Fedora 23 : bind99 (2016-cbef6c8619)

🗓️ 25 Oct 2016 00:00:00Reported by TenableType

Update to the latest upstream version due to CVE-2016-2776. The remote Fedora host is missing a security update

Reporter	Title	Published	Views	Family All 161
0day.today	Bind 9 DNS Server - Denial of Service Exploit	4 Oct 201600:00	–	zdt
ALT Linux	Security fix for the ALT Linux 6 package bind version 9.3.6-alt7.M60P.2	4 Oct 201600:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 6 package bind version 9.3.6-alt7.M60P.3	26 Oct 201600:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package bind version 9.9.8-alt4	27 Sep 201600:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 7 package bind version 9.9.8-alt2.M70P.2	27 Sep 201600:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package bind version 9.9.8-alt4	27 Sep 201600:00	–	altlinux
IBM Security Bulletins	Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2016-2775, CVE-2016-2776, CVE-2016-8864 and CVE-2016-6170)	18 Dec 201914:26	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in bind affect PowerKVM (CVE-2016-2776, CVE-2016-8864)	18 Jun 201801:33	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in BIND affects IBM Netezza Host Management	18 Oct 201903:10	–	ibm
Tenable Nessus	ISC BIND 9.x < 9.9.9-P3 / 9.9.9-S5 / 9.10.4-P3 / 9.11.0-P1 DoS	20 Jan 201700:00	–	nessus

Source	Link
bodhi	www.bodhi.fedoraproject.org/updates/FEDORA-2016-cbef6c8619
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory FEDORA-2016-cbef6c8619.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(94237);
  script_version("1.9");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/21");

  script_cve_id("CVE-2016-2776");
  script_xref(name:"FEDORA", value:"2016-cbef6c8619");
  script_xref(name:"IAVA", value:"2017-A-0004");

  script_name(english:"Fedora 23 : bind99 (2016-cbef6c8619)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Fedora host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"Update to the latest upstream version due to CVE-2016-2776

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://bodhi.fedoraproject.org/updates/FEDORA-2016-cbef6c8619");
  script_set_attribute(attribute:"solution", value:
"Update the affected bind99 package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-2776");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/09/28");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/10/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/10/25");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind99");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:23");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Fedora Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2016-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! preg(pattern:"^23([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 23", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);


flag = 0;
if (rpm_check(release:"FC23", reference:"bind99-9.9.9-2.P3.fc23")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind99");
}

21 Jan 2026 00:00Current

7.4High risk

Vulners AI Score7.4

CVSS 37.5

CVSS 27.8

EPSS0.8745