Ãë¾àÁ¡ID |
19048 |
À§Çèµµ |
40 |
Æ÷Æ® |
79 |
ÇÁ·ÎÅäÄÝ |
TCP,UDP |
ºÐ·ù |
DNS |
»ó¼¼¼³¸í |
ISC BIND(Berkeley Internet Name Daemon)´Â DNS (domain name service) ÇÁ·ÎÅäÄÝÀ» ±¸ÇöÇÑ ¼¹ö À¯Æ¿¸®Æ¼·Î ÀÎÅÍ³Ý »ó¿¡¼ ±¤¹üÀ§ÇÏ°Ô »ç¿ëµÈ´Ù. BIND ¼¹öÀÇ ¹öÀü Á¤º¸¿¡ µû¸£¸é, ISC BIND 9.10.2-P4 ÀÌÀüÀÇ 9.10.2.x ¹öÀü¿¡´Â ´ÙÀ½°ú °°Àº Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù.
- °ø°ÝÀÚ¿¡ ÀÇÇØ Á¶ÀÛµÈ ºñÁ¤»óÀûÀÎ DNSSEC Å°¸¦ ÆĽÌÇÒ ¶§ ¼ºñ½º °ÅºÎ°¡ ¹ß»ýÇÑ´Ù. ÀÌ·Î ÀÎÇØ °ø°ÝÀÚ´Â ÇØ´ç Å°¸¦ Æ÷ÇÔÇÏ´Â zone¿¡ Á¶ÀÛµÈ Äõ¸®¸¦ Àü¼ÛÇÏ¿© ¼ºñ½º °ÅºÎ¸¦ ÀÏÀ¸Å³ ¼ö ÀÖ´Ù. (CVE-2015-5722)
- µ¥ÀÌÅÍÀÇ ±æÀÌ°¡ 1º¸´Ù ÀÛÀ» ¶§ openpgpkey_61.c ÆÄÀÏÀÇ fromwire_openpgpkey() ÇÔ¼ö¿¡¼ ¼ºñ½º °ÅºÎ°¡ ¹ß»ýÇÑ´Ù. ÀÌ·Î ÀÎÇØ °ø°ÝÀÚ´Â Äõ¸®¿¡ Á¶ÀÛµÈ ÀÀ´äÀ» º¸³¿À¸·Î½á ¼ºñ½º °ÅºÎ¸¦ ÀÏÀ¸Å³ ¼ö ÀÖ´Ù. (CVE-2015-5986)
* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº ÀÌ Ãë¾àÁ¡À» Á¡°ËÇϱâ À§ÇØ ÇØ´ç DNS ¼¹öÀÇ ¹è³Ê Á¤º¸¸¸À» È®ÀÎÇÑ´Ù. µû¶ó¼ °ÅÁþ ¾ç¼º¹ÝÀÀ(False Positive)À» º¸ÀÏ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®: https://kb.isc.org/article/AA-01287 https://kb.isc.org/article/AA-01291
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû: Internet Software Consortium, BIND version 9.10.2.x < 9.10.2-P4 |
ÇØ°áÃ¥ |
Internet Software Consortium (ISC) À¥ »çÀÌÆ®ÀÎ http://www.isc.org/downloads/BIND/ ¿¡¼ ±¸ÇÒ ¼ö ÀÖ´Â BINDÀÇ °¡Àå ÃֽŠ¹öÀü(9.10.2-P4 ȤÀº ÀÌÈÄ)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù. |
°ü·Ã URL |
CVE-2015-5722,CVE-2015-5986 (CVE) |
°ü·Ã URL |
(SecurityFocus) |
°ü·Ã URL |
(ISS) |
|