[SECURITY] [DSA 3350-1] bind9 security update

2015-09-0221:47:12

lists.debian.org

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.966 High

EPSS

Percentile

99.6%

JSON

Debian Security Advisory DSA-3350-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
September 02, 2015 https://www.debian.org/security/faq

Package : bind9
CVE ID : CVE-2015-5722

Hanno Boeck discovered that incorrect validation of DNSSEC-signed records
in the Bind DNS server could result in denial of service.

Updates for the oldstable distribution (wheezy) will be released shortly.

For the stable distribution (jessie), this problem has been fixed in
version 9.9.5.dfsg-9+deb8u3.

For the unstable distribution (sid), this problem will be fixed soon.

We recommend that you upgrade your bind9 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7armeldnsutils< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7dnsutils_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_armel.deb
Debian8arm64libisccc90< 1:9.9.5.dfsg-9+deb8u3libisccc90_1:9.9.5.dfsg-9+deb8u3_arm64.deb
Debian8s390xbind9-host< 1:9.9.5.dfsg-9+deb8u3bind9-host_1:9.9.5.dfsg-9+deb8u3_s390x.deb
Debian8ppc64ellibirs-export91-udeb< 1:9.9.5.dfsg-9+deb8u3libirs-export91-udeb_1:9.9.5.dfsg-9+deb8u3_ppc64el.deb
Debian6amd64libbind-dev< 1:9.7.3.dfsg-1~squeeze17libbind-dev_1:9.7.3.dfsg-1~squeeze17_amd64.deb
Debian8armellibisc-export95< 1:9.9.5.dfsg-9+deb8u3libisc-export95_1:9.9.5.dfsg-9+deb8u3_armel.deb
Debian8i386libisc-export95-udeb< 1:9.9.5.dfsg-9+deb8u3libisc-export95-udeb_1:9.9.5.dfsg-9+deb8u3_i386.deb
Debian8i386bind9utils< 1:9.9.5.dfsg-9+deb8u3bind9utils_1:9.9.5.dfsg-9+deb8u3_i386.deb
Debian8i386bind9< 1:9.9.5.dfsg-9+deb8u3bind9_1:9.9.5.dfsg-9+deb8u3_i386.deb
Debian8arm64bind9< 1:9.9.5.dfsg-9+deb8u3bind9_1:9.9.5.dfsg-9+deb8u3_arm64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	7	armel	dnsutils	< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7	dnsutils_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_armel.deb
Debian	8	arm64	libisccc90	< 1:9.9.5.dfsg-9+deb8u3	libisccc90_1:9.9.5.dfsg-9+deb8u3_arm64.deb
Debian	8	s390x	bind9-host	< 1:9.9.5.dfsg-9+deb8u3	bind9-host_1:9.9.5.dfsg-9+deb8u3_s390x.deb
Debian	8	ppc64el	libirs-export91-udeb	< 1:9.9.5.dfsg-9+deb8u3	libirs-export91-udeb_1:9.9.5.dfsg-9+deb8u3_ppc64el.deb
Debian	6	amd64	libbind-dev	< 1:9.7.3.dfsg-1~squeeze17	libbind-dev_1:9.7.3.dfsg-1~squeeze17_amd64.deb
Debian	8	armel	libisc-export95	< 1:9.9.5.dfsg-9+deb8u3	libisc-export95_1:9.9.5.dfsg-9+deb8u3_armel.deb
Debian	8	i386	libisc-export95-udeb	< 1:9.9.5.dfsg-9+deb8u3	libisc-export95-udeb_1:9.9.5.dfsg-9+deb8u3_i386.deb
Debian	8	i386	bind9utils	< 1:9.9.5.dfsg-9+deb8u3	bind9utils_1:9.9.5.dfsg-9+deb8u3_i386.deb
Debian	8	i386	bind9	< 1:9.9.5.dfsg-9+deb8u3	bind9_1:9.9.5.dfsg-9+deb8u3_i386.deb
Debian	8	arm64	bind9	< 1:9.9.5.dfsg-9+deb8u3	bind9_1:9.9.5.dfsg-9+deb8u3_arm64.deb