Lucene search
DebianDEBIAN:DLA-285-1:3629AHistoryJul 28, 2015 - 7:23 p.m.
[SECURITY] [DLA 285-1] bind9 security update
2015-07-2819:23:55
lists.debian.org
11
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.972 High
EPSS
Percentile
99.8%
Package : bind9
Version : 1:9.7.3.dfsg-1~squeeze16
CVE ID : CVE-2015-5477
Jonathan Foote discovered that the BIND DNS server does not properly
handle TKEY queries. A remote attacker can take advantage of this flaw
to mount a denial of service via a specially crafted query triggering an
assertion failure and causing BIND to exit.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 6 | all | dnsutils | < 1:9.7.3.dfsg-1~squeeze16 | dnsutils_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | libisccc60 | < 1:9.7.3.dfsg-1~squeeze16 | libisccc60_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | libbind9-60 | < 1:9.7.3.dfsg-1~squeeze16 | libbind9-60_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | liblwres60 | < 1:9.7.3.dfsg-1~squeeze16 | liblwres60_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | bind9-host | < 1:9.7.3.dfsg-1~squeeze16 | bind9-host_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | host | < 1:9.7.3.dfsg-1~squeeze16 | host_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | libisccfg62 | < 1:9.7.3.dfsg-1~squeeze16 | libisccfg62_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | libdns69 | < 1:9.7.3.dfsg-1~squeeze16 | libdns69_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | libisc62 | < 1:9.7.3.dfsg-1~squeeze16 | libisc62_1:9.7.3.dfsg-1~squeeze16_all.deb |
| Debian | 6 | all | bind9 | < 1:9.7.3.dfsg-1~squeeze16 | bind9_1:9.7.3.dfsg-1~squeeze16_all.deb |
Related
nessus
nessus
AIX 6.1 TL 8 : bind9 (IV75694)
2015-08-17 00:00:00
AIX 7.1 TL 2 : bind9 (IV75690)
2015-08-17 00:00:00
Amazon Linux AMI : bind (ALAS-2015-573)
2015-07-29 00:00:00
archlinux
archlinux
bind: denial of service
2015-07-29 00:00:00
suse
suse
Security update for bind (important)
2015-08-03 12:08:36
Security update for bind (important)
2015-07-30 14:08:45
Security update for bind (important)
2015-07-28 21:08:56
altlinux
altlinux
Security fix for the ALT Linux 8 package bind version 9.9.7-alt1
2015-07-28 00:00:00
Security fix for the ALT Linux 7 package bind version 9.9.7-alt1
2015-07-28 00:00:00
Security fix for the ALT Linux 9 package bind version 9.9.7-alt1
2015-07-28 00:00:00
zdt
zdt
BIND9 TKEY Query Denial of Service Exploit
2015-08-04 00:00:00
ISC BIND9 TKEY Remote DoS PoC
2015-08-05 00:00:00
BIND9 - TKEY PoC Exploit
2015-08-01 00:00:00
centos
centos
bind, caching security update
2015-07-29 02:04:03
bind97 security update
2015-07-29 02:03:50
bind security update
2015-07-29 01:43:33
debiancve
debiancve
CVE-2015-5477
2015-07-29 14:59:00
amazon
amazon
Critical: bind
2015-07-28 11:32:00
f5
f5
SOL16909 - BIND vulnerability CVE-2015-5477
2015-07-28 00:00:00
K16909 : BIND vulnerability CVE-2015-5477
2015-11-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:1304-1)
2021-06-09 00:00:00
SUSE: Security Advisory for bind (SUSE-SU-2015:1305-1)
2015-10-16 00:00:00
Debian: Security Advisory (DSA-3319-1)
2015-07-27 00:00:00
slackware
slackware
[slackware-security] bind
2015-07-28 19:38:44
metasploit
metasploit
BIND TKEY Query Denial of Service
2015-08-01 11:01:35
exploitpack
exploitpack
ISC BIND 9 - TKEY Remote Denial of Service (PoC)
2015-08-05 00:00:00
ISC BIND 9 - TKEY (PoC)
2015-08-01 00:00:00
securityvulns
securityvulns
APPLE-SA-2015-08-13-4 OS X Server v4.1.5
2015-08-17 00:00:00
ISC bind named DoS
2015-08-03 00:00:00
FreeBSD Security Advisory FreeBSD-SA-15:17.bind
2015-08-03 00:00:00
redhat
redhat
(RHSA-2015:1514) Important: bind security update
2015-07-28 00:00:00
(RHSA-2015:1515) Important: bind97 security update
2015-07-28 00:00:00
(RHSA-2015:1513) Important: bind security update
2015-07-28 00:00:00
hackerone
hackerone
ubuntucve
ubuntucve
CVE-2015-5477
2015-07-28 00:00:00
cve
cve
CVE-2015-5477
2015-07-29 14:59:00
checkpoint_advisories
checkpoint_advisories
ISC BIND TKEY Queries Assertion Failure (CVE-2015-5477)
2020-12-22 00:00:00
ISC BIND Invalid TKEY Query Denial Of Service (CVE-2015-5477; CVE-2020-8625)
2015-08-01 00:00:00
freebsd
freebsd
bind -- denial of service vulnerability
2015-07-21 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: bind-9.10.2-4.P3.fc22
2015-08-01 02:25:40
[SECURITY] Fedora 22 Update: bind99-9.9.7-6.P2.fc22
2015-08-01 02:27:27
[SECURITY] Fedora 21 Update: bind-9.9.6-10.P1.fc21
2015-08-01 02:26:01
myhack58
myhack58
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:06:56
packetstorm
packetstorm
BIND TKEY Query Denial Of Service
2015-07-31 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:17.bind
2015-07-28 00:00:00
osv
osv
bind9 - security update
2015-07-28 00:00:00
bind9 - security update
2015-07-28 00:00:00
ibm
ibm
threatpost
threatpost
Critical Remotely Exploitable Bug Haunts BIND
2015-07-29 09:09:28
prion
prion
Authentication flaw
2015-07-29 14:59:00
debian
debian
[SECURITY] [DSA 3319-1] bind9 security update
2015-07-28 19:05:08
[SECURITY] [DSA 3319-1] bind9 security update
2015-07-28 19:05:25
oraclelinux
oraclelinux
bind security update
2015-07-29 00:00:00
bind security update
2015-07-29 00:00:00
bind97 security update
2015-07-29 00:00:00
aix
aix
Vulnerability in BIND affects AIX,Vulnerability in BIND affects VIOS
2015-08-13 10:35:36
mageia
mageia
Updated bind package fixes security vulnerability
2015-08-01 01:46:26
exploitdb
exploitdb
ISC BIND 9 - TKEY (PoC)
2015-08-01 00:00:00
ISC BIND 9 - TKEY Remote Denial of Service (PoC)
2015-08-05 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2015-07-28 00:00:00
gentoo
gentoo
BIND: Denial of service
2015-10-18 00:00:00
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.972 High
EPSS
Percentile
99.8%
Related for DEBIAN:DLA-285-1:3629A