CVE-2010-0290
First published: Wed Jan 20 2010(Updated: )
The original fix for <a href="https://access.redhat.com/security/cve/CVE-2009-4022">CVE-2009-4022</a> was found to be incomplete. BIND was incorrectly caching certain responses without performing proper DNSSEC validation. CNAME and DNAME records could be cached, without proper DNSSEC validation, when received from processing recursive client queries that requested DNSSEC records but indicated that checking should be disabled. A remote attacker could use this flaw to bypass the DNSSEC validation check and perform a cache poisoning attack if the target BIND server was receiving such client queries.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| BIND 9 | =9.0 | |
| BIND 9 | =9.0.0-rc1 | |
| BIND 9 | =9.0.0-rc2 | |
| BIND 9 | =9.0.0-rc3 | |
| BIND 9 | =9.0.0-rc4 | |
| BIND 9 | =9.0.0-rc5 | |
| BIND 9 | =9.0.0-rc6 | |
| BIND 9 | =9.0.1 | |
| BIND 9 | =9.0.1-rc1 | |
| BIND 9 | =9.0.1-rc2 | |
| BIND 9 | =9.1 | |
| BIND 9 | =9.1.0-rc1 | |
| BIND 9 | =9.1.1 | |
| BIND 9 | =9.1.1-rc1 | |
| BIND 9 | =9.1.1-rc2 | |
| BIND 9 | =9.1.1-rc3 | |
| BIND 9 | =9.1.1-rc4 | |
| BIND 9 | =9.1.1-rc5 | |
| BIND 9 | =9.1.1-rc6 | |
| BIND 9 | =9.1.1-rc7 | |
| BIND 9 | =9.1.2 | |
| BIND 9 | =9.1.2-rc1 | |
| BIND 9 | =9.1.3 | |
| BIND 9 | =9.1.3-rc1 | |
| BIND 9 | =9.1.3-rc2 | |
| BIND 9 | =9.1.3-rc3 | |
| BIND 9 | =9.2 | |
| BIND 9 | =9.2.0 | |
| BIND 9 | =9.2.0-a1 | |
| BIND 9 | =9.2.0-a2 | |
| BIND 9 | =9.2.0-a3 | |
| BIND 9 | =9.2.0-b1 | |
| BIND 9 | =9.2.0-b2 | |
| BIND 9 | =9.2.0-rc1 | |
| BIND 9 | =9.2.0-rc10 | |
| BIND 9 | =9.2.0-rc2 | |
| BIND 9 | =9.2.0-rc3 | |
| BIND 9 | =9.2.0-rc4 | |
| BIND 9 | =9.2.0-rc5 | |
| BIND 9 | =9.2.0-rc6 | |
| BIND 9 | =9.2.0-rc7 | |
| BIND 9 | =9.2.0-rc8 | |
| BIND 9 | =9.2.0-rc9 | |
| BIND 9 | =9.2.1 | |
| BIND 9 | =9.2.1-rc1 | |
| BIND 9 | =9.2.1-rc2 | |
| BIND 9 | =9.2.2 | |
| BIND 9 | =9.2.2-p2 | |
| BIND 9 | =9.2.2-p3 | |
| BIND 9 | =9.2.2-rc1 | |
| BIND 9 | =9.2.3 | |
| BIND 9 | =9.2.3-rc1 | |
| BIND 9 | =9.2.3-rc2 | |
| BIND 9 | =9.2.3-rc3 | |
| BIND 9 | =9.2.3-rc4 | |
| BIND 9 | =9.2.4 | |
| BIND 9 | =9.2.4-rc2 | |
| BIND 9 | =9.2.4-rc3 | |
| BIND 9 | =9.2.4-rc4 | |
| BIND 9 | =9.2.4-rc5 | |
| BIND 9 | =9.2.4-rc6 | |
| BIND 9 | =9.2.4-rc7 | |
| BIND 9 | =9.2.4-rc8 | |
| BIND 9 | =9.2.5 | |
| BIND 9 | =9.2.5-b2 | |
| BIND 9 | =9.2.5-rc1 | |
| BIND 9 | =9.2.6 | |
| BIND 9 | =9.2.6-rc1 | |
| BIND 9 | =9.2.7 | |
| BIND 9 | =9.2.7-rc1 | |
| BIND 9 | =9.2.7-rc2 | |
| BIND 9 | =9.2.7-rc3 | |
| BIND 9 | =9.2.8 | |
| BIND 9 | =9.2.9 | |
| BIND 9 | =9.2.9-rc1 | |
| BIND 9 | =9.3 | |
| BIND 9 | =9.3.0 | |
| BIND 9 | =9.3.0-b2 | |
| BIND 9 | =9.3.0-b3 | |
| BIND 9 | =9.3.0-b4 | |
| BIND 9 | =9.3.0-rc1 | |
| BIND 9 | =9.3.0-rc2 | |
| BIND 9 | =9.3.0-rc3 | |
| BIND 9 | =9.3.0-rc4 | |
| BIND 9 | =9.3.1 | |
| BIND 9 | =9.3.1-b2 | |
| BIND 9 | =9.3.1-rc1 | |
| BIND 9 | =9.3.2 | |
| BIND 9 | =9.3.2-rc1 | |
| BIND 9 | =9.3.3 | |
| BIND 9 | =9.3.3-rc1 | |
| BIND 9 | =9.3.3-rc2 | |
| BIND 9 | =9.3.3-rc3 | |
| BIND 9 | =9.3.4 | |
| BIND 9 | =9.3.5 | |
| BIND 9 | =9.3.5-rc1 | |
| BIND 9 | =9.3.5-rc2 | |
| BIND 9 | =9.3.6 | |
| BIND 9 | =9.3.6-rc1 | |
| BIND 9 | =9.4 | |
| BIND 9 | =9.4.0 | |
| BIND 9 | =9.4.0-a1 | |
| BIND 9 | =9.4.0-a2 | |
| BIND 9 | =9.4.0-a3 | |
| BIND 9 | =9.4.0-a4 | |
| BIND 9 | =9.4.0-a5 | |
| BIND 9 | =9.4.0-a6 | |
| BIND 9 | =9.4.0-b1 | |
| BIND 9 | =9.4.0-b2 | |
| BIND 9 | =9.4.0-b3 | |
| BIND 9 | =9.4.0-b4 | |
| BIND 9 | =9.4.0-rc1 | |
| BIND 9 | =9.4.0-rc2 | |
| BIND 9 | =9.4.1 | |
| BIND 9 | =9.4.2 | |
| BIND 9 | =9.4.2-rc1 | |
| BIND 9 | =9.4.2-rc2 | |
| BIND 9 | =9.4.3 | |
| BIND 9 | =9.4.3-b1 | |
| BIND 9 | =9.4.3-b2 | |
| BIND 9 | =9.4.3-b3 | |
| BIND 9 | =9.4.3-p1 | |
| BIND 9 | =9.4.3-p2 | |
| BIND 9 | =9.4.3-p3 | |
| BIND 9 | =9.4.3-p4 | |
| BIND 9 | =9.4.3-p5 | |
| BIND 9 | =9.4.3-rc1 | |
| BIND 9 | =9.6.0 | |
| BIND 9 | =9.6.0-a1 | |
| BIND 9 | =9.6.0-b1 | |
| BIND 9 | =9.6.0-p1 | |
| BIND 9 | =9.6.0-rc1 | |
| BIND 9 | =9.6.0-rc2 | |
| BIND 9 | =9.6.1 | |
| BIND 9 | =9.6.1-b1 | |
| BIND 9 | =9.6.1-p1 | |
| BIND 9 | =9.6.1-p2 | |
| BIND 9 | =9.6.1-rc1 | |
| BIND 9 | =9.7.0-b1 | |
| BIND 9 | =9.10.0 | |
| BIND 9 | =9.10.0-a1 | |
| BIND 9 | =9.10.0-a2 | |
| BIND 9 | =9.10.0-b1 | |
| BIND 9 | =9.10.0-b2 | |
| BIND 9 | =9.10.0-p1 | |
| BIND 9 | =9.10.0-p2 | |
| BIND 9 | =9.10.0-rc1 | |
| BIND 9 | =9.10.0-rc2 | |
| BIND 9 | =9.10.1 | |
| BIND 9 | =9.10.1-b1 | |
| BIND 9 | =9.10.1-b2 | |
| BIND 9 | =9.10.1-p1 | |
| BIND 9 | =9.10.1-p2 | |
| BIND 9 | =9.10.1-rc1 | |
| BIND 9 | =9.10.1-rc2 | |
| BIND 9 | =9.10.2-b1 | |
| BIND 9 | =9.10.2-p1 | |
| BIND 9 | =9.10.2-p2 | |
| BIND 9 | =9.10.2-p3 | |
| BIND 9 | =9.10.2-p4 | |
| BIND 9 | =9.10.2-rc1 | |
| BIND 9 | =9.10.2-rc2 | |
| BIND 9 | =9.10.3 | |
| BIND 9 | =9.10.3-b1 | |
| BIND 9 | =9.10.3-p1 | |
| BIND 9 | =9.10.3-p2 | |
| BIND 9 | =9.10.3-p3 | |
| BIND 9 | =9.10.3-rc1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:021
- http://marc.info/?l=oss-security&m=126393609503704&w=2
- https://www.isc.org/advisories/CVE-2009-4022v6
- https://bugzilla.redhat.com/show_bug.cgi?id=557121
- https://bugzilla.redhat.com/show_bug.cgi?id=554851
- http://www.vupen.com/english/advisories/2010/0176
- https://rhn.redhat.com/errata/RHSA-2010-0062.html
- http://www.ubuntu.com/usn/USN-888-1
- http://marc.info/?l=oss-security&m=126399602810086&w=2
- http://secunia.com/advisories/38219
- http://secunia.com/advisories/38240
- http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00009.html
- http://www.vupen.com/english/advisories/2010/0622
- http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018
- http://www.debian.org/security/2010/dsa-2054
- http://secunia.com/advisories/40086
- http://www.vupen.com/english/advisories/2010/1352
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8884
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7512
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6815
- https://access.redhat.com/security/cve/CVE-2009-4022
- agent/author
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-0290
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/nvd-historical
- vendor/isc
- canonical/bind 9
- version/bind 9/9.0
- version/bind 9/9.0.0-rc1
- version/bind 9/9.0.0-rc2
- version/bind 9/9.0.0-rc3
- version/bind 9/9.0.0-rc4
- version/bind 9/9.0.0-rc5
- version/bind 9/9.0.0-rc6
- version/bind 9/9.0.1
- version/bind 9/9.0.1-rc1
- version/bind 9/9.0.1-rc2
- version/bind 9/9.1
- version/bind 9/9.1.0-rc1
- version/bind 9/9.1.1
- version/bind 9/9.1.1-rc1
- version/bind 9/9.1.1-rc2
- version/bind 9/9.1.1-rc3
- version/bind 9/9.1.1-rc4
- version/bind 9/9.1.1-rc5
- version/bind 9/9.1.1-rc6
- version/bind 9/9.1.1-rc7
- version/bind 9/9.1.2
- version/bind 9/9.1.2-rc1
- version/bind 9/9.1.3
- version/bind 9/9.1.3-rc1
- version/bind 9/9.1.3-rc2
- version/bind 9/9.1.3-rc3
- version/bind 9/9.2
- version/bind 9/9.2.0
- version/bind 9/9.2.0-a1
- version/bind 9/9.2.0-a2
- version/bind 9/9.2.0-a3
- version/bind 9/9.2.0-b1
- version/bind 9/9.2.0-b2
- version/bind 9/9.2.0-rc1
- version/bind 9/9.2.0-rc10
- version/bind 9/9.2.0-rc2
- version/bind 9/9.2.0-rc3
- version/bind 9/9.2.0-rc4
- version/bind 9/9.2.0-rc5
- version/bind 9/9.2.0-rc6
- version/bind 9/9.2.0-rc7
- version/bind 9/9.2.0-rc8
- version/bind 9/9.2.0-rc9
- version/bind 9/9.2.1
- version/bind 9/9.2.1-rc1
- version/bind 9/9.2.1-rc2
- version/bind 9/9.2.2
- version/bind 9/9.2.2-p2
- version/bind 9/9.2.2-p3
- version/bind 9/9.2.2-rc1
- version/bind 9/9.2.3
- version/bind 9/9.2.3-rc1
- version/bind 9/9.2.3-rc2
- version/bind 9/9.2.3-rc3
- version/bind 9/9.2.3-rc4
- version/bind 9/9.2.4
- version/bind 9/9.2.4-rc2
- version/bind 9/9.2.4-rc3
- version/bind 9/9.2.4-rc4
- version/bind 9/9.2.4-rc5
- version/bind 9/9.2.4-rc6
- version/bind 9/9.2.4-rc7
- version/bind 9/9.2.4-rc8
- version/bind 9/9.2.5
- version/bind 9/9.2.5-b2
- version/bind 9/9.2.5-rc1
- version/bind 9/9.2.6
- version/bind 9/9.2.6-rc1
- version/bind 9/9.2.7
- version/bind 9/9.2.7-rc1
- version/bind 9/9.2.7-rc2
- version/bind 9/9.2.7-rc3
- version/bind 9/9.2.8
- version/bind 9/9.2.9
- version/bind 9/9.2.9-rc1
- version/bind 9/9.3
- version/bind 9/9.3.0
- version/bind 9/9.3.0-b2
- version/bind 9/9.3.0-b3
- version/bind 9/9.3.0-b4
- version/bind 9/9.3.0-rc1
- version/bind 9/9.3.0-rc2
- version/bind 9/9.3.0-rc3
- version/bind 9/9.3.0-rc4
- version/bind 9/9.3.1
- version/bind 9/9.3.1-b2
- version/bind 9/9.3.1-rc1
- version/bind 9/9.3.2
- version/bind 9/9.3.2-rc1
- version/bind 9/9.3.3
- version/bind 9/9.3.3-rc1
- version/bind 9/9.3.3-rc2
- version/bind 9/9.3.3-rc3
- version/bind 9/9.3.4
- version/bind 9/9.3.5
- version/bind 9/9.3.5-rc1
- version/bind 9/9.3.5-rc2
- version/bind 9/9.3.6
- version/bind 9/9.3.6-rc1
- version/bind 9/9.4
- version/bind 9/9.4.0
- version/bind 9/9.4.0-a1
- version/bind 9/9.4.0-a2
- version/bind 9/9.4.0-a3
- version/bind 9/9.4.0-a4
- version/bind 9/9.4.0-a5
- version/bind 9/9.4.0-a6
- version/bind 9/9.4.0-b1
- version/bind 9/9.4.0-b2
- version/bind 9/9.4.0-b3
- version/bind 9/9.4.0-b4
- version/bind 9/9.4.0-rc1
- version/bind 9/9.4.0-rc2
- version/bind 9/9.4.1
- version/bind 9/9.4.2
- version/bind 9/9.4.2-rc1
- version/bind 9/9.4.2-rc2
- version/bind 9/9.4.3
- version/bind 9/9.4.3-b1
- version/bind 9/9.4.3-b2
- version/bind 9/9.4.3-b3
- version/bind 9/9.4.3-p1
- version/bind 9/9.4.3-p2
- version/bind 9/9.4.3-p3
- version/bind 9/9.4.3-p4
- version/bind 9/9.4.3-p5
- version/bind 9/9.4.3-rc1
- version/bind 9/9.6.0
- version/bind 9/9.6.0-a1
- version/bind 9/9.6.0-b1
- version/bind 9/9.6.0-p1
- version/bind 9/9.6.0-rc1
- version/bind 9/9.6.0-rc2
- version/bind 9/9.6.1
- version/bind 9/9.6.1-b1
- version/bind 9/9.6.1-p1
- version/bind 9/9.6.1-p2
- version/bind 9/9.6.1-rc1
- version/bind 9/9.7.0-b1
- version/bind 9/9.10.0
- version/bind 9/9.10.0-a1
- version/bind 9/9.10.0-a2
- version/bind 9/9.10.0-b1
- version/bind 9/9.10.0-b2
- version/bind 9/9.10.0-p1
- version/bind 9/9.10.0-p2
- version/bind 9/9.10.0-rc1
- version/bind 9/9.10.0-rc2
- version/bind 9/9.10.1
- version/bind 9/9.10.1-b1
- version/bind 9/9.10.1-b2
- version/bind 9/9.10.1-p1
- version/bind 9/9.10.1-p2
- version/bind 9/9.10.1-rc1
- version/bind 9/9.10.1-rc2
- version/bind 9/9.10.2-b1
- version/bind 9/9.10.2-p1
- version/bind 9/9.10.2-p2
- version/bind 9/9.10.2-p3
- version/bind 9/9.10.2-p4
- version/bind 9/9.10.2-rc1
- version/bind 9/9.10.2-rc2
- version/bind 9/9.10.3
- version/bind 9/9.10.3-b1
- version/bind 9/9.10.3-p1
- version/bind 9/9.10.3-p2
- version/bind 9/9.10.3-p3
- version/bind 9/9.10.3-rc1