[Bug 714814] [NEW] Serious validation errors in Bind 9.7.0
Antoin Verschuren
714814 at bugs.launchpad.net
Mon Feb 7 20:24:09 UTC 2011
*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: bind9
Ubuntu 10.04 LTS still uses Bind 9.7.0-P1 which has serious validation
errors.
Please read
http://www.isc.org/announcement/bind-9-dnssec-validation-fails-new-ds-record
and
http://www.verisignlabs.com/documents/BIND-DS-Servfail.pdf
and please backport bind9 in Lucid to at least 9.7.2 before March 31.
Since Lucid is a LTS version, this version is mostly used in production systems as is, with no manual upgrades.
I've writen a simular bugreport without the detailed documentation from ISC and Verisign half a year ago:
https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/651875
But no action was taken.
If no action is taken before March 31, a lot of validating resolvers will get very busy, and users not able to resolve .com domains.
** Affects: bind9 (Ubuntu)
Importance: Undecided
Status: New
** Visibility changed to: Public
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in ubuntu.
https://bugs.launchpad.net/bugs/714814
Title:
Serious validation errors in Bind 9.7.0
More information about the Ubuntu-server-bugs
mailing list