[dns-operations] BIND Security Advisory May 2011: Large RRSIG RRsets and Negative Caching can crash named

SM sm at resistor.net
Fri May 27 08:03:10 UTC 2011

Hi Stephane,
At 00:33 27-05-2011, Stephane Bortzmeyer wrote:
>But no longer (federalreserve.gov is unsigned).


>I don't know how the bug was handled but I did not see yet an announce
>by a "vendor" about an updated package. So, currently, only the people
>who installed BIND manually can upgrade.

ISC released a fix in less than 24 hours.  There is already a PR with 
a fix for one "vendor".


More information about the dns-operations mailing list