BIND: Self-check failing

Summary: 
The DNSSEC validator can cause the server to exit.
CVE: 
CVE-2005-0034
CERT: 
VU#938617
Posting date: 
25 Jan 2005
Program Impacted: 
BIND
Versions affected: 
9.3.0
Severity: 
Low
Exploitable: 
Remotely
Description: 

An incorrect assumption in the validator (authvalidated) can result in a REQUIRE (internal consistancy) test failing and named exiting.

Workarounds: 

Turn off dnssec validation (off by default) at the options/view level.

dnssec-enable no;

Active exploits: 
None known at this time.
Solution: 

Upgrade to BIND 9.3.1 or later.

Share this