Symptoms
Bind vulnerability CVE-2015-5477
Resolution
Install SPU 123 update according to the following KB article:
https://kb.cloudblue.com/en/126518
Internal content
We prepared RPMs with a hotfix for CVE-2015-5477:
BIND is updated to 9.9.7-P2 https://kb.isc.org/article/AA-01279/0/BIND-9.9.7-P2-Release-Notes.html
Apply the hotfix on test environment first and make sure you have a backup before. Contact Odin Technical Support in case of any arising issues.
$ md5sum ./HSPH-141/RHES*_64/hsphere-bind-9.9-9.rpm
30c89e0fcef8c5b4f49a1dbf67ee5ce1 ./HSPH-141/RHES5_64/hsphere-bind-9.9-9.rpm
26f43cf9badf3b2006205b236fbcdc6f ./HSPH-141/RHES6_64/hsphere-bind-9.9-9.rpm
$ rpm -qip ./HSPH-141/RHES*_64/hsphere-bind-9.9-9.rpm
Name : hsphere-bind Relocations: (not relocatable)
Version : 9.9 Vendor: Parallels
Release : 9 Build Date: Thu 06 Aug 2015 05:58:32 PM YEKT
Install Date: (not installed) Build Host: rhes5_64
Group : Applications Source RPM: hsphere-bind-9.9-9.src.rpm
Size : 51508158 License: Copyright 1999-2008, Parallels
Signature : (none)
Packager : Parallels <support@parallels.com>
Summary : Parallels H-Sphere hsphere-bind Distribution
Description :
H-Sphere package of bind-9.9.7-P2.
Name : hsphere-bind Relocations: (not relocatable)
Version : 9.9 Vendor: Parallels
Release : 9 Build Date: Thu 06 Aug 2015 05:24:38 PM YEKT
Install Date: (not installed) Build Host: other-rhel6_64-build.lp.plesk.ru
Group : Applications Source RPM: hsphere-bind-9.9-9.src.rpm
Size : 51595784 License: Copyright 1999-2008, Parallels
Signature : (none)
Packager : Parallels <support@parallels.com>
Summary : Parallels H-Sphere hsphere-bind Distribution
Description :
H-Sphere package of bind-9.9.7-P2.