Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM8D2445519E71822C8FC50E541AD74ABCE79F1621EBE23F4B001E790BDDDBC615
HistoryOct 18, 2019 - 3:10 a.m.

Security Bulletin: Multiple vulnerabilities in BIND affects IBM Netezza Host Management

2019-10-1803:10:29
www.ibm.com
8

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Summary

BIND is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs.

Vulnerability Details

CVEID: CVE-2016-2776**
DESCRIPTION:** ISC BIND is vulnerable to a denial of service, caused by an assertion failure in buffer.c while a nameserver is building responses to a specifically constructed request. By sending a specially crafted DNS packet, a remote attacker could exploit this vulnerability to make named exit unexpectedly with an assertion failure.
CVSS Base Score: 7.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/117246 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID: CVE-2016-8864**
DESCRIPTION:** ISC BIND is vulnerable to a denial of service, caused by the improper handling of responses containing a DNAME answer in db.c or resolver.c. By sending a recursive response, a remote attacker could exploit this vulnerability to trigger an assertion failure.
CVSS Base Score: 7.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118526 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

IBM Netezza Host Management 5.4.6.0 and earlier

Remediation/Fixes

To resolve the reported CVEs for Red Hat Enterprise Linux (RHEL), and for the most-up-to-date software for the Netezza host operating system, update to the latest IBM Netezza Host Management release:

Product VRMF Remediation/First Fix
_IBM Netezza Host Management _ 5.4.8.0 Link to Fix Central

The Netezza Host Management software contains the latest RHEL updates for the operating systems certified for use on IBM Netezza/PureData System for Analytics appliances. IBM recommends upgrading to the latest Netezza Host Management version to ensure that your hosts have the latest fixes, security changes, and operating system updates. IBM Support can assist you with planning for the Netezza Host Management and operating system upgrades to your appliances.

For more details on IBM Netezza Host Management security patching:

CPENameOperatorVersion
ibm puredata systemeq1.0.0

Related

ibm 3
nessus 63
osv 3
redhat 6
f5 4
redhatcve 2
archlinux 2
openvas 47
amazon 2
checkpoint_advisories 2
suse 10
fedora 10
altlinux 6
gentoo 1
alpinelinux 2
centos 5
debian 3
oraclelinux 3
prion 2
debiancve 2
freebsd 2
ubuntucve 2
freebsd_advisory 2
veracode 2
slackware 2
cve 2
mageia 1
cloudfoundry 2
ubuntu 2
exploitpack 1
zdt 1
metasploit 1
packetstorm 1
ibm
ibm
Security Bulletin: Vulnerabilities in bind affect PowerKVM (CVE-2016-2776, CVE-2016-8864)
2018-06-18 01:33:47
Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2016-2775, CVE-2016-2776, CVE-2016-8864 and CVE-2016-6170)
2019-12-18 14:26:38
Security Bulletin: Vulnerability in BIND affects Power Hardware Management Console (CVE-2016-8864)
2021-09-23 01:31:39
nessus
nessus
Scientific Linux Security Update : bind on SL7.x x86_64 (20161103)
2016-12-15 00:00:00
SUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2016:2697-1)
2016-11-03 00:00:00
F5 Networks BIG-IP : BIND vulnerability (K35322517)
2017-02-15 00:00:00
osv
osv
bind9 - security update
2016-11-01 00:00:00
bind9 - security update
2016-11-02 00:00:00
CVE-2016-2776
2016-09-28 10:59:00
redhat
redhat
(RHSA-2016:2141) Important: bind security update
2016-11-02 00:00:00
(RHSA-2016:2871) Important: bind security update
2016-12-06 04:38:57
(RHSA-2016:2615) Important: bind security update
2016-11-03 11:40:07
f5
f5
SOL35322517 - BIND vulnerability CVE-2016-8864
2016-11-03 00:00:00
K35322517 : BIND vulnerability CVE-2016-8864
2016-11-03 00:00:00
SOL18829561 - BIND vulnerability CVE-2016-2776
2016-09-27 00:00:00
redhatcve
redhatcve
CVE-2016-8864
2019-10-09 10:15:53
CVE-2016-2776
2020-04-09 09:15:08
archlinux
archlinux
[ASA-201611-3] bind: denial of service
2016-11-01 00:00:00
[ASA-201609-29] bind: denial of service
2016-09-27 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:2697-1)
2021-04-19 00:00:00
RedHat Update for bind RHSA-2016:2141-01
2016-11-08 00:00:00
Fedora Update for bind FEDORA-2016-e38196b52a
2016-12-02 00:00:00
amazon
amazon
Important: bind
2016-11-18 12:30:00
Important: bind
2016-09-28 15:45:00
checkpoint_advisories
checkpoint_advisories
ISC BIND DNAME Response Processing Denial of Service (CVE-2016-8864)
2016-12-07 00:00:00
DNS Server Bind 9 Response Message Rendering Denial of Service (CVE-2016-2776)
2016-10-05 00:00:00
suse
suse
Security update for bind (important)
2016-11-03 11:13:26
Security update for bind (important)
2016-11-02 13:06:52
Security update for bind (important)
2016-11-02 13:07:19
fedora
fedora
[SECURITY] Fedora 24 Update: bind-9.10.4-2.P4.fc24
2016-11-13 00:00:28
[SECURITY] Fedora 25 Update: bind-9.10.4-2.P4.fc25
2016-11-19 22:17:06
[SECURITY] Fedora 23 Update: bind-9.10.4-2.P4.fc23
2016-11-27 15:23:53
altlinux
altlinux
Security fix for the ALT Linux 8 package bind version 9.9.8-alt5
2016-11-04 00:00:00
Security fix for the ALT Linux 9 package bind version 9.9.8-alt5
2016-11-02 00:00:00
Security fix for the ALT Linux 9 package bind version 9.9.8-alt4
2016-09-27 00:00:00
gentoo
gentoo
BIND: Denial of service
2017-01-11 00:00:00
alpinelinux
alpinelinux
CVE-2016-8864
2016-11-02 17:59:00
CVE-2016-2776
2016-09-28 10:59:00
centos
centos
bind security update
2016-11-25 16:47:09
bind97 security update
2016-11-02 16:06:46
bind, caching security update
2016-11-02 15:59:55
debian
debian
[SECURITY] [DSA 3703-1] bind9 security update
2016-11-01 21:49:58
[SECURITY] [DLA 696-1] bind9 security update
2016-11-02 22:01:34
[SECURITY] [DSA 3795-1] bind9 security update
2017-02-26 02:45:32
oraclelinux
oraclelinux
bind security update
2016-11-02 00:00:00
bind97 security update
2016-11-02 00:00:00
bind security update
2016-11-09 00:00:00
prion
prion
Design/Logic Flaw
2016-11-02 17:59:00
Design/Logic Flaw
2016-09-28 10:59:00
debiancve
debiancve
CVE-2016-8864
2016-11-02 17:59:00
CVE-2016-2776
2016-09-28 10:59:00
freebsd
freebsd
BIND -- Remote Denial of Service vulnerability
2016-11-01 00:00:00
BIND -- Remote Denial of Service vulnerability
2016-09-27 00:00:00
ubuntucve
ubuntucve
CVE-2016-8864
2016-11-01 00:00:00
CVE-2016-2776
2016-09-27 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:34.bind
2016-11-02 00:00:00
FreeBSD-SA-16:28.bind
2016-10-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:14:06
Denial Of Service (DoS)
2019-01-15 09:13:15
slackware
slackware
[slackware-security] bind
2016-11-04 03:35:01
[slackware-security] bind
2016-09-27 19:49:07
cve
cve
CVE-2016-8864
2016-11-02 17:59:00
CVE-2016-2776
2016-09-28 10:59:00
mageia
mageia
Updated bind packages fix security vulnerability
2016-11-04 12:24:00
cloudfoundry
cloudfoundry
USN-3119-1: Bind vulnerability | Cloud Foundry
2016-12-14 00:00:00
USN-3088-1: Bind vulnerability | Cloud Foundry
2016-12-13 00:00:00
ubuntu
ubuntu
Bind vulnerability
2016-11-01 00:00:00
Bind vulnerability
2016-09-27 00:00:00
exploitpack
exploitpack
ISC BIND 9 - Denial of Service
2016-10-04 00:00:00
zdt
zdt
Bind 9 DNS Server - Denial of Service Exploit
2016-10-04 00:00:00
metasploit
metasploit
BIND TSIG Query Denial of Service
2017-08-26 15:41:10
packetstorm
packetstorm
BIND 9 DNS Server Denial Of Service
2016-10-04 00:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON
Related for 8D2445519E71822C8FC50E541AD74ABCE79F1621EBE23F4B001E790BDDDBC615
ibm3nessus63osv3redhat6f54redhatcve2archlinux2openvas47amazon2checkpoint_advisories2suse10fedora10altlinux6gentoo1alpinelinux2centos5debian3oraclelinux3prion2debiancve2freebsd2ubuntucve2freebsd_advisory2veracode2slackware2cve2mageia1cloudfoundry2ubuntu2exploitpack1zdt1metasploit1packetstorm1