2018. 1. 16. (¹Ì ¼ºÎ½Ã°£) ISC(Internet Systems Consortium,
http://www.isc.org)¿¡¼ BIND S/W¿¡ ´ëÇÑ ½Å±Ô Ãë¾àÁ¡ 1°Ç ¹× ÆÐÄ¡ ¹öÀüÀ» °ø°³ÇÏ¿´½À´Ï´Ù.
BIND S/W¸¦ ÀÌ¿ëÇÑ ³×ÀÓ¼¹ö(DNS) ¿î¿µ ±â°üÀº ½Å±Ô Ãë¾àÁ¡À» ¾Ç¿ëÇÑ º¸¾È ħÇØ»ç°í¸¦ ¿¹¹æÇϱâ À§ÇØ ÃֽŠBIND S/W·Î ¾÷µ¥ÀÌÆ® ÇÒ °ÍÀ» ±Ç°íÇØ µå¸³´Ï´Ù.
¡à Ãë¾àÁ¡ Á¤º¸ (1°Ç)
o CVE-2017-3145 : Improper fetch cleanup sequencing in the resolver can cause named to crash
- (°³¿ä) BIND ³×ÀÓ¼¹ö°¡ ¸®Ä¿½Ãºê ÁúÀÇ ÀÀ´ä ó¸® °úÁ¤¿¡¼ ¸Þ¸ð¸® ÇØÁ¦ ÈÄ »ç¿ë(Use-After-Free) ¿À·ù°¡ ¹ß»ýÇÏ¿© ³×ÀÓ¼¹ö ±¸µ¿ÀÌ Áß´ÜµÉ ¼ö ÀÖ´Â Ãë¾àÁ¡
- (´ë»ó) DNSSEC ¼¸í °ËÁõ ±â´ÉÀ» »ç¿ëÇϴ ij½ÃDNS
- (½É°¢¼öÁØ) ³ôÀ½(High)
- (°ø°ÝÀ§Çù) ¿ø°Ý ¼ºñ½º °ÅºÎ °ø°Ý¿¡ ¾Ç¿ë °¡´É
- (Ãë¾àÁ¡ ¾Ç¿ëÇÑ °ø°ÝÄÚµå) ¾ÆÁ÷ ¹ß°ßµÈ ¹Ù ¾øÀ½
- (Ãë¾àÇÑ BIND ¹öÀü) 9.0.0 ~ 9.8.x, 9.9.0 ~ 9.9.11, 9.10.0 ~ 9.10.6, 9.11.0 ~ 9.11.2, 9.9.3-S1 ~ 9.9.11-S1, 9.10.5-S1 ~ 9.10.6-S1, 9.12.0a1 ~ 9.12.0rc1
¡à Á¶Ä¡ ¹æ¹ý
o BIND ¹öÀü ¾÷±×·¹À̵带 ÅëÇÑ Á¶Ä¡
- BIND 9.9.11-P1, 9.10.6-P1, 9.11.2-P1, 9.12.0rc2, 9.9.11-S2, 9.10.6-S2·Î ¾÷±×·¹À̵å
o ¼³Á¤¿¡ ÀÇÇÑ Á¶Ä¡
- Àӽà Á¶Ä¡·Î DNSSEC ¼¸í °ËÁõ ±â´É ºñÈ°¼ºÈ
¡Ø ±¸µ¿Áß´Ü ¹ß»ý ½Ã ÀÓ½ÃÁ¶Ä¡ ¹æ¾ÈÀ̸ç, ¹®Á¦ ÇØ°áÀ» À§ÇØ BIND ¹öÀü ¾÷±×·¹À̵å ÇÊ¿ä