Earlier this week, the Internet Systems Consortium (ISC) released an advisory about two critical security problems in the BIND 9 software. The first problem is that BIND can keep certain domains in it’s cache that were previously deleted. The second is a bug that can cause recursive servers to crash and leak data.
An updated version to the BIND 9 DNS software has been released. Red Hat and CentOS have released packages for the security patch. Update now!
More information about Red Hat 5 and 6 released BIND packages here – https://rhn.redhat.com/errata/RHSA-2012-0716.html
More information about Red Hat 5 BIND 9.7 packages here – https://rhn.redhat.com/errata/RHSA-2012-0717.html
You can read more about the issues here – http://isc.sans.edu/diary.html?storyid=13387&rss