Article ID: 112868, created on Nov 23, 2011, last review on Apr 25, 2014

  • Applies to:
  • H-Sphere 3.3
  • H-Sphere 3.4

Extended Summary

BIND vulnerability


hsphere-bind in H-Sphere 3.4 and 3.4.1 should be updated


Present BIND 9.6-ESV-R3 has vulnerability according to


  1. If you already have the H-Sphere 3.4.1: 
Upgrade hsphere-bind to version 9.6-5, containing BIND 9.6-ESV-R5-P1.
To upgrade hsphere-bind package, run the following shell command at CP server:
sh U34.0P1 update hspackages private
NOTE: As usual, if you want to update only some of your physical boxes, you can specify their IP addresses at the end of the command mentioned above, in the following format:
To verify that the package is properly installed, check the installer/updater output (it must say that hsphere-bind version 9.6-5 is installed). You can also check the BIND version on boxes with the following shell command:
named -v
The version it displays should be
BIND 9.6-ESV-R5-P1
  • Upgrade of hsphere-bind package will change DNS bogon list to that of 15 Aug 2011.
  • In order to make future updates private as well, you should assign a new UNIX profile with private updates enabled in it to all your physical boxes.

  1. If you are currently run H-Sphere 3.4
Do the same as for 3.4.1 but  the command should be:

sh U34.0 update hspackages private

  1. If you are currently run H-Sphere 3.3.1
Do the same as for 3.4.1 but  the command should be:

sh U33.0P1 update hspackages private

f213b9fa8759d57bee5d547445806fe7 f90e90e234d2835301363089f6b828e5 3fce07d43dd909dcf7cad8a0e8c377eb 6311ae17c1ee52b36e68aaf4ad066387

Email subscription for changes to this article
Save as PDF