Medium: bind

🗓️ 23 Jun 2021 00:00:00Reported by AmazonType

amazon

amazon🔗 alas.aws.amazon.com👁 33 Views

Incremental zone transfers (IXFR) can lead to removal of SOA record causing assertion failure in bind on Amazon Linux 2

Reporter	Title	Published	Views	Family All 247
ALT Linux	Security fix for the ALT Linux 10 package bind version 9.11.31-alt1	29 Apr 202100:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package bind version 9.11.31-alt1	12 May 202100:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package bind version 9.10.8.P1-alt4	13 May 202100:00	–	altlinux
IBM Security Bulletins	Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to several CVEs	19 Oct 202115:38	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability with ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2021-25214).	12 Jan 202321:59	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in bind (CVE-2021-25214) affects Power HMC	31 May 202206:50	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	19 Jan 202313:54	–	ibm
IBM Security Bulletins	Security Bulletin: BIND for IBM i is affected by CVE-2021-25214 and CVE-2021-25215	17 Jun 202119:03	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in ISC BIND affects IBM Integrated Analytics System.	8 Mar 202209:28	–	ibm
Tenable Nessus	Amazon Linux 2 : bind (ALAS-2021-1651)	23 Jun 202100:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Amazon Linux	2	aarch64	bind	9.11.4-26.P2.amzn2.5.2	bind-9.11.4-26.P2.amzn2.5.2.aarch64.rpm
Amazon Linux	2	i686	bind	9.11.4-26.P2.amzn2.5.2	bind-9.11.4-26.P2.amzn2.5.2.i686.rpm
Amazon Linux	2	x86_64	bind	9.11.4-26.P2.amzn2.5.2	bind-9.11.4-26.P2.amzn2.5.2.x86_64.rpm
Amazon Linux	2	aarch64	bind-chroot	9.11.4-26.P2.amzn2.5.2	bind-chroot-9.11.4-26.P2.amzn2.5.2.aarch64.rpm
Amazon Linux	2	i686	bind-chroot	9.11.4-26.P2.amzn2.5.2	bind-chroot-9.11.4-26.P2.amzn2.5.2.i686.rpm
Amazon Linux	2	x86_64	bind-chroot	9.11.4-26.P2.amzn2.5.2	bind-chroot-9.11.4-26.P2.amzn2.5.2.x86_64.rpm
Amazon Linux	2	aarch64	bind-debuginfo	9.11.4-26.P2.amzn2.5.2	bind-debuginfo-9.11.4-26.P2.amzn2.5.2.aarch64.rpm
Amazon Linux	2	i686	bind-debuginfo	9.11.4-26.P2.amzn2.5.2	bind-debuginfo-9.11.4-26.P2.amzn2.5.2.i686.rpm
Amazon Linux	2	x86_64	bind-debuginfo	9.11.4-26.P2.amzn2.5.2	bind-debuginfo-9.11.4-26.P2.amzn2.5.2.x86_64.rpm
Amazon Linux	2	aarch64	bind-devel	9.11.4-26.P2.amzn2.5.2	bind-devel-9.11.4-26.P2.amzn2.5.2.aarch64.rpm

23 Jun 2021 00:00Current

8.1High risk

Vulners AI Score8.1

CVSS 24

CVSS 3.16.5

EPSS0.02257

zone transfers soa records amazon linux 2 cve-2021-25214 package updates