Lucene search
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.AIX_IJ37225.NASLHistoryMar 02, 2022 - 12:00 a.m.
AIX 7.2 TL 4 : bind (IJ37225)
2022-03-0200:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
https://vulners.com/cve/CVE-2021-25219 https://vulners.com/cve/CVE-2021-25219 ISC BIND is vulnerable to a denial of service, caused by a flaw in response processing. By abusing a lame cache, an attacker could exploit this vulnerability to cause a named resolver to spend most of its CPU time on managing and checking the lame cache and severely degrade resolver performance.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text in the description was extracted from AIX Security
# Advisory bind_advisory20.asc.
#
include('deprecated_nasl_level.inc');
include("compat.inc");
if (description)
{
script_id(158520);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/06/05");
script_cve_id("CVE-2021-25219");
script_name(english:"AIX 7.2 TL 4 : bind (IJ37225)");
script_summary(english:"Check for APAR IJ37225");
script_set_attribute(
attribute:"synopsis",
value:"The remote AIX host is missing a security patch."
);
script_set_attribute(
attribute:"description",
value:
"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25219
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25219 ISC BIND
is vulnerable to a denial of service, caused by a flaw in response
processing. By abusing a lame cache, an attacker could exploit this
vulnerability to cause a named resolver to spend most of its CPU time
on managing and checking the lame cache and severely degrade resolver
performance."
);
script_set_attribute(
attribute:"see_also",
value:"https://aix.software.ibm.com/aix/efixes/security/bind_advisory20.asc"
);
script_set_attribute(
attribute:"solution",
value:"Install the appropriate interim fix."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-25219");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:7.2");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/03/01");
script_set_attribute(attribute:"patch_publication_date", value:"2022/03/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/03/02");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"AIX Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version");
exit(0);
}
include("aix.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX");
if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);
if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") );
var aix_report_extra;
var flag = 0;
if (aix_check_ifix(release:"7.2", ml:"04", sp:"03", patch:"(IJ37225m5c|IJ40616m5b)", package:"bos.net.tcp.bind", minfilesetver:"7.2.4.0", maxfilesetver:"7.2.4.1") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"04", sp:"03", patch:"(IJ37225m5c|IJ40616m5b)", package:"bos.net.tcp.bind_utils", minfilesetver:"7.2.4.0", maxfilesetver:"7.2.4.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"04", sp:"04", patch:"(IJ37225m5c|IJ40616m5b)", package:"bos.net.tcp.bind", minfilesetver:"7.2.4.0", maxfilesetver:"7.2.4.1") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"04", sp:"04", patch:"(IJ37225m5c|IJ40616m5b)", package:"bos.net.tcp.bind_utils", minfilesetver:"7.2.4.0", maxfilesetver:"7.2.4.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"04", sp:"05", patch:"(IJ37225m5c|IJ40616m5b)", package:"bos.net.tcp.bind", minfilesetver:"7.2.4.0", maxfilesetver:"7.2.4.1") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"04", sp:"05", patch:"(IJ37225m5c|IJ40616m5b)", package:"bos.net.tcp.bind_utils", minfilesetver:"7.2.4.0", maxfilesetver:"7.2.4.3") < 0) flag++;
if (flag)
{
aix_report_extra = ereg_replace(string:aix_report_get(), pattern:"[()]", replace:"");
aix_report_extra = ereg_replace(string:aix_report_extra, pattern:"[|]", replace:" or ");
if (report_verbosity > 0) security_warning(port:0, extra:aix_report_extra);
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
f5
f5
K77326807 : BIND vulnerability CVE-2021-25219
2021-11-08 00:00:00
suse
suse
Security update for bind (important)
2021-11-23 00:00:00
Security update for bind (important)
2021-11-24 00:00:00
Security update for bind (moderate)
2022-05-27 00:00:00
nessus
nessus
Ubuntu 16.04 ESM : Bind vulnerability (USN-5126-2)
2021-10-29 00:00:00
openSUSE 15 Security Update : bind (openSUSE-SU-2021:3773-1)
2021-11-24 00:00:00
EulerOS 2.0 SP10 : bind (EulerOS-SA-2022-1237)
2022-02-25 00:00:00
prion
prion
Design/Logic Flaw
2021-10-27 21:15:00
osv
osv
Moderate: bind security, bug fix, and enhancement update
2022-05-10 06:53:47
bind9 - security update
2021-10-28 00:00:00
bind9 vulnerability
2021-10-28 10:52:18
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-25219
2021-11-16 13:53:11
Fix of CVE: CVE-2021-25219
2021-11-03 16:59:44
openvas
openvas
Fedora: Security Advisory for bind-dyndb-ldap (FEDORA-2021-58e7b873b7)
2021-11-06 00:00:00
Debian: Security Advisory (DSA-4994-1)
2021-10-30 00:00:00
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2022-2486)
2022-10-10 00:00:00
ibm
ibm
Security Bulletin: A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2021-25219)
2023-01-12 21:59:00
Security Bulletin: Vulnerability in Bind (CVE-2021-25219) affects Power HMC
2022-12-04 00:09:39
Security Bulletin: Vulnerability in BIND affects AIX (CVE-2021-25219)
2022-03-16 18:06:23
almalinux
almalinux
Moderate: bind security, bug fix, and enhancement update
2022-05-10 06:53:47
fedora
fedora
[SECURITY] Fedora 33 Update: bind-9.11.36-1.fc33
2021-11-11 01:22:46
[SECURITY] Fedora 34 Update: bind-dyndb-ldap-11.9-6.fc34
2021-11-10 08:17:09
[SECURITY] Fedora 35 Update: bind-dyndb-ldap-11.9-8.fc35
2021-11-04 01:48:10
redhat
redhat
(RHSA-2022:2092) Moderate: bind security, bug fix, and enhancement update
2022-05-10 06:53:47
(RHSA-2022:5188) Important: RHACS 3.69 security update
2022-06-24 19:39:26
(RHSA-2022:4690) Important: Red Hat OpenShift GitOps security update
2022-05-18 21:18:06
mageia
mageia
Updated bind packages fix security vulnerability
2021-12-19 15:26:08
debiancve
debiancve
CVE-2021-25219
2021-10-27 21:15:00
debian
debian
[SECURITY] [DSA 4994-1] bind9 security update
2021-10-28 20:30:06
[SECURITY] [DSA 4994-1] bind9 security update
2021-10-28 20:30:06
[SECURITY] [DLA 2807-1] bind9 security update
2021-11-02 01:06:28
altlinux
altlinux
Security fix for the ALT Linux 10 package bind version 9.11.36-alt1
2021-11-08 00:00:00
Security fix for the ALT Linux 9 package bind version 9.11.36-alt1
2021-11-26 00:00:00
cisa
cisa
ISC Releases Security Advisory for BIND
2021-10-28 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-11-04 03:26:12
ubuntucve
ubuntucve
CVE-2021-25219
2021-10-27 00:00:00
slackware
slackware
[slackware-security] bind
2021-10-28 01:13:50
redos
redos
ROS-20220209-01
2022-02-09 00:00:00
aix
aix
cbl_mariner
cbl_mariner
CVE-2021-25219 affecting package bind 9.16.15-4
2022-06-26 03:29:38
photon
photon
Moderate Photon OS Security Update - PHSA-2021-0129
2021-11-14 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-2.0-0412
2021-11-10 00:00:00
Moderate Photon OS Security Update - PHSA-2021-4.0-0129
2021-11-14 00:00:00
oraclelinux
oraclelinux
bind security, bug fix, and enhancement update
2022-05-17 00:00:00
cve
cve
CVE-2021-25219
2021-10-27 21:15:00
redhatcve
redhatcve
CVE-2021-25219
2021-10-28 05:00:53
rocky
rocky
bind security, bug fix, and enhancement update
2022-05-10 06:53:47
cnvd
cnvd
ISC BIND Denial of Service Vulnerability (CNVD-2023-25100)
2021-10-31 00:00:00
archlinux
archlinux
[ASA-202110-12] bind: denial of service
2021-10-29 00:00:00
ubuntu
ubuntu
Bind vulnerability
2021-10-28 00:00:00
Bind vulnerability
2021-10-28 00:00:00
alpinelinux
alpinelinux
CVE-2021-25219
2021-10-27 21:15:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2245
2023-10-17 12:03:14
gentoo
gentoo
ISC BIND: Multiple Vulnerabilities
2022-10-31 00:00:00
ics
ics
Siemens SINEC INS
2022-03-10 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00
Related for AIX_IJ37225.NASL