Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-3162-1:E5FBD
HistoryFeb 18, 2015 - 9:23 p.m.

[SECURITY] [DSA 3162-1] bind9 security update

2015-02-1821:23:18
lists.debian.org
13

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

0.069 Low

EPSS

Percentile

93.9%

JSON

Debian Security Advisory DSA-3162-1 [email protected]
http://www.debian.org/security/ Florian Weimer
February 18, 2015 http://www.debian.org/security/faq

Package : bind9
CVE ID : CVE-2015-1349

Jan-Piet Mens discovered that the BIND DNS server would crash when
processing an invalid DNSSEC key rollover, either due to an error on
the zone operator's part, or due to interference with network traffic
by an attacker. This issue affects configurations with the directives
"dnssec-validation auto;" (as enabled in the Debian default
configuration) or "dnssec-lookaside auto;".

For the stable distribution (wheezy), this problem has been fixed in
version 1:9.8.4.dfsg.P1-6+nmu2+deb7u4.

We recommend that you upgrade your bind9 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7allbind9< 1:9.8.4.dfsg.P1-6+nmu2+deb7u4bind9_1:9.8.4.dfsg.P1-6+nmu2+deb7u4_all.deb

Related

securityvulns 2
nessus 30
veracode 1
f5 2
cisa 1
debian 1
amazon 1
mageia 1
openvas 21
redhat 1
prion 1
ubuntucve 1
cve 1
ibm 1
osv 2
centos 1
oraclelinux 1
freebsd_advisory 1
freebsd 1
debiancve 1
ubuntu 1
suse 2
fedora 4
slackware 1
gentoo 1
securityvulns
securityvulns
ISC bind named DoS
2015-02-22 00:00:00
[USN-2503-1] Bind vulnerability
2015-02-22 00:00:00
nessus
nessus
Amazon Linux AMI : bind (ALAS-2015-490)
2015-03-17 00:00:00
Fedora 20 : bind-9.9.4-18.P2.fc20 (2015-2548)
2015-03-06 00:00:00
CentOS 6 / 7 : bind (CESA-2015:0672)
2015-03-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:05:02
f5
f5
SOL16356 - BIND vulnerability CVE-2015-1349
2015-04-02 00:00:00
K16356 : BIND vulnerability CVE-2015-1349
2015-09-16 00:00:00
cisa
cisa
ISC Releases Security Updates for BIND
2015-02-18 00:00:00
debian
debian
[SECURITY] [DLA 163-1] bind9 security update
2015-03-01 19:00:55
amazon
amazon
Medium: bind
2015-03-13 02:33:00
mageia
mageia
Updated bind packages fix CVE-2015-1349
2015-02-21 21:03:39
openvas
openvas
Debian: Security Advisory (DLA-163-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3162-1)
2015-02-17 00:00:00
ISC BIND Denial of Service Vulnerability (CVE-2015-1349)
2016-01-27 00:00:00
redhat
redhat
(RHSA-2015:0672) Moderate: bind security update
2015-03-10 15:07:28
prion
prion
Design/Logic Flaw
2015-02-19 03:01:00
ubuntucve
ubuntucve
CVE-2015-1349
2015-02-18 00:00:00
cve
cve
CVE-2015-1349
2015-02-19 03:01:00
ibm
ibm
Security Bulletin: PowerKVM is affected by a bind vulnerability (CVE-2015-1349)
2018-06-18 01:28:20
osv
osv
bind9 - security update
2015-02-18 00:00:00
bind9 - security update
2015-03-01 00:00:00
centos
centos
bind security update
2015-03-11 11:18:31
oraclelinux
oraclelinux
bind security update
2015-03-12 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:05.bind
2015-02-25 00:00:00
freebsd
freebsd
bind -- denial of service vulnerability
2015-02-18 00:00:00
debiancve
debiancve
CVE-2015-1349
2015-02-19 03:01:00
ubuntu
ubuntu
Bind vulnerability
2015-02-18 00:00:00
suse
suse
Security update for bind (important)
2015-07-08 16:08:18
Security update for bind (important)
2015-07-31 12:08:25
fedora
fedora
[SECURITY] Fedora 21 Update: bind-9.9.6-8.P1.fc21
2015-03-05 12:38:47
[SECURITY] Fedora 20 Update: bind-9.9.4-18.P2.fc20
2015-03-05 12:38:53
[SECURITY] Fedora 21 Update: bind-9.9.6-9.P1.fc21
2015-07-21 08:22:09
slackware
slackware
[slackware-security] bind
2015-04-22 02:16:38
gentoo
gentoo
BIND: Denial of service
2015-10-18 00:00:00

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

0.069 Low

EPSS

Percentile

93.9%

JSON
Related for DEBIAN:DSA-3162-1:E5FBD
securityvulns2nessus30veracode1f52cisa1debian1amazon1mageia1openvas21redhat1prion1ubuntucve1cve1ibm1osv2centos1oraclelinux1freebsd_advisory1freebsd1debiancve1ubuntu1suse2fedora4slackware1gentoo1