Update: BIND 9 recursive error being investigated
bgreene at isc.org
Wed Nov 16 10:26:18 UTC 2011
Interm Security Advisory: http://www.isc.org/software/bind/advisories/cve-2011-tbd (CVE will be updated)
Organizations across the Internet are reporting crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected
servers crash after logging an error in query.c with the following message: "INSIST(! dns_rdataset_isassociated(sigrdataset))"
Multiple versions are reported as being affected, including all currently supported release versions of ISC BIND 9.
ISC is actively investigating the root cause and working to produce patches which avoid the crash. Further information will be made
available soon (see the advisory http://www.isc.org/software/bind/advisories/cve-2011-tbd).
It is unknown at this time if this is an exploited attack. This is under investigation.
Questions, observations, and data is welcomed. Please send to security-officer at isc.org.
More information about the bind-workers