CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
99.3%
CentOS Errata and Security Advisory CESA-2016:2142
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name
System (DNS) protocols. BIND includes a DNS server (named); a resolver library
(routines for applications to use when interfacing with DNS); and tools for
verifying that the DNS server is operating correctly.
Security Fix(es):
Red Hat would like to thank ISC for reporting this issue. Upstream acknowledges
Tony Finch (University of Cambridge) and Marco Davids (SIDN Labs) as the
original reporters.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2016-November/084300.html
Affected packages:
bind97
bind97-chroot
bind97-devel
bind97-libs
bind97-utils
Upstream details at:
https://access.redhat.com/errata/RHSA-2016:2142
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 5 | i386 | bind97 | <ย 9.7.0-21.P2.el5_11.9 | bind97-9.7.0-21.P2.el5_11.9.i386.rpm |
CentOS | 5 | i386 | bind97-chroot | <ย 9.7.0-21.P2.el5_11.9 | bind97-chroot-9.7.0-21.P2.el5_11.9.i386.rpm |
CentOS | 5 | i386 | bind97-devel | <ย 9.7.0-21.P2.el5_11.9 | bind97-devel-9.7.0-21.P2.el5_11.9.i386.rpm |
CentOS | 5 | i386 | bind97-libs | <ย 9.7.0-21.P2.el5_11.9 | bind97-libs-9.7.0-21.P2.el5_11.9.i386.rpm |
CentOS | 5 | i386 | bind97-utils | <ย 9.7.0-21.P2.el5_11.9 | bind97-utils-9.7.0-21.P2.el5_11.9.i386.rpm |
CentOS | 5 | x86_64 | bind97 | <ย 9.7.0-21.P2.el5_11.9 | bind97-9.7.0-21.P2.el5_11.9.x86_64.rpm |
CentOS | 5 | x86_64 | bind97-chroot | <ย 9.7.0-21.P2.el5_11.9 | bind97-chroot-9.7.0-21.P2.el5_11.9.x86_64.rpm |
CentOS | 5 | i386 | bind97-devel | <ย 9.7.0-21.P2.el5_11.9 | bind97-devel-9.7.0-21.P2.el5_11.9.i386.rpm |
CentOS | 5 | x86_64 | bind97-devel | <ย 9.7.0-21.P2.el5_11.9 | bind97-devel-9.7.0-21.P2.el5_11.9.x86_64.rpm |
CentOS | 5 | i386 | bind97-libs | <ย 9.7.0-21.P2.el5_11.9 | bind97-libs-9.7.0-21.P2.el5_11.9.i386.rpm |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
99.3%