{"id": "CVE-2010-0382", "bulletinFamily": "NVD", "title": "CVE-2010-0382", "description": "ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta handles out-of-bailiwick data accompanying a secure response without re-fetching from the original source, which allows remote attackers to have an unspecified impact via a crafted response, aka Bug 20819. NOTE: this vulnerability exists because of a regression during the fix for CVE-2009-4022.", "published": "2010-01-22T17:00:00", "modified": "2017-09-18T21:30:22", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0382", "reporter": "NVD", "references": ["http://www.vupen.com/english/advisories/2010/0622", "http://www.debian.org/security/2010/dsa-2054", "http://www.vupen.com/english/advisories/2010/1352", "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018", "https://www.isc.org/advisories/CVE-2009-4022v6"], "cvelist": ["CVE-2010-0382"], "type": "cve", "lastseen": "2017-09-19T13:36:51", "history": [{"bulletin": {"assessment": {"href": "http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11753", "name": "oval:org.mitre.oval:def:11753", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:isc:bind:9.1.1:rc4", "cpe:/a:isc:bind:9.2.0:rc10", "cpe:/a:isc:bind:9.10.0:b1", "cpe:/a:isc:bind:9.3.1", "cpe:/a:isc:bind:9.3.0", "cpe:/a:isc:bind:9.4.0:a3", "cpe:/a:isc:bind:9.10.0:rc2", "cpe:/a:isc:bind:9.2.7", "cpe:/a:isc:bind:9.3.3:rc3", "cpe:/a:isc:bind:9.2.6", "cpe:/a:isc:bind:9.0", "cpe:/a:isc:bind:9.10.1:rc1", "cpe:/a:isc:bind:9.2.0:rc5", "cpe:/a:isc:bind:9.2.4:rc5", "cpe:/a:isc:bind:9.2.1:rc2", "cpe:/a:isc:bind:9.7.0:b1", "cpe:/a:isc:bind:9.3.3:rc1", "cpe:/a:isc:bind:9.1.1", "cpe:/a:isc:bind:9.3.0:b4", "cpe:/a:isc:bind:9.4.0:a5", "cpe:/a:isc:bind:9.10.1:b1", "cpe:/a:isc:bind:9.1.1:rc5", "cpe:/a:isc:bind:9.4.3:b1", "cpe:/a:isc:bind:9.4.3:p4", "cpe:/a:isc:bind:9.10.1:p2", "cpe:/a:isc:bind:9.2.0:rc6", "cpe:/a:isc:bind:9.10.3:p1", "cpe:/a:isc:bind:9.4.0:a4", "cpe:/a:isc:bind:9.6.0:rc2", "cpe:/a:isc:bind:9.10.3:p2", "cpe:/a:isc:bind:9.4.0:rc1", "cpe:/a:isc:bind:9.2.0:rc2", "cpe:/a:isc:bind:9.1.3:rc2", "cpe:/a:isc:bind:9.10.0:p2", "cpe:/a:isc:bind:9.2.3:rc2", "cpe:/a:isc:bind:9.2.2:rc1", "cpe:/a:isc:bind:9.2.0:a1", "cpe:/a:isc:bind:9.1.2:rc1", "cpe:/a:isc:bind:9.1.1:rc6", "cpe:/a:isc:bind:9.4.1", "cpe:/a:isc:bind:9.10.1:rc2", "cpe:/a:isc:bind:9.0.1:rc1", "cpe:/a:isc:bind:9.3.2", "cpe:/a:isc:bind:9.2.4:rc7", "cpe:/a:isc:bind:9.3.4", "cpe:/a:isc:bind:9.10.1", "cpe:/a:isc:bind:9.10.2:p4", "cpe:/a:isc:bind:9.0.0:rc3", "cpe:/a:isc:bind:9.6.1:rc1", "cpe:/a:isc:bind:9.1.0:rc1", "cpe:/a:isc:bind:9.2.0:rc1", "cpe:/a:isc:bind:9.6.1:p1", "cpe:/a:isc:bind:9.6.0", "cpe:/a:isc:bind:9.6.0:p1", "cpe:/a:isc:bind:9.2.4:rc2", "cpe:/a:isc:bind:9.0.0:rc2", "cpe:/a:isc:bind:9.10.0:rc1", "cpe:/a:isc:bind:9.2.4:rc8", "cpe:/a:isc:bind:9.10.1:b2", "cpe:/a:isc:bind:9.3.0:rc2", "cpe:/a:isc:bind:9.0.0:rc1", "cpe:/a:isc:bind:9.2.0:rc4", "cpe:/a:isc:bind:9.4.0:a2", "cpe:/a:isc:bind:9.2.0:b2", "cpe:/a:isc:bind:9.3.6", "cpe:/a:isc:bind:9.2.0:rc8", "cpe:/a:isc:bind:9.4.3:b2", "cpe:/a:isc:bind:9.10.2:rc1", "cpe:/a:isc:bind:9.10.0:p1", "cpe:/a:isc:bind:9.4.3:rc1", "cpe:/a:isc:bind:9.3.5:rc2", "cpe:/a:isc:bind:9.3.0:rc4", "cpe:/a:isc:bind:9.6.0:rc1", "cpe:/a:isc:bind:9.3.6:rc1", "cpe:/a:isc:bind:9.4.3:p5", "cpe:/a:isc:bind:9.4.0:b4", "cpe:/a:isc:bind:9.3.2:rc1", "cpe:/a:isc:bind:9.2.3:rc3", "cpe:/a:isc:bind:9.4.0:b3", "cpe:/a:isc:bind:9.4.2", "cpe:/a:isc:bind:9.4.3:p3", "cpe:/a:isc:bind:9.10.2:rc2", "cpe:/a:isc:bind:9.1.3:rc3", "cpe:/a:isc:bind:9.1.3", "cpe:/a:isc:bind:9.10.2:p3", "cpe:/a:isc:bind:9.10.1:p1", "cpe:/a:isc:bind:9.3.0:rc3", "cpe:/a:isc:bind:9.1", "cpe:/a:isc:bind:9.4.0:rc2", "cpe:/a:isc:bind:9.10.3:p3", "cpe:/a:isc:bind:9.2.9", "cpe:/a:isc:bind:9.10.3:b1", "cpe:/a:isc:bind:9.3.0:b3", "cpe:/a:isc:bind:9.2.7:rc1", "cpe:/a:isc:bind:9.2.0:rc7", "cpe:/a:isc:bind:9.1.2", "cpe:/a:isc:bind:9.2.5", "cpe:/a:isc:bind:9.2.4:rc6", "cpe:/a:isc:bind:9.0.0:rc6", "cpe:/a:isc:bind:9.3", "cpe:/a:isc:bind:9.3.0:b2", "cpe:/a:isc:bind:9.1.1:rc3", "cpe:/a:isc:bind:9.0.0:rc5", "cpe:/a:isc:bind:9.6.1", "cpe:/a:isc:bind:9.2.0", "cpe:/a:isc:bind:9.4.0", "cpe:/a:isc:bind:9.2", "cpe:/a:isc:bind:9.2.6:rc1", "cpe:/a:isc:bind:9.3.5:rc1", "cpe:/a:isc:bind:9.4.3:p1", "cpe:/a:isc:bind:9.6.1:b1", "cpe:/a:isc:bind:9.6.1:p2", "cpe:/a:isc:bind:9.3.1:b2", "cpe:/a:isc:bind:9.1.1:rc1", "cpe:/a:isc:bind:9.2.8", "cpe:/a:isc:bind:9.2.5:b2", "cpe:/a:isc:bind:9.2.0:a3", "cpe:/a:isc:bind:9.4.3:p2", "cpe:/a:isc:bind:9.3.3:rc2", "cpe:/a:isc:bind:9.2.0:a2", "cpe:/a:isc:bind:9.2.0:b1", "cpe:/a:isc:bind:9.4.0:a1", "cpe:/a:isc:bind:9.1.1:rc2", "cpe:/a:isc:bind:9.4.2:rc2", "cpe:/a:isc:bind:9.10.0", "cpe:/a:isc:bind:9.10.2:p2", "cpe:/a:isc:bind:9.2.5:rc1", "cpe:/a:isc:bind:9.3.3", "cpe:/a:isc:bind:9.3.1:rc1", "cpe:/a:isc:bind:9.2.4:rc4", "cpe:/a:isc:bind:9.10.0:a2", "cpe:/a:isc:bind:9.6.0:a1", "cpe:/a:isc:bind:9.10.0:a1", "cpe:/a:isc:bind:9.4.0:a6", "cpe:/a:isc:bind:9.4", "cpe:/a:isc:bind:9.1.1:rc7", "cpe:/a:isc:bind:9.2.3", "cpe:/a:isc:bind:9.2.7:rc3", "cpe:/a:isc:bind:9.4.0:b2", "cpe:/a:isc:bind:9.4.3", "cpe:/a:isc:bind:9.3.0:rc1", "cpe:/a:isc:bind:9.6.0:b1", "cpe:/a:isc:bind:9.2.3:rc1", "cpe:/a:isc:bind:9.2.3:rc4", "cpe:/a:isc:bind:9.2.4:rc3", "cpe:/a:isc:bind:9.2.0:rc3", "cpe:/a:isc:bind:9.2.7:rc2", "cpe:/a:isc:bind:9.0.1", "cpe:/a:isc:bind:9.3.5", "cpe:/a:isc:bind:9.2.2:p3", "cpe:/a:isc:bind:9.10.3:rc1", "cpe:/a:isc:bind:9.2.9:rc1", "cpe:/a:isc:bind:9.10.2:b1", "cpe:/a:isc:bind:9.10.2:p1", "cpe:/a:isc:bind:9.4.2:rc1", "cpe:/a:isc:bind:9.4.3:b3", "cpe:/a:isc:bind:9.2.1:rc1", "cpe:/a:isc:bind:9.2.4", "cpe:/a:isc:bind:9.10.3", "cpe:/a:isc:bind:9.1.3:rc1", "cpe:/a:isc:bind:9.4.0:b1", "cpe:/a:isc:bind:9.2.0:rc9", "cpe:/a:isc:bind:9.2.2:p2", "cpe:/a:isc:bind:9.2.2", "cpe:/a:isc:bind:9.10.0:b2", "cpe:/a:isc:bind:9.0.0:rc4", "cpe:/a:isc:bind:9.0.1:rc2", "cpe:/a:isc:bind:9.2.1"], "cvelist": ["CVE-2010-0382"], "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta handles out-of-bailiwick data accompanying a secure response without re-fetching from the original source, which allows remote attackers to have an unspecified impact via a crafted response, aka Bug 20819. NOTE: this vulnerability exists because of a regression during the fix for CVE-2009-4022.", "edition": 1, "enchantments": {}, "hash": "9dec4d3ab3542cfaba1d3c4fcab574f9db65d7a71e2d38daa4f4a2fbf319207d", "hashmap": [{"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "6b3bb7be3b959a65a8145293fbfa3060", "key": "href"}, {"hash": "1c907da64a09f00817465b4a93444a48", "key": "description"}, {"hash": "b3db5e15e628f8a0f2631749a593d7bc", "key": "assessment"}, {"hash": "2f42fe0e0a1d3831c537174657abff90", "key": "cpe"}, {"hash": "7525308e85470258a47d743391244c3d", "key": "title"}, {"hash": "028ec48af74edd1f50fc150df1d1bd30", "key": "published"}, {"hash": "8c101e45eefd566e051a1f5dde037788", "key": "modified"}, {"hash": "774fce555a963c00be305187dd6dff95", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "796ba7ff35bd8ab1a9413c1e05adc80c", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "f1b5641a27e84a6c264e15465fead2e6", "key": "scanner"}, {"hash": "af06a720b3d7f0a34ca2c7a2a31134d0", "key": "cvelist"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0382", "id": "CVE-2010-0382", "lastseen": "2016-09-03T13:29:06", "modified": "2016-04-04T10:28:21", "objectVersion": "1.2", "published": "2010-01-22T17:00:00", "references": ["http://www.vupen.com/english/advisories/2010/0622", "http://www.debian.org/security/2010/dsa-2054", "http://www.vupen.com/english/advisories/2010/1352", "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0018", "https://www.isc.org/advisories/CVE-2009-4022v6"], "reporter": "NVD", "scanner": [{"href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:6665", "name": "oval:org.mitre.oval:def:6665", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}], "title": "CVE-2010-0382", "type": "cve", "viewCount": 0}, "differentElements": ["assessment", "modified"], "edition": 1, "lastseen": "2016-09-03T13:29:06"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "06fcc9dbe829286f34cb34ef9d8a1670"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "2f42fe0e0a1d3831c537174657abff90"}, {"key": "cvelist", "hash": "af06a720b3d7f0a34ca2c7a2a31134d0"}, {"key": "cvss", "hash": "774fce555a963c00be305187dd6dff95"}, {"key": "description", "hash": "1c907da64a09f00817465b4a93444a48"}, {"key": "href", "hash": "6b3bb7be3b959a65a8145293fbfa3060"}, {"key": "modified", "hash": "6e5c7ea0fb3a993570db3d435c5a6ecc"}, {"key": "published", "hash": "028ec48af74edd1f50fc150df1d1bd30"}, {"key": "references", "hash": "796ba7ff35bd8ab1a9413c1e05adc80c"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "f1b5641a27e84a6c264e15465fead2e6"}, {"key": "title", "hash": "7525308e85470258a47d743391244c3d"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "8001813668a53953ec5e91329aef356211edb1d2efc0f56212a20744d9b593f9", "viewCount": 2, "enchantments": {"score": {"value": 6.8, "vector": "NONE", "modified": "2017-09-19T13:36:51"}, "vulnersScore": 6.8}, "objectVersion": "1.3", "cpe": ["cpe:/a:isc:bind:9.1.1:rc4", "cpe:/a:isc:bind:9.2.0:rc10", "cpe:/a:isc:bind:9.10.0:b1", "cpe:/a:isc:bind:9.3.1", "cpe:/a:isc:bind:9.3.0", "cpe:/a:isc:bind:9.4.0:a3", "cpe:/a:isc:bind:9.10.0:rc2", "cpe:/a:isc:bind:9.2.7", "cpe:/a:isc:bind:9.3.3:rc3", "cpe:/a:isc:bind:9.2.6", "cpe:/a:isc:bind:9.0", "cpe:/a:isc:bind:9.10.1:rc1", "cpe:/a:isc:bind:9.2.0:rc5", "cpe:/a:isc:bind:9.2.4:rc5", "cpe:/a:isc:bind:9.2.1:rc2", "cpe:/a:isc:bind:9.7.0:b1", "cpe:/a:isc:bind:9.3.3:rc1", "cpe:/a:isc:bind:9.1.1", "cpe:/a:isc:bind:9.3.0:b4", "cpe:/a:isc:bind:9.4.0:a5", "cpe:/a:isc:bind:9.10.1:b1", "cpe:/a:isc:bind:9.1.1:rc5", "cpe:/a:isc:bind:9.4.3:b1", "cpe:/a:isc:bind:9.4.3:p4", "cpe:/a:isc:bind:9.10.1:p2", "cpe:/a:isc:bind:9.2.0:rc6", "cpe:/a:isc:bind:9.10.3:p1", "cpe:/a:isc:bind:9.4.0:a4", "cpe:/a:isc:bind:9.6.0:rc2", "cpe:/a:isc:bind:9.10.3:p2", "cpe:/a:isc:bind:9.4.0:rc1", "cpe:/a:isc:bind:9.2.0:rc2", "cpe:/a:isc:bind:9.1.3:rc2", "cpe:/a:isc:bind:9.10.0:p2", "cpe:/a:isc:bind:9.2.3:rc2", "cpe:/a:isc:bind:9.2.2:rc1", "cpe:/a:isc:bind:9.2.0:a1", "cpe:/a:isc:bind:9.1.2:rc1", "cpe:/a:isc:bind:9.1.1:rc6", "cpe:/a:isc:bind:9.4.1", "cpe:/a:isc:bind:9.10.1:rc2", "cpe:/a:isc:bind:9.0.1:rc1", "cpe:/a:isc:bind:9.3.2", "cpe:/a:isc:bind:9.2.4:rc7", "cpe:/a:isc:bind:9.3.4", "cpe:/a:isc:bind:9.10.1", "cpe:/a:isc:bind:9.10.2:p4", "cpe:/a:isc:bind:9.0.0:rc3", "cpe:/a:isc:bind:9.6.1:rc1", "cpe:/a:isc:bind:9.1.0:rc1", "cpe:/a:isc:bind:9.2.0:rc1", "cpe:/a:isc:bind:9.6.1:p1", "cpe:/a:isc:bind:9.6.0", "cpe:/a:isc:bind:9.6.0:p1", "cpe:/a:isc:bind:9.2.4:rc2", "cpe:/a:isc:bind:9.0.0:rc2", "cpe:/a:isc:bind:9.10.0:rc1", "cpe:/a:isc:bind:9.2.4:rc8", "cpe:/a:isc:bind:9.10.1:b2", "cpe:/a:isc:bind:9.3.0:rc2", "cpe:/a:isc:bind:9.0.0:rc1", "cpe:/a:isc:bind:9.2.0:rc4", "cpe:/a:isc:bind:9.4.0:a2", "cpe:/a:isc:bind:9.2.0:b2", "cpe:/a:isc:bind:9.3.6", "cpe:/a:isc:bind:9.2.0:rc8", "cpe:/a:isc:bind:9.4.3:b2", "cpe:/a:isc:bind:9.10.2:rc1", "cpe:/a:isc:bind:9.10.0:p1", "cpe:/a:isc:bind:9.4.3:rc1", "cpe:/a:isc:bind:9.3.5:rc2", "cpe:/a:isc:bind:9.3.0:rc4", "cpe:/a:isc:bind:9.6.0:rc1", "cpe:/a:isc:bind:9.3.6:rc1", "cpe:/a:isc:bind:9.4.3:p5", "cpe:/a:isc:bind:9.4.0:b4", "cpe:/a:isc:bind:9.3.2:rc1", "cpe:/a:isc:bind:9.2.3:rc3", "cpe:/a:isc:bind:9.4.0:b3", "cpe:/a:isc:bind:9.4.2", "cpe:/a:isc:bind:9.4.3:p3", "cpe:/a:isc:bind:9.10.2:rc2", "cpe:/a:isc:bind:9.1.3:rc3", "cpe:/a:isc:bind:9.1.3", "cpe:/a:isc:bind:9.10.2:p3", "cpe:/a:isc:bind:9.10.1:p1", "cpe:/a:isc:bind:9.3.0:rc3", "cpe:/a:isc:bind:9.1", "cpe:/a:isc:bind:9.4.0:rc2", "cpe:/a:isc:bind:9.10.3:p3", "cpe:/a:isc:bind:9.2.9", "cpe:/a:isc:bind:9.10.3:b1", "cpe:/a:isc:bind:9.3.0:b3", "cpe:/a:isc:bind:9.2.7:rc1", "cpe:/a:isc:bind:9.2.0:rc7", "cpe:/a:isc:bind:9.1.2", "cpe:/a:isc:bind:9.2.5", "cpe:/a:isc:bind:9.2.4:rc6", "cpe:/a:isc:bind:9.0.0:rc6", "cpe:/a:isc:bind:9.3", "cpe:/a:isc:bind:9.3.0:b2", "cpe:/a:isc:bind:9.1.1:rc3", "cpe:/a:isc:bind:9.0.0:rc5", "cpe:/a:isc:bind:9.6.1", "cpe:/a:isc:bind:9.2.0", "cpe:/a:isc:bind:9.4.0", "cpe:/a:isc:bind:9.2", "cpe:/a:isc:bind:9.2.6:rc1", "cpe:/a:isc:bind:9.3.5:rc1", "cpe:/a:isc:bind:9.4.3:p1", "cpe:/a:isc:bind:9.6.1:b1", "cpe:/a:isc:bind:9.6.1:p2", "cpe:/a:isc:bind:9.3.1:b2", "cpe:/a:isc:bind:9.1.1:rc1", "cpe:/a:isc:bind:9.2.8", "cpe:/a:isc:bind:9.2.5:b2", "cpe:/a:isc:bind:9.2.0:a3", "cpe:/a:isc:bind:9.4.3:p2", "cpe:/a:isc:bind:9.3.3:rc2", "cpe:/a:isc:bind:9.2.0:a2", "cpe:/a:isc:bind:9.2.0:b1", "cpe:/a:isc:bind:9.4.0:a1", "cpe:/a:isc:bind:9.1.1:rc2", "cpe:/a:isc:bind:9.4.2:rc2", "cpe:/a:isc:bind:9.10.0", "cpe:/a:isc:bind:9.10.2:p2", "cpe:/a:isc:bind:9.2.5:rc1", "cpe:/a:isc:bind:9.3.3", "cpe:/a:isc:bind:9.3.1:rc1", "cpe:/a:isc:bind:9.2.4:rc4", "cpe:/a:isc:bind:9.10.0:a2", "cpe:/a:isc:bind:9.6.0:a1", "cpe:/a:isc:bind:9.10.0:a1", "cpe:/a:isc:bind:9.4.0:a6", "cpe:/a:isc:bind:9.4", "cpe:/a:isc:bind:9.1.1:rc7", "cpe:/a:isc:bind:9.2.3", "cpe:/a:isc:bind:9.2.7:rc3", "cpe:/a:isc:bind:9.4.0:b2", "cpe:/a:isc:bind:9.4.3", "cpe:/a:isc:bind:9.3.0:rc1", "cpe:/a:isc:bind:9.6.0:b1", "cpe:/a:isc:bind:9.2.3:rc1", "cpe:/a:isc:bind:9.2.3:rc4", "cpe:/a:isc:bind:9.2.4:rc3", "cpe:/a:isc:bind:9.2.0:rc3", "cpe:/a:isc:bind:9.2.7:rc2", "cpe:/a:isc:bind:9.0.1", "cpe:/a:isc:bind:9.3.5", "cpe:/a:isc:bind:9.2.2:p3", "cpe:/a:isc:bind:9.10.3:rc1", "cpe:/a:isc:bind:9.2.9:rc1", "cpe:/a:isc:bind:9.10.2:b1", "cpe:/a:isc:bind:9.10.2:p1", "cpe:/a:isc:bind:9.4.2:rc1", "cpe:/a:isc:bind:9.4.3:b3", "cpe:/a:isc:bind:9.2.1:rc1", "cpe:/a:isc:bind:9.2.4", "cpe:/a:isc:bind:9.10.3", "cpe:/a:isc:bind:9.1.3:rc1", "cpe:/a:isc:bind:9.4.0:b1", "cpe:/a:isc:bind:9.2.0:rc9", "cpe:/a:isc:bind:9.2.2:p2", "cpe:/a:isc:bind:9.2.2", "cpe:/a:isc:bind:9.10.0:b2", "cpe:/a:isc:bind:9.0.0:rc4", "cpe:/a:isc:bind:9.0.1:rc2", "cpe:/a:isc:bind:9.2.1"], "assessment": {"href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11753", "name": "oval:org.mitre.oval:def:11753", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}, "scanner": [{"href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:6665", "name": "oval:org.mitre.oval:def:6665", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}]}

{"result": {"f5": [{"lastseen": "2016-09-26T17:23:07", "references": ["https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html", "https://support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html", "https://support.f5.com/kb/en-us/solutions/public/9000/500/sol9502.html", "https://support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html", "https://support.f5.com/kb/en-us/solutions/public/0000/100/sol167.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html"], "edition": 1, "description": "Recommended Action\n\nIf the previous table lists a version in the **Versions known to be not vulnerable** column, you can eliminate this vulnerability by upgrading to the listed version. \n\n\nSupplemental Information\n\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents\n * SOL4602: Overview of the F5 security vulnerability response policy\n * SOL4918: Overview of the F5 critical issue hotfix policy\n * SOL167: Downloading software and firmware from F5\n * SOL9502: BIG-IP hotfix matrix\n", "reporter": "f5", "published": "2014-11-03T00:00:00", "title": "SOL15787 - BIND vulnerability CVE-2010-0382", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "BIG-IP WOM", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP APM", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP LTM", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP ASM", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP PSM", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP Edge Gateway\n", "version": "10.1.0", "operator": "le"}, {"name": "BIG-IP GTM", "version": "10.1.0", "operator": "le"}], "cvelist": ["CVE-2010-0382"], "modified": "2014-11-03T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/15000/700/sol15787.html", "id": "SOL15787", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2018-07-12T18:10:37", "references": ["http://www.nessus.org/u?2a556d91"], "pluginID": "78835", "description": "ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta handles out-of-bailiwick data accompanying a secure response without re-fetching from the original source, which allows remote attackers to have an unspecified impact via a crafted response, aka Bug 20819. NOTE: this vulnerability exists because of a regression during the fix for CVE-2009-4022.", "edition": 4, "reporter": "Tenable", "published": "2014-11-04T00:00:00", "title": "F5 Networks BIG-IP : BIND vulnerability (SOL15787)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "F5 Networks Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2009-4022"], "modified": "2018-07-10T00:00:00", "cpe": ["cpe:/a:f5:big-ip_global_traffic_manager", "cpe:/a:f5:big-ip_link_controller", "cpe:/a:f5:big-ip_application_security_manager", "cpe:/h:f5:big-ip_protocol_security_manager", "cpe:/a:f5:big-ip_local_traffic_manager", "cpe:/a:f5:big-ip_wan_optimization_manager", "cpe:/h:f5:big-ip", "cpe:/a:f5:big-ip_webaccelerator", "cpe:/a:f5:big-ip_access_policy_manager"], "id": "F5_BIGIP_SOL15787.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78835", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from F5 Networks BIG-IP Solution SOL15787.\n#\n# The text description of this plugin is (C) F5 Networks.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78835);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/10 14:27:32\");\n\n script_cve_id(\"CVE-2009-4022\", \"CVE-2010-0382\");\n script_bugtraq_id(37118);\n\n script_name(english:\"F5 Networks BIG-IP : BIND vulnerability (SOL15787)\");\n script_summary(english:\"Checks the BIG-IP version.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote device is missing a vendor-supplied security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before\n9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta handles out-of-bailiwick\ndata accompanying a secure response without re-fetching from the\noriginal source, which allows remote attackers to have an unspecified\nimpact via a crafted response, aka Bug 20819. NOTE: this vulnerability\nexists because of a regression during the fix for CVE-2009-4022.\"\n );\n # http://support.f5.com/kb/en-us/solutions/public/15000/700/sol15787.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2a556d91\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade to one of the non-vulnerable versions listed in the F5\nSolution SOL15787.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_access_policy_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_security_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_global_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_link_controller\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_local_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_wan_optimization_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_webaccelerator\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip_protocol_security_manager\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/11/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"F5 Networks Local Security Checks\");\n\n script_dependencies(\"f5_bigip_detect.nbin\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/BIG-IP/hotfix\", \"Host/BIG-IP/modules\", \"Host/BIG-IP/version\");\n\n exit(0);\n}\n\n\ninclude(\"f5_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nversion = get_kb_item(\"Host/BIG-IP/version\");\nif ( ! version ) audit(AUDIT_OS_NOT, \"F5 Networks BIG-IP\");\nif ( isnull(get_kb_item(\"Host/BIG-IP/hotfix\")) ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/hotfix\");\nif ( ! get_kb_item(\"Host/BIG-IP/modules\") ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/modules\");\n\nsol = \"SOL15787\";\nvmatrix = make_array();\n\n# APM\nvmatrix[\"APM\"] = make_array();\nvmatrix[\"APM\"][\"affected\" ] = make_list(\"10.1.0\");\nvmatrix[\"APM\"][\"unaffected\"] = make_list(\"11.0.0-11.6.0\",\"10.2.0-10.2.4\");\n\n# ASM\nvmatrix[\"ASM\"] = make_array();\nvmatrix[\"ASM\"][\"affected\" ] = make_list(\"10.0.0-10.1.0\");\nvmatrix[\"ASM\"][\"unaffected\"] = make_list(\"11.0.0-11.6.0\",\"10.2.0-10.2.4\");\n\n# GTM\nvmatrix[\"GTM\"] = make_array();\nvmatrix[\"GTM\"][\"affected\" ] = make_list(\"10.0.0-10.1.0\");\nvmatrix[\"GTM\"][\"unaffected\"] = make_list(\"11.0.0-11.6.0\",\"10.2.0-10.2.4\");\n\n# LC\nvmatrix[\"LC\"] = make_array();\nvmatrix[\"LC\"][\"affected\" ] = make_list(\"10.0.0-10.1.0\");\nvmatrix[\"LC\"][\"unaffected\"] = make_list(\"11.0.0-11.6.0\",\"10.2.0-10.2.4\");\n\n# LTM\nvmatrix[\"LTM\"] = make_array();\nvmatrix[\"LTM\"][\"affected\" ] = make_list(\"10.0.0-10.1.0\");\nvmatrix[\"LTM\"][\"unaffected\"] = make_list(\"11.0.0-11.6.0\",\"10.2.0-10.2.4\");\n\n# PSM\nvmatrix[\"PSM\"] = make_array();\nvmatrix[\"PSM\"][\"affected\" ] = make_list(\"10.0.0-10.1.0\");\nvmatrix[\"PSM\"][\"unaffected\"] = make_list(\"11.0.0-11.4.1\",\"10.2.0-10.2.4\");\n\n# WAM\nvmatrix[\"WAM\"] = make_array();\nvmatrix[\"WAM\"][\"affected\" ] = make_list(\"10.0.0-10.1.0\");\nvmatrix[\"WAM\"][\"unaffected\"] = make_list(\"11.0.0-11.3.0\",\"10.2.0-10.2.4\");\n\n# WOM\nvmatrix[\"WOM\"] = make_array();\nvmatrix[\"WOM\"][\"affected\" ] = make_list(\"10.0.0-10.1.0\");\nvmatrix[\"WOM\"][\"unaffected\"] = make_list(\"11.0.0-11.3.0\",\"10.2.0-10.2.4\");\n\n\nif (bigip_is_affected(vmatrix:vmatrix, sol:sol))\n{\n if (report_verbosity > 0) security_hole(port:0, extra:bigip_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = bigip_get_tested_modules();\n audit_extra = \"For BIG-IP module(s) \" + tested + \",\";\n if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);\n else audit(AUDIT_HOST_NOT, \"running any of the affected modules\");\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-06-29T05:25:49", "references": ["http://www.vupen.com/english/advisories/2010/0622", "https://www.isc.org/advisories/CVE2009-4022", "http://www.vupen.com/english/advisories/2010/1352", "http://www.vupen.com/english/advisories/2009/3335"], "pluginID": "42983", "description": "According to its version number, the remote installation of BIND suffers from a cache poisoning vulnerability. This issue affects all versions prior to 9.4.3-P5, 9.5.2-P2 or 9.6.1-P3.\n\nNote that only nameservers that allow recursive queries and validate DNSSEC records are affected. Nessus has not attempted to verify if this configuration applies to the remote service, though, so this could be a false positive.", "edition": 3, "reporter": "Tenable", "published": "2009-12-02T00:00:00", "title": "ISC BIND 9 DNSSEC Cache Poisoning", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "DNS", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2009-4022"], "modified": "2018-06-27T00:00:00", "cpe": ["cpe:/a:isc:bind"], "id": "BIND9_DNSSEC_CACHE_POISONING.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=42983", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(42983);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2018/06/27 18:42:25\");\n\n script_cve_id(\"CVE-2009-4022\", \"CVE-2010-0382\");\n script_bugtraq_id(37118);\n script_xref(name:\"CERT\", value:\"418861\");\n\n script_name(english:\"ISC BIND 9 DNSSEC Cache Poisoning\");\n script_summary(english:\"Checks version of BIND\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote name server is affected by a cache poisoning vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its version number, the remote installation of BIND\nsuffers from a cache poisoning vulnerability. This issue affects all\nversions prior to 9.4.3-P5, 9.5.2-P2 or 9.6.1-P3.\n\nNote that only nameservers that allow recursive queries and validate\nDNSSEC records are affected. Nessus has not attempted to verify if\nthis configuration applies to the remote service, though, so this\ncould be a false positive.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.isc.org/advisories/CVE2009-4022\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.vupen.com/english/advisories/2010/1352\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.vupen.com/english/advisories/2010/0622\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.vupen.com/english/advisories/2009/3335\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to BIND 9.4.3-P5 / 9.5.2-P2 / 9.6.1-P3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/12/02\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:isc:bind\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"DNS\");\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"bind_version.nasl\", \"dnssec_resolver.nasl\");\n script_require_keys(\"bind/version\", \"Settings/ParanoidReport\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\nver = get_kb_item(\"bind/version\");\nif (!ver) exit(1, \"BIND version is unknown or DNS is not running.\");\n\n# Versions affected:\n# 9.0.x, 9.1.x, 9.2.x, 9.3.x, 9.4.0-9.4.3-P3, 9.5.0, 9.5.1, 9.5.2, 9.6.0, 9.6.1-P1\n\npattern = \"^(\" +\n \"9\\.4-ESVb1|\" +\n \"9\\.4\\.([0-2]([^0-9]|$)|3(-P[1-4]$|[^0-9\\-]|$))|\"+\n \"9\\.5\\.([01]([^0-9]|$)|2(-P1$|[^0-9\\-]|$))|\" +\n \"9\\.6\\.(0([^0-9]|$)|1(-P[1-2]$|[^0-9\\-]|$)|2b1$)|\" +\n \"9\\.7\\.0([ab][0-3]$|rc1$)\" + \")\";\n\nif (ver =~ \"^9\\.[0-3]\\.\")\n{\n security_note(port:53, proto:\"udp\", extra:\n'\\nNo fix is available on branches 9.0 to 9.3 (end of life).');\n exit(0);\n}\nif (ereg(pattern:pattern, string:ver) )\n security_note(port:53, proto:\"udp\");\nelse\n exit(0, \"BIND version \"+ ver + \" is running on port 53 and is not vulnerable.\");\n\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-29T13:39:03", "references": ["http://www.debian.org/security/2010/dsa-2054", "https://security-tracker.debian.org/tracker/CVE-2010-0097", "https://security-tracker.debian.org/tracker/CVE-2010-0290", "https://security-tracker.debian.org/tracker/CVE-2010-0382"], "pluginID": "46829", "edition": 2, "description": "Several cache-poisoning vulnerabilities have been discovered in BIND.\nThese vulnerabilities apply only if DNSSEC validation is enabled and trust anchors have been installed, which is not the default.\n\nThe Common Vulnerabilities and Exposures project identifies the following problems :\n\n - CVE-2010-0097 BIND does not properly validate DNSSEC NSEC records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.\n\n - CVE-2010-0290 When processing crafted responses containing CNAME or DNAME records, BIND is subject to a DNS cache poisoning vulnerability, provided that DNSSEC validation is enabled and trust anchors have been installed.\n\n - CVE-2010-0382 When processing certain responses containing out-of-bailiwick data, BIND is subject to a DNS cache poisoning vulnerability, provided that DNSSEC validation is enabled and trust anchors have been installed.\n\nIn addition, this update introduce a more conservative query behavior in the presence of repeated DNSSEC validation failures, addressing the 'roll over and die' phenomenon. The new version also supports the cryptographic algorithm used by the upcoming signed ICANN DNS root (RSASHA256 from RFC 5702), and the NSEC3 secure denial of existence algorithm used by some signed top-level domains.\n\nThis update is based on a new upstream version of BIND 9, 9.6-ESV-R1.\nBecause of the scope of changes, extra care is recommended when installing the update. Due to ABI changes, new Debian packages are included, and the update has to be installed using 'apt-get dist-upgrade' (or an equivalent aptitude command).", "reporter": "Tenable", "published": "2010-06-08T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "nessus", "title": "Debian DSA-2054-1 : bind9 - DNS cache poisoning", "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "cpe": ["p-cpe:/a:debian:debian_linux:bind9", "cpe:/o:debian:debian_linux:5.0"], "modified": "2014-05-03T00:00:00", "id": "DEBIAN_DSA-2054.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=46829", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2054. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(46829);\n script_version(\"$Revision: 1.7 $\");\n script_cvs_date(\"$Date: 2014/05/03 11:20:11 $\");\n\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_bugtraq_id(37118, 37865);\n script_xref(name:\"DSA\", value:\"2054\");\n\n script_name(english:\"Debian DSA-2054-1 : bind9 - DNS cache poisoning\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Several cache-poisoning vulnerabilities have been discovered in BIND.\nThese vulnerabilities apply only if DNSSEC validation is enabled and\ntrust anchors have been installed, which is not the default.\n\nThe Common Vulnerabilities and Exposures project identifies the\nfollowing problems :\n\n - CVE-2010-0097\n BIND does not properly validate DNSSEC NSEC records,\n which allows remote attackers to add the Authenticated\n Data (AD) flag to a forged NXDOMAIN response for an\n existing domain.\n\n - CVE-2010-0290\n When processing crafted responses containing CNAME or\n DNAME records, BIND is subject to a DNS cache poisoning\n vulnerability, provided that DNSSEC validation is\n enabled and trust anchors have been installed.\n\n - CVE-2010-0382\n When processing certain responses containing\n out-of-bailiwick data, BIND is subject to a DNS cache\n poisoning vulnerability, provided that DNSSEC validation\n is enabled and trust anchors have been installed.\n\nIn addition, this update introduce a more conservative query behavior\nin the presence of repeated DNSSEC validation failures, addressing the\n'roll over and die' phenomenon. The new version also supports the\ncryptographic algorithm used by the upcoming signed ICANN DNS root\n(RSASHA256 from RFC 5702), and the NSEC3 secure denial of existence\nalgorithm used by some signed top-level domains.\n\nThis update is based on a new upstream version of BIND 9, 9.6-ESV-R1.\nBecause of the scope of changes, extra care is recommended when\ninstalling the update. Due to ABI changes, new Debian packages are\nincluded, and the update has to be installed using 'apt-get\ndist-upgrade' (or an equivalent aptitude command).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2010-0097\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2010-0290\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2010-0382\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2010/dsa-2054\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the bind9 packages.\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 1:9.6.ESV.R1+dfsg-0+lenny1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:bind9\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:5.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/06/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/06/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2014 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"5.0\", prefix:\"bind9\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"bind9-doc\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"bind9-host\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"bind9utils\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"dnsutils\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"libbind-dev\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"libbind9-50\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"libdns55\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"libisc52\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"libisccc50\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"libisccfg50\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"liblwres50\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\nif (deb_check(release:\"5.0\", prefix:\"lwresd\", reference:\"1:9.6.ESV.R1+dfsg-0+lenny1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-07-30T13:48:11", "references": ["http://rhn.redhat.com/errata/RHSA-2010-0062.html", "https://www.redhat.com/security/data/cve/CVE-2010-0382.html", "https://www.redhat.com/security/data/cve/CVE-2010-0290.html", "https://www.redhat.com/security/data/cve/CVE-2010-0097.html"], "pluginID": "44105", "description": "Updated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If BIND was running as a DNSSEC-validating resolver, it could incorrectly cache NXDOMAIN responses, as if they were valid, for records proven by NSEC or NSEC3 to exist. A remote attacker could use this flaw to cause a BIND server to return the bogus, cached NXDOMAIN responses for valid records and prevent users from retrieving those records (denial of service). (CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND was incorrectly caching certain responses without performing proper DNSSEC validation. CNAME and DNAME records could be cached, without proper DNSSEC validation, when received from processing recursive client queries that requested DNSSEC records but indicated that checking should be disabled. A remote attacker could use this flaw to bypass the DNSSEC validation check and perform a cache poisoning attack if the target BIND server was receiving such client queries.\n(CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which contain a backported patch to resolve these issues. After installing the update, the BIND daemon (named) will be restarted automatically.", "edition": 4, "reporter": "Tenable", "published": "2010-01-21T00:00:00", "title": "RHEL 5 : bind (RHSA-2010:0062)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2018-07-25T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:5", "p-cpe:/a:redhat:enterprise_linux:bind-chroot", "p-cpe:/a:redhat:enterprise_linux:bind-devel", "p-cpe:/a:redhat:enterprise_linux:caching-nameserver", "p-cpe:/a:redhat:enterprise_linux:bind-libbind-devel", "p-cpe:/a:redhat:enterprise_linux:bind-libs", "cpe:/o:redhat:enterprise_linux:5.4", "p-cpe:/a:redhat:enterprise_linux:bind-utils", "p-cpe:/a:redhat:enterprise_linux:bind", "p-cpe:/a:redhat:enterprise_linux:bind-sdb"], "id": "REDHAT-RHSA-2010-0062.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=44105", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2010:0062. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(44105);\n script_version (\"1.19\");\n script_cvs_date(\"Date: 2018/07/25 18:58:05\");\n\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_bugtraq_id(37118, 37865);\n script_xref(name:\"RHSA\", value:\"2010:0062\");\n\n script_name(english:\"RHEL 5 : bind (RHSA-2010:0062)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated bind packages that fix two security issues are now available\nfor Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the\nDomain Name System (DNS) protocols. BIND includes a DNS server\n(named); a resolver library (routines for applications to use when\ninterfacing with DNS); and tools for verifying that the DNS server is\noperating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If\nBIND was running as a DNSSEC-validating resolver, it could incorrectly\ncache NXDOMAIN responses, as if they were valid, for records proven by\nNSEC or NSEC3 to exist. A remote attacker could use this flaw to cause\na BIND server to return the bogus, cached NXDOMAIN responses for valid\nrecords and prevent users from retrieving those records (denial of\nservice). (CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND\nwas incorrectly caching certain responses without performing proper\nDNSSEC validation. CNAME and DNAME records could be cached, without\nproper DNSSEC validation, when received from processing recursive\nclient queries that requested DNSSEC records but indicated that\nchecking should be disabled. A remote attacker could use this flaw to\nbypass the DNSSEC validation check and perform a cache poisoning\nattack if the target BIND server was receiving such client queries.\n(CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve these issues. After installing\nthe update, the BIND daemon (named) will be restarted automatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2010-0097.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2010-0290.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2010-0382.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2010-0062.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind-chroot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind-libbind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind-sdb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:caching-nameserver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5.4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/01/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2010:0062\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"bind-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"bind-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"bind-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"bind-chroot-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"bind-chroot-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"bind-chroot-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"bind-devel-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"bind-libbind-devel-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"bind-libs-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"bind-sdb-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"bind-sdb-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"bind-sdb-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"bind-utils-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"bind-utils-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"bind-utils-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"caching-nameserver-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"caching-nameserver-9.3.6-4.P1.el5_4.2\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"caching-nameserver-9.3.6-4.P1.el5_4.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"bind / bind-chroot / bind-devel / bind-libbind-devel / bind-libs / etc\");\n }\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-07-21T07:59:43", "references": ["https://oss.oracle.com/pipermail/el-errata/2010-January/001334.html"], "pluginID": "67991", "description": "From Red Hat Security Advisory 2010:0062 :\n\nUpdated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If BIND was running as a DNSSEC-validating resolver, it could incorrectly cache NXDOMAIN responses, as if they were valid, for records proven by NSEC or NSEC3 to exist. A remote attacker could use this flaw to cause a BIND server to return the bogus, cached NXDOMAIN responses for valid records and prevent users from retrieving those records (denial of service). (CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND was incorrectly caching certain responses without performing proper DNSSEC validation. CNAME and DNAME records could be cached, without proper DNSSEC validation, when received from processing recursive client queries that requested DNSSEC records but indicated that checking should be disabled. A remote attacker could use this flaw to bypass the DNSSEC validation check and perform a cache poisoning attack if the target BIND server was receiving such client queries.\n(CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which contain a backported patch to resolve these issues. After installing the update, the BIND daemon (named) will be restarted automatically.", "edition": 3, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 5 : bind (ELSA-2010-0062)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2018-07-18T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:bind-chroot", "p-cpe:/a:oracle:linux:bind-sdb", "p-cpe:/a:oracle:linux:bind", "p-cpe:/a:oracle:linux:bind-devel", "p-cpe:/a:oracle:linux:bind-utils", "p-cpe:/a:oracle:linux:caching-nameserver", "cpe:/o:oracle:linux:5", "p-cpe:/a:oracle:linux:bind-libs", "p-cpe:/a:oracle:linux:bind-libbind-devel"], "id": "ORACLELINUX_ELSA-2010-0062.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=67991", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2010:0062 and \n# Oracle Linux Security Advisory ELSA-2010-0062 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67991);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/18 17:43:56\");\n\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_bugtraq_id(37118, 37865);\n script_xref(name:\"RHSA\", value:\"2010:0062\");\n\n script_name(english:\"Oracle Linux 5 : bind (ELSA-2010-0062)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2010:0062 :\n\nUpdated bind packages that fix two security issues are now available\nfor Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the\nDomain Name System (DNS) protocols. BIND includes a DNS server\n(named); a resolver library (routines for applications to use when\ninterfacing with DNS); and tools for verifying that the DNS server is\noperating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If\nBIND was running as a DNSSEC-validating resolver, it could incorrectly\ncache NXDOMAIN responses, as if they were valid, for records proven by\nNSEC or NSEC3 to exist. A remote attacker could use this flaw to cause\na BIND server to return the bogus, cached NXDOMAIN responses for valid\nrecords and prevent users from retrieving those records (denial of\nservice). (CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND\nwas incorrectly caching certain responses without performing proper\nDNSSEC validation. CNAME and DNAME records could be cached, without\nproper DNSSEC validation, when received from processing recursive\nclient queries that requested DNSSEC records but indicated that\nchecking should be disabled. A remote attacker could use this flaw to\nbypass the DNSSEC validation check and perform a cache poisoning\nattack if the target BIND server was receiving such client queries.\n(CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve these issues. After installing\nthe update, the BIND daemon (named) will be restarted automatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2010-January/001334.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected bind packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-chroot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-libbind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-sdb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:caching-nameserver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL5\", reference:\"bind-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"bind-chroot-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"bind-devel-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"bind-libbind-devel-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"bind-libs-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"bind-sdb-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"bind-utils-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"caching-nameserver-9.3.6-4.P1.el5_4.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"bind / bind-chroot / bind-devel / bind-libbind-devel / bind-libs / etc\");\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-07-03T09:58:32", "references": ["http://www.nessus.org/u?bfcf9910", "http://www.nessus.org/u?d766cadb"], "pluginID": "44099", "description": "Updated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If BIND was running as a DNSSEC-validating resolver, it could incorrectly cache NXDOMAIN responses, as if they were valid, for records proven by NSEC or NSEC3 to exist. A remote attacker could use this flaw to cause a BIND server to return the bogus, cached NXDOMAIN responses for valid records and prevent users from retrieving those records (denial of service). (CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND was incorrectly caching certain responses without performing proper DNSSEC validation. CNAME and DNAME records could be cached, without proper DNSSEC validation, when received from processing recursive client queries that requested DNSSEC records but indicated that checking should be disabled. A remote attacker could use this flaw to bypass the DNSSEC validation check and perform a cache poisoning attack if the target BIND server was receiving such client queries.\n(CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which contain a backported patch to resolve these issues. After installing the update, the BIND daemon (named) will be restarted automatically.", "edition": 3, "reporter": "Tenable", "published": "2010-01-21T00:00:00", "title": "CentOS 5 : bind (CESA-2010:0062)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2018-07-02T00:00:00", "cpe": ["p-cpe:/a:centos:centos:bind", "p-cpe:/a:centos:centos:bind-devel", "p-cpe:/a:centos:centos:caching-nameserver", "p-cpe:/a:centos:centos:bind-sdb", "p-cpe:/a:centos:centos:bind-utils", "p-cpe:/a:centos:centos:bind-libs", "p-cpe:/a:centos:centos:bind-chroot", "cpe:/o:centos:centos:5", "p-cpe:/a:centos:centos:bind-libbind-devel"], "id": "CENTOS_RHSA-2010-0062.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=44099", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2010:0062 and \n# CentOS Errata and Security Advisory 2010:0062 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(44099);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/07/02 18:48:52\");\n\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_bugtraq_id(37118, 37865);\n script_xref(name:\"RHSA\", value:\"2010:0062\");\n\n script_name(english:\"CentOS 5 : bind (CESA-2010:0062)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated bind packages that fix two security issues are now available\nfor Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the\nDomain Name System (DNS) protocols. BIND includes a DNS server\n(named); a resolver library (routines for applications to use when\ninterfacing with DNS); and tools for verifying that the DNS server is\noperating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If\nBIND was running as a DNSSEC-validating resolver, it could incorrectly\ncache NXDOMAIN responses, as if they were valid, for records proven by\nNSEC or NSEC3 to exist. A remote attacker could use this flaw to cause\na BIND server to return the bogus, cached NXDOMAIN responses for valid\nrecords and prevent users from retrieving those records (denial of\nservice). (CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND\nwas incorrectly caching certain responses without performing proper\nDNSSEC validation. CNAME and DNAME records could be cached, without\nproper DNSSEC validation, when received from processing recursive\nclient queries that requested DNSSEC records but indicated that\nchecking should be disabled. A remote attacker could use this flaw to\nbypass the DNSSEC validation check and perform a cache poisoning\nattack if the target BIND server was receiving such client queries.\n(CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve these issues. After installing\nthe update, the BIND daemon (named) will be restarted automatically.\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2010-January/016477.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?d766cadb\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2010-January/016478.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?bfcf9910\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected bind packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-chroot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-libbind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-sdb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:caching-nameserver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/01/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-chroot-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-devel-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-libbind-devel-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-libs-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-sdb-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-utils-9.3.6-4.P1.el5_4.2\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"caching-nameserver-9.3.6-4.P1.el5_4.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-29T13:44:29", "references": ["http://www.isc.org/software/bind/advisories/cve-2011-4313", "http://aix.software.ibm.com/aix/efixes/security/bind9_advisory3.asc"], "pluginID": "63701", "edition": 2, "description": "An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure.\n\nFurthermore, AIX BIND 9.4.1 is affected by the following three security vulnerabilities: CVE-2010-0382 - ISC BIND Out-Of-Bailwick Data Handling Error CVE-2010-0097 - ISC BIND Improper DNSSEC NSEC and NSEC3 Record CVE-2009-0025 - BIND OpenSSL DSA_do_verify and EVP_VerifyFinal.", "reporter": "Tenable", "published": "2013-01-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "nessus", "title": "AIX 7.1 TL 1 : bind9 (IV10049)", "naslFamily": "AIX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0097", "CVE-2009-0025", "CVE-2011-4313"], "cpe": ["cpe:/o:ibm:aix:7.1"], "modified": "2013-03-11T00:00:00", "id": "AIX_IV10049.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=63701", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text in the description was extracted from AIX Security\n# Advisory bind9_advisory3.asc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(63701);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2013/03/11 18:51:57 $\");\n\n script_cve_id(\"CVE-2009-0025\", \"CVE-2010-0097\", \"CVE-2010-0382\", \"CVE-2011-4313\");\n\n script_name(english:\"AIX 7.1 TL 1 : bind9 (IV10049)\");\n script_summary(english:\"Check for APAR IV10049\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote AIX host is missing a security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An as-yet unidentified network event caused BIND 9 resolvers to cache\nan invalid record, subsequent queries for which could crash the\nresolvers with an assertion failure.\n\nFurthermore, AIX BIND 9.4.1 is affected by the following three\nsecurity vulnerabilities: CVE-2010-0382 - ISC BIND Out-Of-Bailwick\nData Handling Error CVE-2010-0097 - ISC BIND Improper DNSSEC NSEC and\nNSEC3 Record CVE-2009-0025 - BIND OpenSSL DSA_do_verify and\nEVP_VerifyFinal.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://aix.software.ibm.com/aix/efixes/security/bind9_advisory3.asc\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install the appropriate interim fix.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:ibm:aix:7.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/12/28\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/01/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013 Tenable Network Security, Inc.\");\n script_family(english:\"AIX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/AIX/lslpp\", \"Host/local_checks_enabled\", \"Host/AIX/version\");\n\n exit(0);\n}\n\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"aix.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif ( ! get_kb_item(\"Host/AIX/version\") ) audit(AUDIT_OS_NOT, \"AIX\");\nif ( ! get_kb_item(\"Host/AIX/lslpp\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif ( get_kb_item(\"Host/AIX/emgr_failure\" ) ) exit(0, \"This iFix check is disabled because : \"+get_kb_item(\"Host/AIX/emgr_failure\") );\n\nflag = 0;\n\nif (aix_check_ifix(release:\"7.1\", ml:\"01\", sp:\"01\", patch:\"IV10049m01\", package:\"bos.net.tcp.client\", minfilesetver:\"7.1.1.0\", maxfilesetver:\"7.1.1.1\") < 0) flag++;\nif (aix_check_ifix(release:\"7.1\", ml:\"01\", sp:\"01\", patch:\"IV10049m01\", package:\"bos.net.tcp.server\", minfilesetver:\"7.1.1.0\", maxfilesetver:\"7.1.1.0\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:aix_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-07-12T18:15:01", "references": ["https://security.gentoo.org/glsa/201006-11", "https://www.isc.org/advisories/CVE2009-4022"], "pluginID": "46778", "description": "The remote host is affected by the vulnerability described in GLSA-201006-11 (BIND: Multiple vulnerabilities)\n\n Multiple cache poisoning vulnerabilities were discovered in BIND. For further information please consult the CVE entries and the ISC Security Bulletin referenced below.\n Note: CVE-2010-0290 and CVE-2010-0382 exist because of an incomplete fix and a regression for CVE-2009-4022.\n Impact :\n\n An attacker could exploit this weakness to poison the cache of a recursive resolver and thus spoof DNS traffic, which could e.g. lead to the redirection of web or mail traffic to malicious sites.\n Workaround :\n\n There is no known workaround at this time.", "edition": 3, "reporter": "Tenable", "published": "2010-06-02T00:00:00", "title": "GLSA-201006-11 : BIND: Multiple vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097", "CVE-2009-4022"], "modified": "2018-07-11T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:bind"], "id": "GENTOO_GLSA-201006-11.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=46778", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 201006-11.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(46778);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/07/11 17:09:26\");\n\n script_cve_id(\"CVE-2009-4022\", \"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_xref(name:\"GLSA\", value:\"201006-11\");\n\n script_name(english:\"GLSA-201006-11 : BIND: Multiple vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-201006-11\n(BIND: Multiple vulnerabilities)\n\n Multiple cache poisoning vulnerabilities were discovered in BIND. For\n further information please consult the CVE entries and the ISC Security\n Bulletin referenced below.\n Note: CVE-2010-0290 and CVE-2010-0382 exist because of an incomplete\n fix and a regression for CVE-2009-4022.\n \nImpact :\n\n An attacker could exploit this weakness to poison the cache of a\n recursive resolver and thus spoof DNS traffic, which could e.g. lead to\n the redirection of web or mail traffic to malicious sites.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.isc.org/advisories/CVE2009-4022\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/201006-11\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All BIND users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-dns/bind-9.4.3_p5'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/06/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/06/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"net-dns/bind\", unaffected:make_list(\"ge 9.4.3_p5\"), vulnerable:make_list(\"lt 9.4.3_p5\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"BIND\");\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-29T13:33:33", "references": ["http://www.isc.org/software/bind/advisories/cve-2011-4313", "http://aix.software.ibm.com/aix/efixes/security/bind9_advisory3.asc"], "pluginID": "63706", "edition": 2, "description": "An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure.\n\nFurthermore, AIX BIND 9.4.1 is affected by the following three security vulnerabilities: CVE-2010-0382 - ISC BIND Out-Of-Bailwick Data Handling Error CVE-2010-0097 - ISC BIND Improper DNSSEC NSEC and NSEC3 Record CVE-2009-0025 - BIND OpenSSL DSA_do_verify and EVP_VerifyFinal.", "reporter": "Tenable", "published": "2013-01-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "nessus", "title": "AIX 6.1 TL 6 : bind9 (IV11743)", "naslFamily": "AIX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0097", "CVE-2009-0025", "CVE-2011-4313"], "cpe": ["cpe:/o:ibm:aix:6.1"], "modified": "2013-03-11T00:00:00", "id": "AIX_IV11743.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=63706", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text in the description was extracted from AIX Security\n# Advisory bind9_advisory3.asc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(63706);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2013/03/11 18:51:57 $\");\n\n script_cve_id(\"CVE-2009-0025\", \"CVE-2010-0097\", \"CVE-2010-0382\", \"CVE-2011-4313\");\n\n script_name(english:\"AIX 6.1 TL 6 : bind9 (IV11743)\");\n script_summary(english:\"Check for APAR IV11743\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote AIX host is missing a security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An as-yet unidentified network event caused BIND 9 resolvers to cache\nan invalid record, subsequent queries for which could crash the\nresolvers with an assertion failure.\n\nFurthermore, AIX BIND 9.4.1 is affected by the following three\nsecurity vulnerabilities: CVE-2010-0382 - ISC BIND Out-Of-Bailwick\nData Handling Error CVE-2010-0097 - ISC BIND Improper DNSSEC NSEC and\nNSEC3 Record CVE-2009-0025 - BIND OpenSSL DSA_do_verify and\nEVP_VerifyFinal.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://aix.software.ibm.com/aix/efixes/security/bind9_advisory3.asc\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install the appropriate interim fix.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:ibm:aix:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/12/28\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/01/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013 Tenable Network Security, Inc.\");\n script_family(english:\"AIX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/AIX/lslpp\", \"Host/local_checks_enabled\", \"Host/AIX/version\");\n\n exit(0);\n}\n\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"aix.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif ( ! get_kb_item(\"Host/AIX/version\") ) audit(AUDIT_OS_NOT, \"AIX\");\nif ( ! get_kb_item(\"Host/AIX/lslpp\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif ( get_kb_item(\"Host/AIX/emgr_failure\" ) ) exit(0, \"This iFix check is disabled because : \"+get_kb_item(\"Host/AIX/emgr_failure\") );\n\nflag = 0;\n\nif (aix_check_ifix(release:\"6.1\", ml:\"06\", sp:\"16\", patch:\"IV11743m06\", package:\"bos.net.tcp.client\", minfilesetver:\"6.1.6.0\", maxfilesetver:\"6.1.6.16\") < 0) flag++;\nif (aix_check_ifix(release:\"6.1\", ml:\"06\", sp:\"16\", patch:\"IV11743m06\", package:\"bos.net.tcp.server\", minfilesetver:\"6.1.6.0\", maxfilesetver:\"6.1.6.16\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:aix_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-29T13:43:27", "references": ["http://www.isc.org/software/bind/advisories/cve-2011-4313", "http://aix.software.ibm.com/aix/efixes/security/bind9_advisory3.asc"], "pluginID": "63705", "description": "An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure.\n\nFurthermore, AIX BIND 9.4.1 is affected by the following three security vulnerabilities: CVE-2010-0382 - ISC BIND Out-Of-Bailwick Data Handling Error CVE-2010-0097 - ISC BIND Improper DNSSEC NSEC and NSEC3 Record CVE-2009-0025 - BIND OpenSSL DSA_do_verify and EVP_VerifyFinal.", "edition": 2, "reporter": "Tenable", "published": "2013-01-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "nessus", "title": "AIX 6.1 TL 5 : bind9 (IV11742)", "naslFamily": "AIX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0097", "CVE-2009-0025", "CVE-2011-4313"], "cpe": ["cpe:/o:ibm:aix:6.1"], "modified": "2013-03-11T00:00:00", "id": "AIX_IV11742.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=63705", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text in the description was extracted from AIX Security\n# Advisory bind9_advisory3.asc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(63705);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2013/03/11 18:51:57 $\");\n\n script_cve_id(\"CVE-2009-0025\", \"CVE-2010-0097\", \"CVE-2010-0382\", \"CVE-2011-4313\");\n\n script_name(english:\"AIX 6.1 TL 5 : bind9 (IV11742)\");\n script_summary(english:\"Check for APAR IV11742\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote AIX host is missing a security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An as-yet unidentified network event caused BIND 9 resolvers to cache\nan invalid record, subsequent queries for which could crash the\nresolvers with an assertion failure.\n\nFurthermore, AIX BIND 9.4.1 is affected by the following three\nsecurity vulnerabilities: CVE-2010-0382 - ISC BIND Out-Of-Bailwick\nData Handling Error CVE-2010-0097 - ISC BIND Improper DNSSEC NSEC and\nNSEC3 Record CVE-2009-0025 - BIND OpenSSL DSA_do_verify and\nEVP_VerifyFinal.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://aix.software.ibm.com/aix/efixes/security/bind9_advisory3.asc\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install the appropriate interim fix.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:ibm:aix:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/12/28\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/01/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013 Tenable Network Security, Inc.\");\n script_family(english:\"AIX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/AIX/lslpp\", \"Host/local_checks_enabled\", \"Host/AIX/version\");\n\n exit(0);\n}\n\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"aix.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif ( ! get_kb_item(\"Host/AIX/version\") ) audit(AUDIT_OS_NOT, \"AIX\");\nif ( ! get_kb_item(\"Host/AIX/lslpp\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif ( get_kb_item(\"Host/AIX/emgr_failure\" ) ) exit(0, \"This iFix check is disabled because : \"+get_kb_item(\"Host/AIX/emgr_failure\") );\n\nflag = 0;\n\nif (aix_check_ifix(release:\"6.1\", ml:\"05\", sp:\"07\", patch:\"IV11742m07\", package:\"bos.net.tcp.client\", minfilesetver:\"6.1.5.0\", maxfilesetver:\"6.1.5.7\") < 0) flag++;\nif (aix_check_ifix(release:\"6.1\", ml:\"05\", sp:\"07\", patch:\"IV11742m07\", package:\"bos.net.tcp.server\", minfilesetver:\"6.1.5.0\", maxfilesetver:\"6.1.5.6\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:aix_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2018-01-06T13:05:00", "references": [], "pluginID": "136141256231067632", "description": "The remote host is missing an update to bind9\nannounced via advisory DSA 2054-2.", "edition": 1, "reporter": "Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com", "published": "2010-07-06T00:00:00", "type": "openvas", "title": "Debian Security Advisory DSA 2054-2 (bind9)", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2018-01-03T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231067632", "id": "OPENVAS:136141256231067632", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2054_2.nasl 8274 2018-01-03 07:28:17Z teissa $\n# Description: Auto-generated from advisory DSA 2054-2 (bind9)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This update restores the PID file location for bind to the location\nbefore the last security update. For reference, here is the original\nadvisory text that explains the security problems fixed:\n\nSeveral cache-poisoning vulnerabilities have been discovered in BIND.\nThese vulnerabilities are apply only if DNSSEC validation is enabled and\ntrust anchors have been installed, which is not the default.\n\nThe Common Vulnerabilities and Exposures project identifies the\nfollowing problems:\n\nCVE-2010-0097\nBIND does not properly validate DNSSEC NSEC records, which allows\nremote attackers to add the Authenticated Data (AD) flag to a forged\nNXDOMAIN response for an existing domain.\n\nCVE-2010-0290\nWhen processing crafted responses containing CNAME or DNAME records,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nCVE-2010-0382\nWhen processing certain responses containing out-of-bailiwick data,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nIn addition, this update introduce a more conservative query behavior\nin the presence of repeated DNSSEC validation failures, addressing the\nroll over and die phenomenon. The new version also supports the\ncryptographic algorithm used by the upcoming signed ICANN DNS root\n(RSASHA256 from RFC 5702), and the NSEC3 secure denial of existence\nalgorithm used by some signed top-level domains.\n\nThis update is based on a new upstream version of BIND 9, 9.6-ESV-R1.\nBecause of the scope of changes, extra care is recommended when\ninstalling the update. Due to ABI changes, new Debian packages are\nincluded, and the update has to be installed using apt-get\ndist-upgrade (or an equivalent aptitude command).\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 1:9.6.ESV.R1+dfsg-0+lenny2.\n\nThe unstable distribution is not affected by the wrong PID file location.\n\nWe recommend that you upgrade your bind9 packages.\";\ntag_summary = \"The remote host is missing an update to bind9\nannounced via advisory DSA 2054-2.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202054-2\";\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.67632\");\n script_version(\"$Revision: 8274 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-03 08:28:17 +0100 (Wed, 03 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2010-07-06 02:35:12 +0200 (Tue, 06 Jul 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"Debian Security Advisory DSA 2054-2 (bind9)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"bind9-doc\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9-host\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9utils\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"dnsutils\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind-dev\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind9-40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind9-50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libdns45\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libdns55\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisc45\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisc52\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccc40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccc50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccfg40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccfg50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"liblwres40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"liblwres50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"lwresd\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-02T10:54:40", "references": ["http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02263226", "02546"], "pluginID": "1361412562310835240", "description": "Check for the Version of BIND", "edition": 1, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-10-01T00:00:00", "title": "HP-UX Update for BIND HPSBUX02546", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "HP-UX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2009-4022"], "modified": "2017-12-25T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310835240", "id": "OPENVAS:1361412562310835240", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# HP-UX Update for BIND HPSBUX02546\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_impact = \"Remote Denial of Service (DoS)\n unauthorized disclosure of information\";\ntag_affected = \"BIND on\n HP-UX B.11.11, B.11.23, B.11.31 running BIND v9.3.2 or BIND v9.2.0\";\ntag_insight = \"A potential security vulnerability has been identified with HP-UX running \n BIND. The vulnerability could be exploited remotely to create a Denial of \n Service (DoS) and permit unauthorized disclosure of information.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02263226\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.835240\");\n script_version(\"$Revision: 8244 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-25 08:29:28 +0100 (Mon, 25 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-10-01 08:16:52 +0200 (Fri, 01 Oct 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"HPSBUX\", value: \"02546\");\n script_cve_id(\"CVE-2009-4022\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"HP-UX Update for BIND HPSBUX02546\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of BIND\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"HP-UX Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/hp_hp-ux\", \"ssh/login/release\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-hpux.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"HPUX11.31\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"NameService.BIND-AUX\", revision:\"C.9.3.2.8.0\", rls:\"HPUX11.31\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"NameService.BIND-RUN\", revision:\"C.9.3.2.8.0\", rls:\"HPUX11.31\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.23\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"BindUpgrade.BIND-UPGRADE\", revision:\"C.9.3.2.7.0\", rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"BindUpgrade.BIND2-UPGRADE\", revision:\"C.9.3.2.7.0\", rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS-INETD\", patch_list:['PHNE_40339'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS-RUN\", patch_list:['PHNE_40339'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS2-RUN\", patch_list:['PHNE_40339'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.11\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"BindUpgrade.BIND-UPGRADE\", revision:\"C.9.3.2.7.0\", rls:\"HPUX11.11\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"BINDv920.INETSVCS-BIND\", revision:\"B.11.11.01.015\", rls:\"HPUX11.11\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-11T11:04:40", "references": [], "pluginID": "136141256231067539", "description": "The remote host is missing an update to bind9\nannounced via advisory DSA 2054-1.", "edition": 1, "reporter": "Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com", "published": "2010-06-10T00:00:00", "title": "Debian Security Advisory DSA 2054-1 (bind9)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2018-01-09T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231067539", "id": "OPENVAS:136141256231067539", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2054_1.nasl 8338 2018-01-09 08:00:38Z teissa $\n# Description: Auto-generated from advisory DSA 2054-1 (bind9)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Several cache-poisoning vulnerabilities have been discovered in BIND.\nThese vulnerabilities are apply only if DNSSEC validation is enabled and\ntrust anchors have been installed, which is not the default.\n\nThe Common Vulnerabilities and Exposures project identifies the\nfollowing problems:\n\nCVE-2010-0097\nBIND does not properly validate DNSSEC NSEC records, which allows\nremote attackers to add the Authenticated Data (AD) flag to a forged\nNXDOMAIN response for an existing domain.\n\nCVE-2010-0290\nWhen processing crafted responses containing CNAME or DNAME records,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nCVE-2010-0382\nWhen processing certain responses containing out-of-bailiwick data,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nIn addition, this update introduce a more conservative query behavior\nin the presence of repeated DNSSEC validation failures, addressing the\nroll over and die phenomenon. The new version also supports the\ncryptographic algorithm used by the upcoming signed ICANN DNS root\n(RSASHA256 from RFC 5702), and the NSEC3 secure denial of existence\nalgorithm used by some signed top-level domains.\n\nThis update is based on a new upstream version of BIND 9, 9.6-ESV-R1.\nBecause of the scope of changes, extra care is recommended when\ninstalling the update. Due to ABI changes, new Debian packages are\nincluded, and the update has to be installed using apt-get\ndist-upgrade (or an equivalent aptitude command).\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 1:9.6.ESV.R1+dfsg-0+lenny1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1:9.7.0.dfsg-1.\n\nWe recommend that you upgrade your bind9 packages.\";\ntag_summary = \"The remote host is missing an update to bind9\nannounced via advisory DSA 2054-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202054-1\";\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.67539\");\n script_version(\"$Revision: 8338 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-09 09:00:38 +0100 (Tue, 09 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2010-06-10 21:49:43 +0200 (Thu, 10 Jun 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"Debian Security Advisory DSA 2054-1 (bind9)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"bind9-doc\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisc52\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind-dev\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"lwresd\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind9-50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9-host\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"liblwres50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccc50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccfg50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9utils\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libdns55\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"dnsutils\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:49:15", "references": [], "pluginID": "67632", "description": "The remote host is missing an update to bind9\nannounced via advisory DSA 2054-2.", "edition": 2, "reporter": "Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com", "published": "2010-07-06T00:00:00", "title": "Debian Security Advisory DSA 2054-2 (bind9)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=67632", "id": "OPENVAS:67632", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2054_2.nasl 6614 2017-07-07 12:09:12Z cfischer $\n# Description: Auto-generated from advisory DSA 2054-2 (bind9)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This update restores the PID file location for bind to the location\nbefore the last security update. For reference, here is the original\nadvisory text that explains the security problems fixed:\n\nSeveral cache-poisoning vulnerabilities have been discovered in BIND.\nThese vulnerabilities are apply only if DNSSEC validation is enabled and\ntrust anchors have been installed, which is not the default.\n\nThe Common Vulnerabilities and Exposures project identifies the\nfollowing problems:\n\nCVE-2010-0097\nBIND does not properly validate DNSSEC NSEC records, which allows\nremote attackers to add the Authenticated Data (AD) flag to a forged\nNXDOMAIN response for an existing domain.\n\nCVE-2010-0290\nWhen processing crafted responses containing CNAME or DNAME records,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nCVE-2010-0382\nWhen processing certain responses containing out-of-bailiwick data,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nIn addition, this update introduce a more conservative query behavior\nin the presence of repeated DNSSEC validation failures, addressing the\nroll over and die phenomenon. The new version also supports the\ncryptographic algorithm used by the upcoming signed ICANN DNS root\n(RSASHA256 from RFC 5702), and the NSEC3 secure denial of existence\nalgorithm used by some signed top-level domains.\n\nThis update is based on a new upstream version of BIND 9, 9.6-ESV-R1.\nBecause of the scope of changes, extra care is recommended when\ninstalling the update. Due to ABI changes, new Debian packages are\nincluded, and the update has to be installed using apt-get\ndist-upgrade (or an equivalent aptitude command).\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 1:9.6.ESV.R1+dfsg-0+lenny2.\n\nThe unstable distribution is not affected by the wrong PID file location.\n\nWe recommend that you upgrade your bind9 packages.\";\ntag_summary = \"The remote host is missing an update to bind9\nannounced via advisory DSA 2054-2.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202054-2\";\n\n\nif(description)\n{\n script_id(67632);\n script_version(\"$Revision: 6614 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:09:12 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-07-06 02:35:12 +0200 (Tue, 06 Jul 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"Debian Security Advisory DSA 2054-2 (bind9)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"bind9-doc\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9-host\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9utils\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"dnsutils\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind-dev\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind9-40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind9-50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libdns45\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libdns55\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisc45\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisc52\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccc40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccc50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccfg40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccfg50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"liblwres40\", ver:\"9.5.1.dfsg.P3-1+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"liblwres50\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"lwresd\", ver:\"9.6.ESV.R1+dfsg-0+lenny2\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-12-14T11:48:51", "references": ["http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02263226", "02546"], "pluginID": "835240", "description": "Check for the Version of BIND", "edition": 3, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-10-01T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "HP-UX Update for BIND HPSBUX02546", "type": "openvas", "naslFamily": "HP-UX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2009-4022"], "modified": "2017-12-13T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=835240", "id": "OPENVAS:835240", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# HP-UX Update for BIND HPSBUX02546\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_impact = \"Remote Denial of Service (DoS)\n unauthorized disclosure of information\";\ntag_affected = \"BIND on\n HP-UX B.11.11, B.11.23, B.11.31 running BIND v9.3.2 or BIND v9.2.0\";\ntag_insight = \"A potential security vulnerability has been identified with HP-UX running \n BIND. The vulnerability could be exploited remotely to create a Denial of \n Service (DoS) and permit unauthorized disclosure of information.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02263226\");\n script_id(835240);\n script_version(\"$Revision: 8092 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-13 07:31:16 +0100 (Wed, 13 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-10-01 08:16:52 +0200 (Fri, 01 Oct 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"HPSBUX\", value: \"02546\");\n script_cve_id(\"CVE-2009-4022\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"HP-UX Update for BIND HPSBUX02546\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of BIND\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"HP-UX Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/hp_hp-ux\", \"ssh/login/release\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-hpux.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"HPUX11.31\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"NameService.BIND-AUX\", revision:\"C.9.3.2.8.0\", rls:\"HPUX11.31\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"NameService.BIND-RUN\", revision:\"C.9.3.2.8.0\", rls:\"HPUX11.31\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.23\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"BindUpgrade.BIND-UPGRADE\", revision:\"C.9.3.2.7.0\", rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"BindUpgrade.BIND2-UPGRADE\", revision:\"C.9.3.2.7.0\", rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS-INETD\", patch_list:['PHNE_40339'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS-RUN\", patch_list:['PHNE_40339'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS2-RUN\", patch_list:['PHNE_40339'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.11\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"BindUpgrade.BIND-UPGRADE\", revision:\"C.9.3.2.7.0\", rls:\"HPUX11.11\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"BINDv920.INETSVCS-BIND\", revision:\"B.11.11.01.015\", rls:\"HPUX11.11\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-02T21:09:53", "references": ["http://www.isc.org/products/BIND/", "http://www.securityfocus.com/bid/37865", "http://www.kb.cert.org/vuls/id/360341", "https://www.isc.org/advisories/CVE-2010-0097"], "pluginID": "1361412562310100458", "description": "ISC BIND 9 is prone to a remote cache-poisoning vulnerability.", "edition": 1, "reporter": "This script is Copyright (C) 2010 Greenbone Networks GmbH", "published": "2010-01-20T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "title": "ISC BIND 9 DNSSEC Bogus NXDOMAIN Response Remote Cache Poisoning Vulnerability", "type": "openvas", "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2016-11-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310100458", "id": "OPENVAS:1361412562310100458", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: bind_37865.nasl 4433 2016-11-07 15:21:16Z cfi $\n#\n# ISC BIND 9 DNSSEC Bogus NXDOMAIN Response Remote Cache Poisoning Vulnerability\n#\n# Authors:\n# Michael Meyer <michael.meyer@greenbone.net>\n#\n# Updated By : Antu Sanadi <santu@secpod.com> 2010-01-129 #6962\n# Added the CVE-2010-0290 and CVE-2010-0382\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:isc:bind\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.100458\");\n script_version(\"$Revision: 4433 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-11-07 16:21:16 +0100 (Mon, 07 Nov 2016) $\");\n script_tag(name:\"creation_date\", value:\"2010-01-20 19:30:24 +0100 (Wed, 20 Jan 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_bugtraq_id(37865);\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\",\"CVE-2010-0382\");\n script_name(\"ISC BIND 9 DNSSEC Bogus NXDOMAIN Response Remote Cache Poisoning Vulnerability\");\n script_category(ACT_GATHER_INFO);\n script_family(\"General\");\n script_copyright(\"This script is Copyright (C) 2010 Greenbone Networks GmbH\");\n script_dependencies(\"bind_version.nasl\");\n script_mandatory_keys(\"ISC BIND/installed\");\n\n script_xref(name:\"URL\", value:\"http://www.securityfocus.com/bid/37865\");\n script_xref(name:\"URL\", value:\"http://www.isc.org/products/BIND/\");\n script_xref(name:\"URL\", value:\"http://www.kb.cert.org/vuls/id/360341\");\n script_xref(name:\"URL\", value:\"https://www.isc.org/advisories/CVE-2010-0097\");\n\n tag_summary = \"ISC BIND 9 is prone to a remote cache-poisoning vulnerability.\";\n\n tag_impact = \"An attacker may leverage this issue to manipulate cache data,\n potentially facilitating man-in-the-middle, site-impersonation, or denial-of-\n service attacks.\";\n\n tag_affected = \"Versions prior to the following are vulnerable:\n\n BIND 9.4.3-P5 BIND 9.5.2-P2 BIND 9.6.1-P3\";\n\n tag_solution = \"Updates are available. Please see the references for details.\";\n\n script_tag(name:\"solution\", value:tag_solution);\n script_tag(name:\"summary\", value:tag_summary);\n script_tag(name:\"impact\", value:tag_impact);\n script_tag(name:\"affected\", value:tag_affected);\n\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif( ! port = get_app_port( cpe:CPE ) ) exit( 0 );\nif( ! infos = get_app_version_and_proto( cpe:CPE, port:port ) ) exit( 0 );\n\nversion = infos[\"version\"];\nproto = infos[\"proto\"];\n\nversion = str_replace(find:\"-\", string: version, replace:\".\");\n\nif( version =~ \"9\\.[0-4]+\" ) {\n if( version_is_less( version:version, test_version: \"9.4.3.P5\" ) ) {\n fix = \"9.4.3-P5\";\n VULN = TRUE;\n }\n}\n\nelse if( version =~ \"9\\.5\" ) {\n if( version_is_less( version:version, test_version:\"9.5.2.P2\" ) ) {\n fix = \"9.5.3-P2\";\n VULN = TRUE;\n }\n}\n\nelse if( version =~ \"9\\.6\" ) {\n if( version_is_less( version:version, test_version:\"9.6.1.P3\" ) ) {\n fix = \"9.6.1-P3\";\n VULN = TRUE;\n }\n}\n\nif( VULN ) {\n report = report_fixed_ver( installed_version:version, fixed_version:fix );\n security_message( data:report, port:port, proto:proto );\n exit( 0 );\n}\n\nexit( 99 );", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:49:24", "references": [], "pluginID": "67539", "description": "The remote host is missing an update to bind9\nannounced via advisory DSA 2054-1.", "edition": 2, "reporter": "Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com", "published": "2010-06-10T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Debian Security Advisory DSA 2054-1 (bind9)", "type": "openvas", "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=67539", "id": "OPENVAS:67539", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2054_1.nasl 6614 2017-07-07 12:09:12Z cfischer $\n# Description: Auto-generated from advisory DSA 2054-1 (bind9)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Several cache-poisoning vulnerabilities have been discovered in BIND.\nThese vulnerabilities are apply only if DNSSEC validation is enabled and\ntrust anchors have been installed, which is not the default.\n\nThe Common Vulnerabilities and Exposures project identifies the\nfollowing problems:\n\nCVE-2010-0097\nBIND does not properly validate DNSSEC NSEC records, which allows\nremote attackers to add the Authenticated Data (AD) flag to a forged\nNXDOMAIN response for an existing domain.\n\nCVE-2010-0290\nWhen processing crafted responses containing CNAME or DNAME records,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nCVE-2010-0382\nWhen processing certain responses containing out-of-bailiwick data,\nBIND is subject to a DNS cache poisoning vulnerability, provided that\nDNSSEC validation is enabled and trust anchors have been installed.\n\nIn addition, this update introduce a more conservative query behavior\nin the presence of repeated DNSSEC validation failures, addressing the\nroll over and die phenomenon. The new version also supports the\ncryptographic algorithm used by the upcoming signed ICANN DNS root\n(RSASHA256 from RFC 5702), and the NSEC3 secure denial of existence\nalgorithm used by some signed top-level domains.\n\nThis update is based on a new upstream version of BIND 9, 9.6-ESV-R1.\nBecause of the scope of changes, extra care is recommended when\ninstalling the update. Due to ABI changes, new Debian packages are\nincluded, and the update has to be installed using apt-get\ndist-upgrade (or an equivalent aptitude command).\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 1:9.6.ESV.R1+dfsg-0+lenny1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1:9.7.0.dfsg-1.\n\nWe recommend that you upgrade your bind9 packages.\";\ntag_summary = \"The remote host is missing an update to bind9\nannounced via advisory DSA 2054-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202054-1\";\n\n\nif(description)\n{\n script_id(67539);\n script_version(\"$Revision: 6614 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:09:12 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-06-10 21:49:43 +0200 (Thu, 10 Jun 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cve_id(\"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"Debian Security Advisory DSA 2054-1 (bind9)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"bind9-doc\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisc52\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind-dev\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"lwresd\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libbind9-50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9-host\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"liblwres50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccc50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libisccfg50\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9utils\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libdns55\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"bind9\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"dnsutils\", ver:\"9.6.ESV.R1+dfsg-0+lenny1\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-04-06T11:36:00", "references": [], "pluginID": "136141256231069014", "description": "The remote host is missing updates announced in\nadvisory GLSA 201006-11.", "edition": 1, "reporter": "Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com", "published": "2011-03-09T00:00:00", "title": "Gentoo Security Advisory GLSA 201006-11 (BIND)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097", "CVE-2009-4022"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231069014", "id": "OPENVAS:136141256231069014", "sourceData": "#\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Several cache poisoning vulnerabilities have been found in BIND.\";\ntag_solution = \"All BIND users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-dns/bind-9.4.3_p5'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20201006-11\nhttp://bugs.gentoo.org/show_bug.cgi?id=301548\nhttp://bugs.gentoo.org/show_bug.cgi?id=308035\nhttps://www.isc.org/advisories/CVE2009-4022\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 201006-11.\";\n\n \n \n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.69014\");\n script_version(\"$Revision: 9351 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:05:43 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-03-09 05:54:11 +0100 (Wed, 09 Mar 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cve_id(\"CVE-2009-4022\", \"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"Gentoo Security Advisory GLSA 201006-11 (BIND)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"net-dns/bind\", unaffected: make_list(\"ge 9.4.3_p5\"), vulnerable: make_list(\"lt 9.4.3_p5\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:53:57", "references": ["http://linux.oracle.com/errata/ELSA-2010-0062.html"], "pluginID": "1361412562310122397", "description": "Oracle Linux Local Security Checks ELSA-2010-0062", "edition": 2, "reporter": "Eero Volotinen", "published": "2015-10-06T00:00:00", "title": "Oracle Linux Local Check: ELSA-2010-0062", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097", "CVE-2009-4022"], "modified": "2017-07-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122397", "id": "OPENVAS:1361412562310122397", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2010-0062.nasl 6555 2017-07-06 11:54:09Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122397\");\nscript_version(\"$Revision: 6555 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:18:15 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:54:09 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2010-0062\");\nscript_tag(name: \"insight\", value: \"ELSA-2010-0062 - bind security update - [30:9.3.6-4.P1.2]- NSEC validation code could cause wrong NXDOMAIN responses (#554851, CVE-2010-0097)- improve fix for CVE-2009-4022 (#538744) - {C,D}NAMEs could be returned to clients without proper DNSSEC validation - don't validate + cache out-of-bailiwick data returned with a secure answer. Refetch it instead.\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2010-0062\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2010-0062.html\");\nscript_cve_id(\"CVE-2010-0097\",\"CVE-2010-0290\",\"CVE-2010-0382\");\nscript_tag(name:\"cvss_base\", value:\"7.6\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"bind-chroot\", rpm:\"bind-chroot~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"bind-libbind-devel\", rpm:\"bind-libbind-devel~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"bind-libs\", rpm:\"bind-libs~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"bind-sdb\", rpm:\"bind-sdb~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"caching-nameserver\", rpm:\"caching-nameserver~9.3.6~4.P1.el5_4.2\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-09-04T14:19:58", "references": [], "pluginID": "69014", "description": "The remote host is missing updates announced in\nadvisory GLSA 201006-11.", "edition": 3, "reporter": "Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com", "published": "2011-03-09T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Gentoo Security Advisory GLSA 201006-11 (BIND)", "type": "openvas", "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097", "CVE-2009-4022"], "modified": "2017-08-28T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=69014", "id": "OPENVAS:69014", "sourceData": "#\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Several cache poisoning vulnerabilities have been found in BIND.\";\ntag_solution = \"All BIND users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-dns/bind-9.4.3_p5'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20201006-11\nhttp://bugs.gentoo.org/show_bug.cgi?id=301548\nhttp://bugs.gentoo.org/show_bug.cgi?id=308035\nhttps://www.isc.org/advisories/CVE2009-4022\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 201006-11.\";\n\n \n \n\nif(description)\n{\n script_id(69014);\n script_version(\"$Revision: 7015 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-08-28 13:51:24 +0200 (Mon, 28 Aug 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-03-09 05:54:11 +0100 (Wed, 09 Mar 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:C/I:C/A:C\");\n script_cve_id(\"CVE-2009-4022\", \"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\");\n script_name(\"Gentoo Security Advisory GLSA 201006-11 (BIND)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"net-dns/bind\", unaffected: make_list(\"ge 9.4.3_p5\"), vulnerable: make_list(\"lt 9.4.3_p5\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2016-09-02T18:28:15", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "libdns55", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "lwresd", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "liblwres50", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "libisc52", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "bind9utils", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "libbind-dev", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "libbind9-50", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "liblwres50", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "libisccc50", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "bind9utils", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "bind9utils", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "bind9", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "bind9-host", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "libisccc50", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "libisccc50", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "liblwres50", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "bind9", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "bind9utils", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "bind9", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "libdns55", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "bind9utils", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "libbind-dev", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "libisccfg50", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "dnsutils", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "dnsutils", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "bind9utils", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1.diff", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1.diff.gz", "packageName": "bind9", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "lwresd", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-doc_9.6.ESV.R1+dfsg-0+lenny1_all.deb", "packageName": "bind9-doc", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "libisc52", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "libisccc50", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "libisccc50", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "bind9", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "libisc52", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "libisc52", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "lwresd", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "libisc52", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "libbind-dev", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "bind9-host", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "dnsutils", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "dnsutils", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "liblwres50", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "bind9-host", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "libisc52", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "libisccfg50", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "bind9", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "libdns55", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "liblwres50", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "libbind9-50", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "lwresd", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "bind9-host", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "libbind9-50", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "libbind-dev", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "libbind-dev", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "bind9-host", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "lwresd", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "lwresd", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "bind9", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "bind9-host", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "libisc52", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "libbind-dev", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "bind9-host", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "bind9", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "libisccc50", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "libdns55", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "libisccc50", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "libbind9-50", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "lwresd", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "libisccc50", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "libisccc50", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "bind9-host", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "libbind9-50", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "libisccc50", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "liblwres50", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "libbind-dev", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "libbind9-50", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "libbind9-50", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "libbind-dev", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "libdns55", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "lwresd", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "bind9utils", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "libisc52", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "libisccfg50", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "dnsutils", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "bind9utils", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "bind9-host", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "bind9-host", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "dnsutils", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "libisccc50", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "libisccfg50", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1.dsc", "packageName": "bind9", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "dnsutils", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "libbind-dev", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "lwresd", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "libbind9-50", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "bind9", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "dnsutils", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "libbind9-50", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "liblwres50", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "bind9utils", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "libbind9-50", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg.orig", "packageFilename": "bind9_9.6.ESV.R1+dfsg.orig.tar.gz", "packageName": "bind9", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "dnsutils", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "libisccfg50", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "libisc52", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "bind9-host", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "lwresd", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "libisc52", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "libisccfg50", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "libdns55", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "libdns55", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "libisccfg50", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "libdns55", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccc50_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "libisccc50", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "libisccfg50", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "libisccfg50", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "libbind9-50", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_s390.deb", "packageName": "dnsutils", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "libbind-dev", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "lwresd", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "bind9", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "liblwres50", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "dnsutils", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_alpha.deb", "packageName": "libdns55", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "liblwres50", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "lwresd_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "lwresd", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "libisccfg50", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "bind9", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "bind9utils", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "bind9utils", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_arm.deb", "packageName": "libdns55", "arch": "arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "libisc52", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisc52_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "libisc52", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "libdns55", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "bind9", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9_9.6.ESV.R1+dfsg-0+lenny1_amd64.deb", "packageName": "bind9", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_mipsel.deb", "packageName": "libbind-dev", "arch": "mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind-dev_9.6.ESV.R1+dfsg-0+lenny1_armel.deb", "packageName": "libbind-dev", "arch": "armel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9-host_9.6.ESV.R1+dfsg-0+lenny1_hppa.deb", "packageName": "bind9-host", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "liblwres50", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "dnsutils_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "dnsutils", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_powerpc.deb", "packageName": "liblwres50", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_sparc.deb", "packageName": "libisccfg50", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libdns55_9.6.ESV.R1+dfsg-0+lenny1_mips.deb", "packageName": "libdns55", "arch": "mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libisccfg50_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "libisccfg50", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "libbind9-50_9.6.ESV.R1+dfsg-0+lenny1_ia64.deb", "packageName": "libbind9-50", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "liblwres50_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "liblwres50", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "5", "packageVersion": "9.6.ESV.R1+dfsg-0+lenny1", "packageFilename": "bind9utils_9.6.ESV.R1+dfsg-0+lenny1_i386.deb", "packageName": "bind9utils", "arch": "i686", "operator": "lt"}], "edition": 1, "description": "Several cache-poisoning vulnerabilities have been discovered in BIND. These vulnerabilities apply only if DNSSEC validation is enabled and trust anchors have been installed, which is not the default.\n\nThe Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2010-0097](<https://security-tracker.debian.org/tracker/CVE-2010-0097>)\n\nBIND does not properly validate DNSSEC NSEC records, which allows remote attackers to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.\n\n * [CVE-2010-0290](<https://security-tracker.debian.org/tracker/CVE-2010-0290>)\n\nWhen processing crafted responses containing CNAME or DNAME records, BIND is subject to a DNS cache poisoning vulnerability, provided that DNSSEC validation is enabled and trust anchors have been installed.\n\n * [CVE-2010-0382](<https://security-tracker.debian.org/tracker/CVE-2010-0382>)\n\nWhen processing certain responses containing out-of-bailiwick data, BIND is subject to a DNS cache poisoning vulnerability, provided that DNSSEC validation is enabled and trust anchors have been installed.\n\nIn addition, this update introduce a more conservative query behavior in the presence of repeated DNSSEC validation failures, addressing the \"roll over and die\" phenomenon. The new version also supports the cryptographic algorithm used by the upcoming signed ICANN DNS root (RSASHA256 from RFC 5702), and the NSEC3 secure denial of existence algorithm used by some signed top-level domains.\n\nThis update is based on a new upstream version of BIND 9, 9.6-ESV-R1. Because of the scope of changes, extra care is recommended when installing the update. Due to ABI changes, new Debian packages are included, and the update has to be installed using \"apt-get dist-upgrade\" (or an equivalent aptitude command).\n\nFor the stable distribution (lenny), these problems have been fixed in version 1:9.6.ESV.R1+dfsg-0+lenny1.\n\nFor the unstable distribution (sid), these problems have been fixed in version 1:9.7.0.dfsg-1.\n\nWe recommend that you upgrade your bind9 packages.", "reporter": "Debian", "published": "2010-06-04T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "bind9 -- DNS cache poisoning", "type": "debian", "bulletinFamily": "unix", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097"], "modified": "2010-06-04T00:00:00", "href": "http://www.debian.org/security/dsa-2054", "id": "DSA-2054", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2016-09-04T11:16:16", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "src", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "src", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "src", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libs", "operator": "lt"}], "description": "[30:9.3.6-4.P1.2]\n- NSEC validation code could cause wrong NXDOMAIN responses (#554851,\n CVE-2010-0097)\n- improve fix for CVE-2009-4022 (#538744)\n - {C,D}NAMEs could be returned to clients without proper DNSSEC validation\n - don't validate + cache out-of-bailiwick data returned with a secure answer.\n Refetch it instead. ", "edition": 1, "reporter": "Oracle", "published": "2010-01-20T00:00:00", "title": "bind security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "oraclelinux", "bulletinFamily": "unix", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097", "CVE-2009-4022"], "modified": "2010-01-20T00:00:00", "id": "ELSA-2010-0062", "href": "http://linux.oracle.com/errata/ELSA-2010-0062.html", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:00", "references": ["https://www.isc.org/advisories/CVE2009-4022", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0097", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0382", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4022", "https://bugs.gentoo.org/show_bug.cgi?id=301548", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0290", "https://bugs.gentoo.org/show_bug.cgi?id=308035"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "9.4.3_p5", "packageName": "net-dns/bind", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nISC BIND is the Internet Systems Consortium implementation of the Domain Name System (DNS) protocol. \n\n### Description\n\nMultiple cache poisoning vulnerabilities were discovered in BIND. For further information please consult the CVE entries and the ISC Security Bulletin referenced below. \n\nNote: CVE-2010-0290 and CVE-2010-0382 exist because of an incomplete fix and a regression for CVE-2009-4022. \n\n### Impact\n\nAn attacker could exploit this weakness to poison the cache of a recursive resolver and thus spoof DNS traffic, which could e.g. lead to the redirection of web or mail traffic to malicious sites. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll BIND users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-dns/bind-9.4.3_p5\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2010-06-01T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "gentoo", "title": "BIND: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097", "CVE-2009-4022"], "modified": "2010-06-01T00:00:00", "id": "GLSA-201006-11", "href": "https://security.gentoo.org/glsa/201006-11", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2017-09-09T07:20:19", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "enchantments_done": [], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "src", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc64", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.ppc64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc64", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.ppc64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc64", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.ppc64.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ppc", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.ppc.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.s390.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.s390.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.s390.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "s390x", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.s390x.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "i386", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "x86_64", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "arch": "ia64", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.ia64.rpm", "packageName": "bind-chroot", "operator": "lt"}], "description": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If BIND was\nrunning as a DNSSEC-validating resolver, it could incorrectly cache\nNXDOMAIN responses, as if they were valid, for records proven by NSEC or\nNSEC3 to exist. A remote attacker could use this flaw to cause a BIND\nserver to return the bogus, cached NXDOMAIN responses for valid records and\nprevent users from retrieving those records (denial of service).\n(CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND was\nincorrectly caching certain responses without performing proper DNSSEC\nvalidation. CNAME and DNAME records could be cached, without proper DNSSEC\nvalidation, when received from processing recursive client queries that\nrequested DNSSEC records but indicated that checking should be disabled. A\nremote attacker could use this flaw to bypass the DNSSEC validation check\nand perform a cache poisoning attack if the target BIND server was\nreceiving such client queries. (CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve these issues. After installing the\nupdate, the BIND daemon (named) will be restarted automatically.", "reporter": "RedHat", "published": "2010-01-20T05:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "redhat", "title": "(RHSA-2010:0062) Moderate: bind security update", "bulletinFamily": "unix", "cvelist": ["CVE-2009-4022", "CVE-2010-0097", "CVE-2010-0290", "CVE-2010-0382"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:50:41", "id": "RHSA-2010:0062", "href": "https://access.redhat.com/errata/RHSA-2010:0062", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-03T18:25:48", "references": ["http://rhn.redhat.com/errata/RHSA-2010-0062.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-libs", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-utils", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-libbind-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "caching-nameserver", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-chroot", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libbind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-libbind-devel-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libbind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-chroot-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-chroot", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "caching-nameserver-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "caching-nameserver", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.x86_64.rpm", "packageName": "bind-sdb", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-sdb-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-sdb", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.src.rpm", "packageName": "bind", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.src.rpm", "packageName": "bind", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-utils-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-utils", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libs", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-4.P1.el5_4.2", "packageFilename": "bind-libs-9.3.6-4.P1.el5_4.2.i386.rpm", "packageName": "bind-libs", "arch": "i386", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2010:0062\n\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was found in the BIND DNSSEC NSEC/NSEC3 validation code. If BIND was\nrunning as a DNSSEC-validating resolver, it could incorrectly cache\nNXDOMAIN responses, as if they were valid, for records proven by NSEC or\nNSEC3 to exist. A remote attacker could use this flaw to cause a BIND\nserver to return the bogus, cached NXDOMAIN responses for valid records and\nprevent users from retrieving those records (denial of service).\n(CVE-2010-0097)\n\nThe original fix for CVE-2009-4022 was found to be incomplete. BIND was\nincorrectly caching certain responses without performing proper DNSSEC\nvalidation. CNAME and DNAME records could be cached, without proper DNSSEC\nvalidation, when received from processing recursive client queries that\nrequested DNSSEC records but indicated that checking should be disabled. A\nremote attacker could use this flaw to bypass the DNSSEC validation check\nand perform a cache poisoning attack if the target BIND server was\nreceiving such client queries. (CVE-2010-0290)\n\nAll BIND users are advised to upgrade to these updated packages, which\ncontain a backported patch to resolve these issues. After installing the\nupdate, the BIND daemon (named) will be restarted automatically.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2010-January/016477.html\nhttp://lists.centos.org/pipermail/centos-announce/2010-January/016478.html\n\n**Affected packages:**\nbind\nbind-chroot\nbind-devel\nbind-libbind-devel\nbind-libs\nbind-sdb\nbind-utils\ncaching-nameserver\n\n**Upstream details at:**\n", "edition": 1, "reporter": "CentOS Project", "published": "2010-01-20T17:59:57", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "bind, caching security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2010-0382", "CVE-2010-0290", "CVE-2010-0097", "CVE-2009-4022"], "modified": "2010-01-20T17:59:57", "href": "http://lists.centos.org/pipermail/centos-announce/2010-January/016477.html", "id": "CESA-2010:0062", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "vmware": [{"lastseen": "2016-09-04T11:19:30", "references": [], "affectedPackage": [{"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005409-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "2.5.5", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "eq"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005408-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX350-201006408-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "3.0.3", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "eq"}, {"OS": "Redhat", "OSVersion": "5", "packageVersion": "4.0", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "vMA", "operator": "eq"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005401-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005407-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX350-201006405-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESXi", "OSVersion": "any", "packageVersion": "ESXi400-201005401-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESXi", "operator": "lt"}, {"OS": "ESXi", "OSVersion": "any", "packageVersion": "ESXe350-201006401-I-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESXi", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005406-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX350-201006406-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005405-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}], "edition": 1, "description": "a. Service Console update for COS kernel \n \nUpdated COS package \"kernel\" addresses the security issues that are fixed through versions 2.6.18-164.11.1. \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228, CVE-2009-3286, CVE-2009-3547, CVE-2009-3613 to the security issues fixed in kernel 2.6.18-164.6.1 \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-3612, CVE-2009-3620, CVE-2009-3621, CVE-2009-3726 to the security issues fixed in kernel 2.6.18-164.9.1. \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2007-4567, CVE-2009-4536, CVE-2009-4537, CVE-2009-4538 to the security issues fixed in kernel 2.6.18-164.10.1 \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2006-6304, CVE-2009-2910, CVE-2009-3080, CVE-2009-3556, CVE-2009-3889, CVE-2009-3939, CVE-2009-4020, CVE-2009-4021, CVE-2009-4138, CVE-2009-4141, and CVE-2009-4272 to the security issues fixed in kernel 2.6.18-164.11.1. \nColumn 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available. \n\n", "reporter": "VMware", "published": "2010-05-27T00:00:00", "title": "ESXi utilities and ESX Service Console third party updates", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "vmware", "bulletinFamily": "unix", "cvelist": ["CVE-2009-3613", "CVE-2009-3556", "CVE-2009-1386", "CVE-2009-4537", "CVE-2009-1379", "CVE-2009-3939", "CVE-2009-1377", "CVE-2009-4272", "CVE-2009-3621", "CVE-2009-3726", "CVE-2009-2910", "CVE-2009-4355", "CVE-2009-4141", "CVE-2009-2409", "CVE-2009-3563", "CVE-2009-1387", "CVE-2010-0001", "CVE-2007-4567", "CVE-2010-0382", "CVE-2009-1378", "CVE-2010-0290", "CVE-2009-0590", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-3547", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3620", "CVE-2010-0426", "CVE-2009-4536", "CVE-2010-0427", "CVE-2009-2908", "CVE-2009-1384", "CVE-2009-3228", "CVE-2009-3889", "CVE-2010-0097", "CVE-2009-4212", "CVE-2009-4021", "CVE-2009-3286", "CVE-2009-3612", "CVE-2009-3736", "CVE-2009-4138", "CVE-2009-2695"], "modified": "2010-06-24T00:00:00", "id": "VMSA-2010-0009", "href": "https://www.vmware.com/security/advisories/VMSA-2010-0009.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}}