade on production servers to
avoid an unintended interruption of service.
(* Security fix *)