关键漏洞信息 漏洞ID: Bug 708301 (CVE-2011-1910) 标题: bind: Large RRSIG RRsets and Negative Caching can crash named 状态: CLOSED ERRATA 优先级: high 严重性: high 产品: Security Response 组件: vulnerability 影响范围 操作系统: Linux 受影响版本: BIND 9 DNS server, bind9 packages shipped with Red Hat Enterprise Linux 5 and 6 漏洞描述 A BIND 9 DNS server set up to be a caching resolver is vulnerable to a user querying a domain with very large resource record sets (RRsets) when trying to negatively cache a response. This can cause the BIND 9 DNS server (named process) to crash. 解决方案 RHSA: RHSA-2011:0845 - Important: bind security update 影响版本: Red Hat Enterprise Linux 5 and 6 验证方法 There is no tool for such checks. You will need to look at the upstream advisory to find that information out.