DE STERS

DE STERS: Duplicate content of http://news.softpedia.com/news/canonical-patches-two-bind-vulnerabilities-in-all-supported-ubuntu-oses-update-now-488012.shtml

---------
Canonical published details about yet another couple of Bind vulnerabilities that had been found and fixed in Ubuntu 15.04, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS operating systems.

Quite a few Bind related issues have been identified in this latest cycle and each type Ubuntu maintainers have been quick to push the updates. From the looks of it, Bind could could have been made to crash if it received specially crafted network traffic.

"Pories Ediansyah discovered that Bind incorrectly handled certain configurations involving DNS64. A remote attacker could use this issue with a specially crafted query to cause Bind to crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS."

For a more detailed description of the problems, you can see Canonical's security notification. Users have been advised to upgrade their systems as soon as possible.

The flaws can be fixed if you upgrade your system(s) to the latest bind9  packages specific to each distribution. To apply the patch, you can run the Update Manager application.

In general, a standard system update will make all the necessary changes. A system restart is not needed and you can also use the terminal to upgrade the system. Just enter the following commands in a terminal near you: