Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-131: BIND Vulnerabilities

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-131: BIND Vulnerabilities
# 1  
Old 01-29-2008
S-131: BIND Vulnerabilities
An off-by-one error in the inet_network() function in libbind could lead to memory corruption with certain inputs. The risk is MEDIUM. Applications linked against libbind which call inet_network() with untrusted inputs could lead to a denial-of-service or potentially code execution.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

4 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Bind

Hi All I need to do bind of exiting filesystem to new storage allocated mount --bind /prod/OpenCSS /var/lib/test echo "/prod/OpenCSS /var/lib/pgsql bind bind 0 0" >> /etc/fstab will this command just work ? (2 Replies)
Discussion started by: anil529
2 Replies

2. UNIX for Dummies Questions & Answers

Can't bind to IP

When you get the message can't bind to ip already in use. is there a command to search to see everything that is using that IP? I've already check the host and hostname files (2 Replies)
Discussion started by: mchelle_99
2 Replies

3. IP Networking

The third argument of bind()

int bind(int socket, const struct sockaddr *address, socklen_t address_len); Man page says it specifies the length of the sockaddr structure pointed to by the address argument. But why bind() can't figure out the length itself, since the first member (eg:AF_INET or... (4 Replies)
Discussion started by: vistastar
4 Replies

4. UNIX for Dummies Questions & Answers

my_server.1.131.10.in-addr.arpa

Hi all, I am a newbie of setting up DNS server. Everything went fine except one thing. When I do "nslookup", my server name apears as "my_server.1.131.10.in-addr.arpa" rather than "my_server.my_domian.com" on my clients. Do you know how to fix it? Thanks. (2 Replies)
Discussion started by: stancwong
2 Replies
Login or Register to Ask a Question

LEARN ABOUT ULTRIX

svc.conf

svc.conf(5)							File Formats Manual						       svc.conf(5)

Name
       svc.conf - database service selection and security configuration file

Description
       The  file  is a mandatory system file that allows you to select the desired services on a per database basis.  It also allows you to select
       security parameters.  The default file has as the service selected for each database.  This file must be modified when adding or removing a
       naming  service,  such  as Yellow Pages or BIND/Hesiod.	The valid services are and Modifications to the file can be made with an editor or
       the command for database service selection.  They can be made with the command for security parameter selection.  Changes take effect imme-
       diately.  The recommended configuration is that you have as the first entry for all databases.

Restrictions
       White space is allowed only after commas or newlines.

       You must have as the first entry for the and databases.

       You must have as the entry for the database.

       You must have either or as the entry for the database.

Examples
       The  following  is a sample file: aliases=yp auth=local,bind group=local,yp hosts=local,bind,yp netgroup=yp networks=bind passwd=local,bind
       protocols=local,bind rpc=local,bind services=local

       PASSLENMIN=6 PASSLENMAX=16 SOFTEXP=604800	 # 7 days in seconds SECLEVEL=BSD	    # (BSD | UPGRADE | ENHANCED)

Files
See Also
       getsvc(3), svcsetup(8)
       Guide to the BIND/Hesiod Service
       Guide to the Yellow Pages Service

																       svc.conf(5)