If you’re running Bind on openSUSE or SUSE Linux Enterprise, you want to install the update that was pushed out recently. This was pushed out on opensuse-security-announce (which I’m sure everybody is subscribed to, right? Cause these announcements are very infrequent and fairly important…) but I wanted to mention it here as well…

In case you hadn’t read about it already, there’s a major DNS flaw that leaves DNS implementations vulnerable to cache poisoning (essentially giving the wrong IP address for a domain name, which makes it possible to redirect queries to the wrong host — which opens up a whole slew of possible mischief).

We’ve issued a fix for openSUSE 10.2, 10.3, and 11.0, as well as SLES/SLED 10, and a number of other versions.