7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
8 High
AI Score
Confidence
High
0.157 Low
EPSS
Percentile
96.0%
Package : bind9
Version : 9.7.3.dfsg-1~squeeze15
CVE ID : CVE-2015-4620
Debian Bug : 791715
A vulnerability has been found in the Internet Domain Name Server bind9:
CVE-2015-4620
Breno Silveira Soares of Servico Federal de Processamento de Dados (SERPRO)
discovered that the BIND DNS server is prone to a denial of service
vulnerability. A remote attacker who can cause a validating resolver
to query a zone containing specifically constructed contents can
cause the resolver to terminate with an assertion failure, resulting
in a denial of service to clients relying on the resolver.
For the squeeze distribution, these issues have been fixed in version
9.7.3.dfsg-1~squeeze15 of bind9.
We recommend that you upgrade your bind9 packages.
Attachment:
signature.asc
Description: Digital signature
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 8 | ppc64el | bind9 | < 1:9.9.5.dfsg-9+deb8u1 | bind9_1:9.9.5.dfsg-9+deb8u1_ppc64el.deb |
Debian | 8 | i386 | liblwres90 | < 1:9.9.5.dfsg-9+deb8u1 | liblwres90_1:9.9.5.dfsg-9+deb8u1_i386.deb |
Debian | 8 | armhf | libbind-dev | < 1:9.9.5.dfsg-9+deb8u1 | libbind-dev_1:9.9.5.dfsg-9+deb8u1_armhf.deb |
Debian | 8 | s390x | libdns-export100 | < 1:9.9.5.dfsg-9+deb8u1 | libdns-export100_1:9.9.5.dfsg-9+deb8u1_s390x.deb |
Debian | 8 | amd64 | libbind-dev | < 1:9.9.5.dfsg-9+deb8u1 | libbind-dev_1:9.9.5.dfsg-9+deb8u1_amd64.deb |
Debian | 7 | ia64 | libisc84 | < 1:9.8.4.dfsg.P1-6+nmu2+deb7u5 | libisc84_1:9.8.4.dfsg.P1-6+nmu2+deb7u5_ia64.deb |
Debian | 8 | kfreebsd-amd64 | libdns100 | < 1:9.9.5.dfsg-9+deb8u1 | libdns100_1:9.9.5.dfsg-9+deb8u1_kfreebsd-amd64.deb |
Debian | 8 | amd64 | bind9-host | < 1:9.9.5.dfsg-9+deb8u1 | bind9-host_1:9.9.5.dfsg-9+deb8u1_amd64.deb |
Debian | 8 | amd64 | libdns-export100-udeb | < 1:9.9.5.dfsg-9+deb8u1 | libdns-export100-udeb_1:9.9.5.dfsg-9+deb8u1_amd64.deb |
Debian | 7 | ia64 | libbind-dev | < 1:9.8.4.dfsg.P1-6+nmu2+deb7u5 | libbind-dev_1:9.8.4.dfsg.P1-6+nmu2+deb7u5_ia64.deb |