Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM8AF49736D617D6497975587C78B2BF1F6346503341CAD9EAB6FBA89669C46B3C
HistorySep 23, 2021 - 4:02 a.m.

Security Bulletin: Publicly disclosed vulnerabilities from Bind affect IBM Netezza Host Management

2021-09-2304:02:23
www.ibm.com
16

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.214 Low

EPSS

Percentile

95.7%

JSON

Summary

Bind is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs.

Vulnerability Details

CVEID:CVE-2021-25215
**DESCRIPTION:**ISC BIND is vulnerable to a denial of service, caused by an assertion failure while answering queries for DNAME records. By sending a query for DNAME records, an attacker could exploit this vulnerability to trigger a failed assertion check and terminate the named process.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/200960 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-8625
**DESCRIPTION:**ISC BIND is vulnerable to a buffer overflow, caused by improper bounds checking by the SPNEGO implementation. By setting valid values for the tkey-gssapi-keytab or tkey-gssapi-credentialconfiguration options, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the named process to crash.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/196959 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Netezza Host Management All IBM Netezza Host Management 5.3.8.0 - 5.4.30.0

Remediation/Fixes

To resolve the reported CVEs for Red Hat Enterprise Linux (RHEL) on following platforms :

PureData System for Analytics N3001
PureData System for Analytics N200x

Update to the following IBM Netezza Host Management release :

Product VRMF Remediation/Fix
IBM Netezza Host Management 5.4.31.0 Fix_Central_Link

The Netezza Host Management software contains the latest RHEL updates for the operating systems certified for use on IBM Netezza/PureData System for Analytics appliances. IBM recommends upgrading to the latest Netezza Host Management version to ensure that your hosts have the latest fixes, security changes, and operating system updates. IBM Support can assist you with planning for the Netezza Host Management and operating system upgrades to your appliances.

For more details on IBM Netezza Host Management security patching:

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm netezza host managementeqany

Related

nessus 75
openvas 41
photon 3
veracode 2
oraclelinux 5
ibm 6
almalinux 2
cvelist 2
ubuntucve 2
amazon 4
redhat 20
cbl_mariner 2
osv 5
redhatcve 2
f5 2
alpinelinux 2
debiancve 2
centos 2
archlinux 1
prion 2
aix 1
cve 2
rocky 1
zdi 1
altlinux 2
cloudlinux 1
ubuntu 1
mageia 1
fedora 6
debian 1
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : bind Multiple Vulnerabilities (NS-SA-2021-0106)
2021-10-27 00:00:00
EulerOS Virtualization 3.0.2.6 : bind (EulerOS-SA-2021-2867)
2022-01-06 00:00:00
EulerOS 2.0 SP2 : bind (EulerOS-SA-2021-2354)
2021-09-14 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2021-2354)
2021-09-15 00:00:00
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2021-2867)
2021-12-31 00:00:00
ISC BIND DoS Vulnerability (CVE-2021-25215) - Windows
2021-04-30 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0039
2021-06-07 00:00:00
Critical Photon OS Security Update - PHSA-2021-4.0-0039
2021-06-08 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0370
2021-03-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-05-01 10:32:42
Remote Code Execution
2021-02-18 21:52:26
oraclelinux
oraclelinux
bind security update
2021-05-01 00:00:00
bind security update
2021-04-30 00:00:00
bind security update
2021-05-26 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in bind (CVE-2021-25215)
2021-09-23 01:53:02
Security Bulletin: Vulnerability in bind (CVE-2021-25215) affects Power HMC
2021-11-22 05:46:42
Security Bulletin: A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2021-25215)
2023-01-12 21:59:00
almalinux
almalinux
Important: bind security update
2021-05-18 17:09:01
Important: bind security update
2021-03-01 13:54:46
cvelist
cvelist
CVE-2021-25215 An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself
2021-04-28 00:00:00
CVE-2020-8625 A vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack
2021-02-17 00:00:00
ubuntucve
ubuntucve
CVE-2021-25215
2021-04-28 00:00:00
CVE-2020-8625
2021-02-17 00:00:00
amazon
amazon
Important: bind
2021-05-20 15:46:00
Important: bind
2021-03-18 01:13:00
Important: bind
2021-07-08 18:38:00
redhat
redhat
(RHSA-2021:2024) Important: bind security update
2021-05-19 07:04:09
(RHSA-2021:1469) Important: bind security update
2021-04-29 13:00:08
(RHSA-2021:1468) Important: bind security update
2021-04-29 10:44:42
cbl_mariner
cbl_mariner
CVE-2021-25215 affecting package bind 9.16.3-3
2021-05-16 16:46:11
CVE-2020-8625 affecting package bind 9.16.3-3
2021-04-06 23:50:08
osv
osv
Important: bind security update
2021-05-18 17:09:01
CVE-2021-25215
2021-04-29 01:15:08
CVE-2020-8625
2021-02-17 23:15:13
redhatcve
redhatcve
CVE-2021-25215
2021-04-29 03:48:29
CVE-2020-8625
2021-02-18 15:33:37
f5
f5
K96223611 : BIND vulnerability CVE-2021-25215
2021-05-18 00:00:00
K13591074 : BIND vulnerability CVE-2020-8625
2021-03-05 00:00:00
alpinelinux
alpinelinux
CVE-2021-25215
2021-04-29 01:15:08
CVE-2020-8625
2021-02-17 23:15:13
debiancve
debiancve
CVE-2021-25215
2021-04-29 01:15:08
CVE-2020-8625
2021-02-17 23:15:13
centos
centos
bind security update
2021-03-02 16:40:18
bind security update
2021-04-29 18:00:19
archlinux
archlinux
[ASA-202102-40] bind: arbitrary code execution
2021-02-27 00:00:00
prion
prion
Authentication flaw
2021-04-29 01:15:00
Default configuration
2021-02-17 23:15:00
aix
aix
There is a vulnerability in BIND that affects AIX.,There is a vulnerability in BIND that affects VIOS.
2021-07-29 15:13:19
cve
cve
CVE-2021-25215
2021-04-29 01:15:08
CVE-2020-8625
2021-02-17 23:15:13
rocky
rocky
bind security update
2021-05-18 17:09:01
zdi
zdi
ISC BIND TKEY Query Heap-based Buffer Overflow Remote Code Execution Vulnerability
2021-02-24 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package bind version 9.11.28-alt1
2021-03-04 00:00:00
Security fix for the ALT Linux 10 package bind version 9.11.28-alt1
2021-02-18 00:00:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2020-8625
2021-09-21 22:00:10
ubuntu
ubuntu
Bind vulnerability
2021-03-01 00:00:00
mageia
mageia
Updated bind packages fix security vulnerability
2021-03-04 19:53:32
fedora
fedora
[SECURITY] Fedora 34 Update: bind-9.16.11-5.fc34
2021-03-19 20:20:10
[SECURITY] Fedora 32 Update: bind-9.11.28-1.fc32
2021-03-03 23:26:54
[SECURITY] Fedora 33 Update: bind-9.11.28-1.fc33
2021-03-03 23:15:50
debian
debian
[SECURITY] [DSA 4857-1] bind9 security update
2021-02-18 21:42:20

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.214 Low

EPSS

Percentile

95.7%

JSON
Related for 8AF49736D617D6497975587C78B2BF1F6346503341CAD9EAB6FBA89669C46B3C
nessus75openvas41photon3veracode2oraclelinux5ibm6almalinux2cvelist2ubuntucve2amazon4redhat20cbl_mariner2osv5redhatcve2f52alpinelinux2debiancve2centos2archlinux1prion2aix1cve2rocky1zdi1altlinux2cloudlinux1ubuntu1mageia1fedora6debian1