FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)
2011-11-17T00:00:00
ID FREEBSD_PKG_90CC149410AC11E1B3EC0024E830109B.NASL Type nessus Reporter Tenable Modified 2018-07-11T00:00:00
Description
The Internet Systems Consortium reports :
Organizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple versions were reported being affected, including all currently supported release versions of ISC BIND 9.
Because it may be possible to trigger this bug even on networks that do not allow untrusted users to access the recursive name servers (perhaps via specially crafted e-mail messages, and/or malicious web sites) it is recommended that ALL operators of recursive name servers upgrade immediately.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from the FreeBSD VuXML database :
#
# Copyright 2003-2014 Jacques Vidrine and contributors
#
# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,
# HTML, PDF, PostScript, RTF and so forth) with or without modification,
# are permitted provided that the following conditions are met:
# 1. Redistributions of source code (VuXML) must retain the above
# copyright notice, this list of conditions and the following
# disclaimer as the first lines of this file unmodified.
# 2. Redistributions in compiled form (transformed to other DTDs,
# published online in any format, converted to PDF, PostScript,
# RTF and other formats) must reproduce the above copyright
# notice, this list of conditions and the following disclaimer
# in the documentation and/or other materials provided with the
# distribution.
#
# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS "AS IS"
# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS
# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT
# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,
# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
#
include("compat.inc");
if (description)
{
script_id(56857);
script_version("1.12");
script_cvs_date("Date: 2018/07/11 17:09:25");
script_cve_id("CVE-2011-4313");
script_bugtraq_id(50690);
script_xref(name:"FreeBSD", value:"SA-11:06.bind");
script_name(english:"FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)");
script_summary(english:"Checks for updated packages in pkg_info output");
script_set_attribute(
attribute:"synopsis",
value:
"The remote FreeBSD host is missing one or more security-related
updates."
);
script_set_attribute(
attribute:"description",
value:
"The Internet Systems Consortium reports :
Organizations across the Internet reported crashes interrupting
service on BIND 9 nameservers performing recursive queries. Affected
servers crashed after logging an error in query.c with the following
message: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple
versions were reported being affected, including all currently
supported release versions of ISC BIND 9.
Because it may be possible to trigger this bug even on networks that
do not allow untrusted users to access the recursive name servers
(perhaps via specially crafted e-mail messages, and/or malicious web
sites) it is recommended that ALL operators of recursive name servers
upgrade immediately."
);
script_set_attribute(
attribute:"see_also",
value:"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.isc.org/software/bind/advisories/cve-2011-4313"
);
# http://www.freebsd.org/ports/portaudit/90cc1494-10ac-11e1-b3ec-0024e830109b.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?e7043cd6"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:bind96");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:bind97");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:bind98");
script_set_attribute(attribute:"cpe", value:"cpe:/o:freebsd:freebsd");
script_set_attribute(attribute:"vuln_publication_date", value:"2011/11/16");
script_set_attribute(attribute:"patch_publication_date", value:"2011/11/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2011/11/17");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.");
script_family(english:"FreeBSD Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/FreeBSD/release", "Host/FreeBSD/pkg_info");
exit(0);
}
include("audit.inc");
include("freebsd_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/FreeBSD/release")) audit(AUDIT_OS_NOT, "FreeBSD");
if (!get_kb_item("Host/FreeBSD/pkg_info")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (pkg_test(save_report:TRUE, pkg:"bind96<9.6.3.1.ESV.R5.1")) flag++;
if (pkg_test(save_report:TRUE, pkg:"bind97<9.7.4.1")) flag++;
if (pkg_test(save_report:TRUE, pkg:"bind98<9.8.1.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
{"id": "FREEBSD_PKG_90CC149410AC11E1B3EC0024E830109B.NASL", "bulletinFamily": "scanner", "title": "FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)", "description": "The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple versions were reported being affected, including all currently supported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that do not allow untrusted users to access the recursive name servers (perhaps via specially crafted e-mail messages, and/or malicious web sites) it is recommended that ALL operators of recursive name servers upgrade immediately.", "published": "2011-11-17T00:00:00", "modified": "2018-07-11T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=56857", "reporter": "Tenable", "references": ["http://www.nessus.org/u?e7043cd6", "https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313"], "cvelist": ["CVE-2011-4313"], "type": "nessus", "lastseen": "2018-09-01T23:45:10", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:freebsd:freebsd:bind96", "p-cpe:/a:freebsd:freebsd:bind97", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:bind98"], "cvelist": ["CVE-2011-4313"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple versions were reported being affected, including all currently supported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that do not allow untrusted users to access the recursive name servers (perhaps via specially crafted e-mail messages, and/or malicious web sites) it is recommended that ALL operators of recursive name servers upgrade immediately.", "edition": 4, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "9148e930a083d17dabfb38c01f91b8dd3cde822e28e1fb4efa360f2ce54180c3", "hashmap": [{"hash": "a2567c688d4fc6d59de92cfad1ba0ce3", "key": "title"}, {"hash": "fe45aa727b58c1249bf04cfb7b4e6ae0", "key": "naslFamily"}, {"hash": "f3ef8c702797e0afc3064ac0cbfaf8d5", "key": "pluginID"}, {"hash": "14c1ce0f58e7f634112cfbb0e0d4a7ad", "key": "href"}, {"hash": "671c85044174cb5a566c7bfacf882668", "key": "published"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "3976b86475e4f7045659d3bc6228035a", "key": "sourceData"}, {"hash": "e3da22819dd9cc8296d561d46b4d725a", "key": "modified"}, {"hash": "5794fcabce0bd1e1e4eb2a59b8d1563e", "key": "cvelist"}, {"hash": "5d4804308aa84f09656a93863bf75d56", "key": "cpe"}, {"hash": "bfed5d0e0b1e2e5e2b41a7cbb99cf951", "key": "references"}, {"hash": "6d61df32c0ffb9b6519c88e052c9e317", "key": "description"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=56857", "id": "FREEBSD_PKG_90CC149410AC11E1B3EC0024E830109B.NASL", "lastseen": "2018-08-30T19:38:47", "modified": "2018-07-11T00:00:00", "naslFamily": "FreeBSD Local Security Checks", "objectVersion": "1.3", "pluginID": "56857", "published": "2011-11-17T00:00:00", "references": ["http://www.nessus.org/u?e7043cd6", "https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2014 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56857);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/07/11 17:09:25\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_xref(name:\"FreeBSD\", value:\"SA-11:06.bind\");\n\n script_name(english:\"FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting\nservice on BIND 9 nameservers performing recursive queries. Affected\nservers crashed after logging an error in query.c with the following\nmessage: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple\nversions were reported being affected, including all currently\nsupported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that\ndo not allow untrusted users to access the recursive name servers\n(perhaps via specially crafted e-mail messages, and/or malicious web\nsites) it is recommended that ALL operators of recursive name servers\nupgrade immediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n # http://www.freebsd.org/ports/portaudit/90cc1494-10ac-11e1-b3ec-0024e830109b.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e7043cd6\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind96\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind97\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind98\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"bind96<9.6.3.1.ESV.R5.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind97<9.7.4.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind98<9.8.1.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:38:47"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:freebsd:freebsd:bind96", "p-cpe:/a:freebsd:freebsd:bind97", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:bind98"], "cvelist": ["CVE-2011-4313"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple versions were reported being affected, including all currently supported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that do not allow untrusted users to access the recursive name servers (perhaps via specially crafted e-mail messages, and/or malicious web sites) it is recommended that ALL operators of recursive name servers upgrade immediately.", "edition": 3, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "c0fd7bb592d47f19688a57955f8897d2c15f81283b3760ac1c8c729a1e572b06", "hashmap": [{"hash": "a2567c688d4fc6d59de92cfad1ba0ce3", "key": "title"}, {"hash": "fe45aa727b58c1249bf04cfb7b4e6ae0", "key": "naslFamily"}, {"hash": "f3ef8c702797e0afc3064ac0cbfaf8d5", "key": "pluginID"}, {"hash": "14c1ce0f58e7f634112cfbb0e0d4a7ad", "key": "href"}, {"hash": "671c85044174cb5a566c7bfacf882668", "key": "published"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "3976b86475e4f7045659d3bc6228035a", "key": "sourceData"}, {"hash": "e3da22819dd9cc8296d561d46b4d725a", "key": "modified"}, {"hash": "5794fcabce0bd1e1e4eb2a59b8d1563e", "key": "cvelist"}, {"hash": "5d4804308aa84f09656a93863bf75d56", "key": "cpe"}, {"hash": "bfed5d0e0b1e2e5e2b41a7cbb99cf951", "key": "references"}, {"hash": "6d61df32c0ffb9b6519c88e052c9e317", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=56857", "id": "FREEBSD_PKG_90CC149410AC11E1B3EC0024E830109B.NASL", "lastseen": "2018-07-12T17:48:02", "modified": "2018-07-11T00:00:00", "naslFamily": "FreeBSD Local Security Checks", "objectVersion": "1.3", "pluginID": "56857", "published": "2011-11-17T00:00:00", "references": ["http://www.nessus.org/u?e7043cd6", "https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2014 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56857);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/07/11 17:09:25\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_xref(name:\"FreeBSD\", value:\"SA-11:06.bind\");\n\n script_name(english:\"FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting\nservice on BIND 9 nameservers performing recursive queries. Affected\nservers crashed after logging an error in query.c with the following\nmessage: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple\nversions were reported being affected, including all currently\nsupported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that\ndo not allow untrusted users to access the recursive name servers\n(perhaps via specially crafted e-mail messages, and/or malicious web\nsites) it is recommended that ALL operators of recursive name servers\nupgrade immediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n # http://www.freebsd.org/ports/portaudit/90cc1494-10ac-11e1-b3ec-0024e830109b.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e7043cd6\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind96\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind97\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind98\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"bind96<9.6.3.1.ESV.R5.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind97<9.7.4.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind98<9.8.1.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-07-12T17:48:02"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2011-4313"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple versions were reported being affected, including all currently supported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that do not allow untrusted users to access the recursive name servers (perhaps via specially crafted e-mail messages, and/or malicious web sites) it is recommended that ALL operators of recursive name servers upgrade immediately.", "edition": 1, "enchantments": {}, "hash": "c00be7b196f76dc7bb751d212cbe96e960acc05c789a61dd9f9f1108a99ecc55", "hashmap": [{"hash": "a2567c688d4fc6d59de92cfad1ba0ce3", "key": "title"}, {"hash": "fe45aa727b58c1249bf04cfb7b4e6ae0", "key": "naslFamily"}, {"hash": "f3ef8c702797e0afc3064ac0cbfaf8d5", "key": "pluginID"}, {"hash": "14c1ce0f58e7f634112cfbb0e0d4a7ad", "key": "href"}, {"hash": "671c85044174cb5a566c7bfacf882668", "key": "published"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "70828e511d153246701946c464817849", "key": "sourceData"}, {"hash": "5794fcabce0bd1e1e4eb2a59b8d1563e", "key": "cvelist"}, {"hash": "bfed5d0e0b1e2e5e2b41a7cbb99cf951", "key": "references"}, {"hash": "6d82fb1b22f205cec391f9c81e0c5ef3", "key": "modified"}, {"hash": "6d61df32c0ffb9b6519c88e052c9e317", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=56857", "id": "FREEBSD_PKG_90CC149410AC11E1B3EC0024E830109B.NASL", "lastseen": "2016-09-26T17:24:28", "modified": "2014-01-27T00:00:00", "naslFamily": "FreeBSD Local Security Checks", "objectVersion": "1.2", "pluginID": "56857", "published": "2011-11-17T00:00:00", "references": ["http://www.nessus.org/u?e7043cd6", "https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2014 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56857);\n script_version(\"$Revision: 1.11 $\");\n script_cvs_date(\"$Date: 2014/01/27 00:45:20 $\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_osvdb_id(77159);\n script_xref(name:\"FreeBSD\", value:\"SA-11:06.bind\");\n\n script_name(english:\"FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting\nservice on BIND 9 nameservers performing recursive queries. Affected\nservers crashed after logging an error in query.c with the following\nmessage: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple\nversions were reported being affected, including all currently\nsupported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that\ndo not allow untrusted users to access the recursive name servers\n(perhaps via specially crafted e-mail messages, and/or malicious web\nsites) it is recommended that ALL operators of recursive name servers\nupgrade immediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n # http://www.freebsd.org/ports/portaudit/90cc1494-10ac-11e1-b3ec-0024e830109b.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e7043cd6\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind96\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind97\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind98\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"bind96<9.6.3.1.ESV.R5.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind97<9.7.4.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind98<9.8.1.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)", "type": "nessus", "viewCount": 0}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2016-09-26T17:24:28"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:freebsd:freebsd:bind96", "p-cpe:/a:freebsd:freebsd:bind97", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:bind98"], "cvelist": ["CVE-2011-4313"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple versions were reported being affected, including all currently supported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that do not allow untrusted users to access the recursive name servers (perhaps via specially crafted e-mail messages, and/or malicious web sites) it is recommended that ALL operators of recursive name servers upgrade immediately.", "edition": 2, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "00029b1bce8d56b331b57028150ddf4749c7a00d243f32752f94b9050dcc8554", "hashmap": [{"hash": "a2567c688d4fc6d59de92cfad1ba0ce3", "key": "title"}, {"hash": "fe45aa727b58c1249bf04cfb7b4e6ae0", "key": "naslFamily"}, {"hash": "f3ef8c702797e0afc3064ac0cbfaf8d5", "key": "pluginID"}, {"hash": "14c1ce0f58e7f634112cfbb0e0d4a7ad", "key": "href"}, {"hash": "671c85044174cb5a566c7bfacf882668", "key": "published"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "70828e511d153246701946c464817849", "key": "sourceData"}, {"hash": "5794fcabce0bd1e1e4eb2a59b8d1563e", "key": "cvelist"}, {"hash": "5d4804308aa84f09656a93863bf75d56", "key": "cpe"}, {"hash": "bfed5d0e0b1e2e5e2b41a7cbb99cf951", "key": "references"}, {"hash": "6d82fb1b22f205cec391f9c81e0c5ef3", "key": "modified"}, {"hash": "6d61df32c0ffb9b6519c88e052c9e317", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=56857", "id": "FREEBSD_PKG_90CC149410AC11E1B3EC0024E830109B.NASL", "lastseen": "2017-10-29T13:37:42", "modified": "2014-01-27T00:00:00", "naslFamily": "FreeBSD Local Security Checks", "objectVersion": "1.3", "pluginID": "56857", "published": "2011-11-17T00:00:00", "references": ["http://www.nessus.org/u?e7043cd6", "https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2014 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56857);\n script_version(\"$Revision: 1.11 $\");\n script_cvs_date(\"$Date: 2014/01/27 00:45:20 $\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_osvdb_id(77159);\n script_xref(name:\"FreeBSD\", value:\"SA-11:06.bind\");\n\n script_name(english:\"FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting\nservice on BIND 9 nameservers performing recursive queries. Affected\nservers crashed after logging an error in query.c with the following\nmessage: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple\nversions were reported being affected, including all currently\nsupported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that\ndo not allow untrusted users to access the recursive name servers\n(perhaps via specially crafted e-mail messages, and/or malicious web\nsites) it is recommended that ALL operators of recursive name servers\nupgrade immediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n # http://www.freebsd.org/ports/portaudit/90cc1494-10ac-11e1-b3ec-0024e830109b.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e7043cd6\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind96\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind97\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind98\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"bind96<9.6.3.1.ESV.R5.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind97<9.7.4.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind98<9.8.1.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-10-29T13:37:42"}], "edition": 5, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "5d4804308aa84f09656a93863bf75d56"}, {"key": "cvelist", "hash": "5794fcabce0bd1e1e4eb2a59b8d1563e"}, {"key": "cvss", "hash": "84813b1457b92d6ba1174abffbb83a2f"}, {"key": "description", "hash": "6d61df32c0ffb9b6519c88e052c9e317"}, {"key": "href", "hash": "14c1ce0f58e7f634112cfbb0e0d4a7ad"}, {"key": "modified", "hash": "e3da22819dd9cc8296d561d46b4d725a"}, {"key": "naslFamily", "hash": "fe45aa727b58c1249bf04cfb7b4e6ae0"}, {"key": "pluginID", "hash": "f3ef8c702797e0afc3064ac0cbfaf8d5"}, {"key": "published", "hash": "671c85044174cb5a566c7bfacf882668"}, {"key": "references", "hash": "bfed5d0e0b1e2e5e2b41a7cbb99cf951"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "3976b86475e4f7045659d3bc6228035a"}, {"key": "title", "hash": "a2567c688d4fc6d59de92cfad1ba0ce3"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "c0fd7bb592d47f19688a57955f8897d2c15f81283b3760ac1c8c729a1e572b06", "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2014 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56857);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/07/11 17:09:25\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_xref(name:\"FreeBSD\", value:\"SA-11:06.bind\");\n\n script_name(english:\"FreeBSD : BIND -- Remote DOS (90cc1494-10ac-11e1-b3ec-0024e830109b)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The Internet Systems Consortium reports :\n\nOrganizations across the Internet reported crashes interrupting\nservice on BIND 9 nameservers performing recursive queries. Affected\nservers crashed after logging an error in query.c with the following\nmessage: 'INSIST(! dns_rdataset_isassociated(sigrdataset))' Multiple\nversions were reported being affected, including all currently\nsupported release versions of ISC BIND 9.\n\nBecause it may be possible to trigger this bug even on networks that\ndo not allow untrusted users to access the recursive name servers\n(perhaps via specially crafted e-mail messages, and/or malicious web\nsites) it is recommended that ALL operators of recursive name servers\nupgrade immediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n # http://www.freebsd.org/ports/portaudit/90cc1494-10ac-11e1-b3ec-0024e830109b.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e7043cd6\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind96\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind97\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:bind98\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"bind96<9.6.3.1.ESV.R5.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind97<9.7.4.1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"bind98<9.8.1.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "FreeBSD Local Security Checks", "pluginID": "56857", "cpe": ["p-cpe:/a:freebsd:freebsd:bind96", "p-cpe:/a:freebsd:freebsd:bind97", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:bind98"]}
{"cve": [{"lastseen": "2018-01-06T12:20:56", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1458.html", "http://marc.info/?l=bugtraq&m=133978480208466&w=2", "http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc", "http://www.debian.org/security/2011/dsa-2347", "http://www.mandriva.com/security/advisories?name=MDVSA-2011:176", "http://www.redhat.com/support/errata/RHSA-2011-1496.html", "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00028.html", "http://blogs.oracle.com/sunsecurity/entry/cve_2011_4313_denial_of", "http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069970.html", "http://secunia.com/advisories/48308", "http://marc.info/?l=bugtraq&m=132310123002302&w=2", "http://www-01.ibm.com/support/docview.wss?uid=isg1IV11106", "https://exchange.xforce.ibmcloud.com/vulnerabilities/71332", "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00029.html", "http://marc.info/?l=bugtraq&m=141879471518471&w=2", "http://www.securitytracker.com/id?1026335", "http://www.kb.cert.org/vuls/id/606539", "http://support.apple.com/kb/HT5501", "http://www.securityfocus.com/bid/50690", "http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069463.html", "http://www.ibm.com/support/docview.wss?uid=isg1IV11248", "http://www.redhat.com/support/errata/RHSA-2011-1459.html", "http://www.isc.org/software/bind/advisories/cve-2011-4313", "http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html", "http://www.ubuntu.com/usn/USN-1264-1", "http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069975.html", "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00027.html"], "description": "query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.", "edition": 4, "reporter": "NVD", "published": "2011-11-29T12:55:02", "title": "CVE-2011-4313", "type": "cve", "enchantments": {"score": {"modified": "2018-01-06T12:20:56", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14343", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14343"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-4313"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:14343", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:14343"}], "modified": "2018-01-05T21:29:25", "cpe": ["cpe:/a:isc:bind:9.7.2:p3", "cpe:/a:isc:bind:9.1.1:rc4", "cpe:/a:isc:bind:9.7.2:p2", "cpe:/a:isc:bind:9.2.0:rc10", "cpe:/a:isc:bind:9.3.1", "cpe:/a:isc:bind:9.3.0", "cpe:/a:isc:bind:9.5.2:b1", "cpe:/a:isc:bind:9.4.0:a3", "cpe:/a:isc:bind:9.6.3", "cpe:/a:isc:bind:9.7.1", "cpe:/a:isc:bind:9.5.2:p3", "cpe:/a:isc:bind:9.8.0:a1", "cpe:/a:isc:bind:9.2.7", "cpe:/a:isc:bind:9.3.3:rc3", "cpe:/a:isc:bind:9.7.0:a3", "cpe:/a:isc:bind:9.2.6", "cpe:/a:isc:bind:9.7.3", "cpe:/a:isc:bind:9.6.2:b1", "cpe:/a:isc:bind:9.0", "cpe:/a:isc:bind:9.6:r5:~~esv~~~", "cpe:/a:isc:bind:9.2.0:rc5", "cpe:/a:isc:bind:9.6:r5_b1:~~esv~~~", "cpe:/a:isc:bind:9.2.4:rc5", "cpe:/a:isc:bind:9.7.4", "cpe:/a:isc:bind:9.2.1:rc2", "cpe:/a:isc:bind:9.4::~~esv~~~", "cpe:/a:isc:bind:9.7.0:b1", "cpe:/a:isc:bind:9.3.3:rc1", "cpe:/a:isc:bind:9.6:r5_p1:~~esv~~~", "cpe:/a:isc:bind:9.1.1", "cpe:/a:isc:bind:9.3.0:b4", "cpe:/a:isc:bind:9.4:r1:~~esv~~~", "cpe:/a:isc:bind:9.4.0:a5", "cpe:/a:isc:bind:9.8.0:p1", "cpe:/a:isc:bind:9.7.1:p1", "cpe:/a:isc:bind:9.1.1:rc5", "cpe:/a:isc:bind:9.5.2:rc1", "cpe:/a:isc:bind:9.4.3:b1", "cpe:/a:isc:bind:9.8.1", "cpe:/a:isc:bind:9.2.0:rc6", "cpe:/a:isc:bind:9.4.0:a4", "cpe:/a:isc:bind:9.6.0:rc2", "cpe:/a:isc:bind:9.8.0:b1", "cpe:/a:isc:bind:9.7.2:rc1", "cpe:/a:isc:bind:9.4.0:rc1", "cpe:/a:isc:bind:9.5.1", "cpe:/a:isc:bind:9.7.0:rc1", "cpe:/a:isc:bind:9.2.0:rc2", "cpe:/a:isc:bind:9.1.3:rc2", "cpe:/a:isc:bind:9.7.2", "cpe:/a:isc:bind:9.2.3:rc2", "cpe:/a:isc:bind:9.2.2:rc1", "cpe:/a:isc:bind:9.6:r4_p1:~~esv~~~", "cpe:/a:isc:bind:9.6:r4:~~esv~~~", "cpe:/a:isc:bind:9.2.0:a1", "cpe:/a:isc:bind:9.1.2:rc1", "cpe:/a:isc:bind:9.1.1:rc6", "cpe:/a:isc:bind:9.5.0:a4", "cpe:/a:isc:bind:9.5.2:p1", "cpe:/a:isc:bind:9.4.1", "cpe:/a:isc:bind:9.0.1:rc1", "cpe:/a:isc:bind:9.3.2", "cpe:/a:isc:bind:9.2.4:rc7", "cpe:/a:isc:bind:9.3.4", "cpe:/a:isc:bind:9.0.0:rc3", "cpe:/a:isc:bind:9.6.1:rc1", "cpe:/a:isc:bind:9.7.3:p1", "cpe:/a:isc:bind:9.1.0:rc1", "cpe:/a:isc:bind:9.2.0:rc1", "cpe:/a:isc:bind:9.6.3:rc1", "cpe:/a:isc:bind:9.6.1:p1", "cpe:/a:isc:bind:9.6.0", "cpe:/a:isc:bind:9.6.0:p1", "cpe:/a:isc:bind:9.7.1:b1", "cpe:/a:isc:bind:9.2.4:rc2", "cpe:/a:isc:bind:9.0.0:rc2", "cpe:/a:isc:bind:9.7.0:b3", "cpe:/a:isc:bind:9.2.4:rc8", "cpe:/a:isc:bind:9.3.0:rc2", "cpe:/a:isc:bind:9.0.0:rc1", "cpe:/a:isc:bind:9.2.0:rc4", "cpe:/a:isc:bind:9.8.0", "cpe:/a:isc:bind:9.4.0:a2", "cpe:/a:isc:bind:9.2.0:b2", "cpe:/a:isc:bind:9.3.6", "cpe:/a:isc:bind:9.5.1:b2", "cpe:/a:isc:bind:9.5.3:b1", "cpe:/a:isc:bind:9.5.0:a1", "cpe:/a:isc:bind:9.5.0:a7", "cpe:/a:isc:bind:9.2.0:rc8", "cpe:/a:isc:bind:9.4.3:b2", "cpe:/a:isc:bind:9.6:r3:~~esv~~~", "cpe:/a:isc:bind:9.4.3:rc1", "cpe:/a:isc:bind:9.3.5:rc2", "cpe:/a:isc:bind:9.3.0:rc4", "cpe:/a:isc:bind:9.6.0:rc1", "cpe:/a:isc:bind:9.6.2:p2", "cpe:/a:isc:bind:9.3.6:rc1", "cpe:/a:isc:bind:9.8.0:p4", "cpe:/a:isc:bind:9.4.0:b4", "cpe:/a:isc:bind:9.3.2:rc1", "cpe:/a:isc:bind:9.2.3:rc3", "cpe:/a:isc:bind:9.7.0:a2", "cpe:/a:isc:bind:9.5.0:p2", "cpe:/a:isc:bind:9.4.0:b3", "cpe:/a:isc:bind:9.9.0:a2", "cpe:/a:isc:bind:9.4:r5-p1:~~esv~~~", "cpe:/a:isc:bind:9.4.2", "cpe:/a:isc:bind:9.7.3:rc1", "cpe:/a:isc:bind:9.9.0:a3", "cpe:/a:isc:bind:9.6.2:p3", "cpe:/a:isc:bind:9.1.3:rc3", "cpe:/a:isc:bind:9.5.0:p1", "cpe:/a:isc:bind:9.1.3", "cpe:/a:isc:bind:9.3.0:rc3", "cpe:/a:isc:bind:9.1", "cpe:/a:isc:bind:9.4.0:rc2", "cpe:/a:isc:bind:9.6.2:p1", "cpe:/a:isc:bind:9.4:r2:~~esv~~~", "cpe:/a:isc:bind:9.2.9", "cpe:/a:isc:bind:9.7.0:rc2", "cpe:/a:isc:bind:9.3.0:b3", "cpe:/a:isc:bind:9.2.7:rc1", "cpe:/a:isc:bind:9.8.0:p2", "cpe:/a:isc:bind:9.2.0:rc7", "cpe:/a:isc:bind:9.1.2", "cpe:/a:isc:bind:9.7.0:a1", "cpe:/a:isc:bind:9.5.0:b1", "cpe:/a:isc:bind:9.2.5", "cpe:/a:isc:bind:9.5.2:p2", "cpe:/a:isc:bind:9.5.0:a3", "cpe:/a:isc:bind:9.5.2:p4", "cpe:/a:isc:bind:9.2.4:rc6", "cpe:/a:isc:bind:9.4:r5-b1:~~esv~~~", "cpe:/a:isc:bind:9.0.0:rc6", "cpe:/a:isc:bind:9.3", "cpe:/a:isc:bind:9.7.3:b1", "cpe:/a:isc:bind:9.3.0:b2", "cpe:/a:isc:bind:9.5.0:b2", "cpe:/a:isc:bind:9.1.1:rc3", "cpe:/a:isc:bind:9.0.0:rc5", "cpe:/a:isc:bind:9.6.1", "cpe:/a:isc:bind:9.5.0:rc1", "cpe:/a:isc:bind:9.6.1:p3", "cpe:/a:isc:bind:9.7.4:b1", "cpe:/a:isc:bind:9.6:r2:~~esv~~~", "cpe:/a:isc:bind:9.2.0", "cpe:/a:isc:bind:9.4.0", "cpe:/a:isc:bind:9.9.0:a1", "cpe:/a:isc:bind:9.5.1:rc1", "cpe:/a:isc:bind:9.5.0:p2_w1", "cpe:/a:isc:bind:9.8.1:b3", "cpe:/a:isc:bind:9.2.6:rc1", "cpe:/a:isc:bind:9.8.1:b1", "cpe:/a:isc:bind:9.3.5:rc1", "cpe:/a:isc:bind:9.6.1:b1", "cpe:/a:isc:bind:9.8.1:b2", "cpe:/a:isc:bind:9.5.0:p2_w2", "cpe:/a:isc:bind:9.7.0:b2", "cpe:/a:isc:bind:9.6.1:p2", "cpe:/a:isc:bind:9.3.1:b2", "cpe:/a:isc:bind:9.1.1:rc1", "cpe:/a:isc:bind:9.2.8", "cpe:/a:isc:bind:9.2.5:b2", "cpe:/a:isc:bind:9.2.0:a3", "cpe:/a:isc:bind:9.4.3:p2", "cpe:/a:isc:bind:9.3.3:rc2", "cpe:/a:isc:bind:9.7.0", "cpe:/a:isc:bind:9.8.0:rc1", "cpe:/a:isc:bind:9.2.0:a2", "cpe:/a:isc:bind:9.2.0:b1", "cpe:/a:isc:bind:9.4:r5-rc1:~~esv~~~", "cpe:/a:isc:bind:9.4.0:a1", "cpe:/a:isc:bind:9.1.1:rc2", "cpe:/a:isc:bind:9.4:r5:~~esv~~~", "cpe:/a:isc:bind:9.4.2:rc2", "cpe:/a:isc:bind:9.7.0:p2", "cpe:/a:isc:bind:9.5.3:rc1", "cpe:/a:isc:bind:9.2.5:rc1", "cpe:/a:isc:bind:9.3.3", "cpe:/a:isc:bind:9.4:b1:~~esv~~~", "cpe:/a:isc:bind:9.3.1:rc1", "cpe:/a:isc:bind:9.5.0:a5", "cpe:/a:isc:bind:9.2.4:rc4", "cpe:/a:isc:bind:9.4:r3:~~esv~~~", "cpe:/a:isc:bind:9.4:r4-p1:~~esv~~~", "cpe:/a:isc:bind:9.6.0:a1", "cpe:/a:isc:bind:9.5.0", "cpe:/a:isc:bind:9.7.1:p2", "cpe:/a:isc:bind:9.4.0:a6", "cpe:/a:isc:bind:9.9.0:b1", "cpe:/a:isc:bind:9.7.0:p1", "cpe:/a:isc:bind:9.4", "cpe:/a:isc:bind:9.1.1:rc7", "cpe:/a:isc:bind:9.5.0:a6", "cpe:/a:isc:bind:9.2.3", "cpe:/a:isc:bind:9.7.4:rc1", "cpe:/a:isc:bind:9.2.7:rc3", "cpe:/a:isc:bind:9.4.0:b2", "cpe:/a:isc:bind:9.4.3", "cpe:/a:isc:bind:9.3.0:rc1", "cpe:/a:isc:bind:9.6.0:b1", "cpe:/a:isc:bind:9.2.3:rc1", "cpe:/a:isc:bind:9.2.3:rc4", "cpe:/a:isc:bind:9.6:r1:~~esv~~~", "cpe:/a:isc:bind:9.8.1:rc1", "cpe:/a:isc:bind:9.2.4:rc3", "cpe:/a:isc:bind:9.2.0:rc3", "cpe:/a:isc:bind:9.6::~~esv~~~", "cpe:/a:isc:bind:9.2.7:rc2", "cpe:/a:isc:bind:9.7.2:p1", "cpe:/a:isc:bind:9.6.3:b1", "cpe:/a:isc:bind:9.6.2:rc1", "cpe:/a:isc:bind:9.0.1", "cpe:/a:isc:bind:9.5.0:b3", "cpe:/a:isc:bind:9.3.5", "cpe:/a:isc:bind:9.2.2:p3", "cpe:/a:isc:bind:9.5.1:b3", "cpe:/a:isc:bind:9.2.9:rc1", "cpe:/a:isc:bind:9.4.2:rc1", "cpe:/a:isc:bind:9.4.3:b3", "cpe:/a:isc:bind:9.2.1:rc1", "cpe:/a:isc:bind:9.5", "cpe:/a:isc:bind:9.2.4", "cpe:/a:isc:bind:9.1.3:rc1", "cpe:/a:isc:bind:9.4.0:b1", "cpe:/a:isc:bind:9.5.1:rc2", "cpe:/a:isc:bind:9.5.0:a2", "cpe:/a:isc:bind:9.4:r4:~~esv~~~", "cpe:/a:isc:bind:9.2.0:rc9", "cpe:/a:isc:bind:9.6.2", "cpe:/a:isc:bind:9.2.2:p2", "cpe:/a:isc:bind:9.2.2", "cpe:/a:isc:bind:9.5.2", "cpe:/a:isc:bind:9.0.0:rc4", "cpe:/a:isc:bind:9.5.1:b1", "cpe:/a:isc:bind:9.0.1:rc2", "cpe:/a:isc:bind:9.2.1", "cpe:/a:isc:bind:9.7.1:rc1"], "id": "CVE-2011-4313", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4313", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "f5": [{"lastseen": "2017-06-08T00:16:38", "references": [], "edition": 1, "description": "\nF5 Product Development has assigned ID 372590 to this vulnerability. Additionally, [BIG-IP iHealth](<http://www.f5.com/services/customer-support/ihealth/>) may list Heuristic H389449 on the **Diagnostics** > **Identified **> **High **screen.\n\nTo find out whether F5 has determined that your release is vulnerable, and to obtain information about releases or hotfixes that resolve the vulnerability, refer to the following table: \n\n\nProduct | Versions known to be vulnerable | Versions known to be not vulnerable | Vulnerable component or feature \n---|---|---|--- \nBIG-IP LTM | 9.4.0 - 9.4.8 HF4 \n10.0.0 - 10.2.3 \n11.0.0 - 11.1.0 \n| 9.4.8 HF5 \n10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.4.0 \n| BIND \nBIG-IP AAM | None | 11.4.0 | None \nBIG-IP AFM | None | 11.3.0 - 11.4.0 \n| None \nBIG-IP Analytics | None | 11.0.0 - 1.4.0 \n| None \nBIG-IP APM | 10.1.0 - 10.2.3 \n11.0.0 - 11.1.0 \n| 10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.4.0 \n| BIND \nBIG-IP ASM | 9.4.0 - 9.4.8 HF4 \n10.0.0 - 10.2.3 \n11.0.0 - 11.1.0 \n| 9.4.8 HF5 \n10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.4.0 \n| BIND \nBIG-IP Edge Gateway \n| 10.1.0 - 10.2.3 \n11.0.0 - 11.1.0 | 10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.4.0 \n| BIND \nBIG-IP GTM | 9.4.0 - 9.4.8 HF4 \n10.0.0 - 10.2.3 \n11.0.0 - 11.1.0 \n| 9.4.8 HF5 \n10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.4.0 \n| BIND \nBIG-IP Link Controller | 9.4.0 - 9.4.8 HF4 \n10.0.0 - 10.2.3 \n11.0.0 - 11.1.0 | 9.4.8 HF5 \n10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.4.0 \n| BIND \nBIG-IP PEM | None \n| 11.3.0 - 11.4.0 \n| None \nBIG-IP PSM | 9.4.5 - 9.4.8 HF4 \n10.0.0 - 10.2.3 \n11.0.0 - 11.1.0 | 9.4.8 HF5 \n10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.4.0 \n| BIND \nBIG-IP WebAccelerator | 9.4.0- 9.4.8 HF4 \n10.0.0 - 10.2.3 \n11.0.0 - 11.1.0 | 9.4.8 HF5 \n10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.3.0 \n| BIND \nBIG-IP WOM | 10.0.0 - 10.2.3 \n11.0.0 - 11.1.0 \n| 10.2.1 HF4 \n10.2.2 HF4 \n10.2.3 HF1 \n10.2.4 \n11.1.0 HF1 \n11.2.0 - 11.3.0 \n| BIND \nARX | None | 5.x \n6.x \n| None \nEnterprise Manager | None \n| 1.0.0 - 1.8.0* \n2.0.0 - 2.3.0* \n3.x \n| None \nFirePass | None | 6.x \n7.x \n| None \n \n* F5 Product Development has determined that these Enterprise Manager versions use a vulnerable version of BIND. However, the vulnerable code is not used by default on these Enterprise Manager systems. These products are only vulnerable if BIND was manually configured and enabled.\n\nTo eliminate this vulnerability, upgrade to a version that is listed in the **Versions known to be not vulnerable** column in the previous table.\n\n * [Common Vulnerabilities and Exposures (CVE-2011-4313)](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313>)\n * [K9970: Subscribing to email notifications regarding F5 products](<https://support.f5.com/csp/article/K9970>)\n * [K9957: Creating a custom RSS feed to view new and updated documents.](<https://support.f5.com/csp/article/K9957>)\n * [K4602: Overview of the F5 security vulnerability response policy](<https://support.f5.com/csp/article/K4602>)\n * [K4918: Overview of the F5 critical issue hotfix policy](<https://support.f5.com/csp/article/K4918>)\n * [K167: Downloading software and firmware from F5](<https://support.f5.com/csp/article/K167>)\n * [K13123: Managing BIG-IP product hotfixes (11.x)](<https://support.f5.com/csp/article/K13123>)\n * [K10025: Managing BIG-IP product hotfixes (10.x)](<https://support.f5.com/csp/article/K10025>)\n * [K6845: Managing BIG-IP product hotfixes (9.x)](<https://support.f5.com/csp/article/K6845>)\n * [K9502: BIG-IP hotfix matrix](<https://support.f5.com/csp/article/K9502>)\n", "reporter": "f5", "published": "2013-02-13T01:34:00", "title": "BIND vulnerability CVE-2011-4313", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-4313"], "modified": "2016-01-09T02:30:00", "href": "https://support.f5.com/csp/article/K14204", "id": "F5:K14204", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2016-09-26T17:23:26", "references": ["https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13123.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html", "https://support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html", "https://support.f5.com/kb/en-us/solutions/public/9000/500/sol9502.html", "https://support.f5.com/kb/en-us/solutions/public/6000/800/sol6845.html", "https://support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html", "https://support.f5.comhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313", "https://support.f5.com/kb/en-us/solutions/public/10000/000/sol10025.html", "https://support.f5.com/kb/en-us/solutions/public/0000/100/sol167.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html"], "edition": 1, "description": "* F5 Product Development has determined that these Enterprise Manager versions use a vulnerable version of BIND. However, the vulnerable code is not used by default on these Enterprise Manager systems. These products are only vulnerable if BIND was manually configured and enabled.\n\nRecommended action\n\nTo eliminate this vulnerability, upgrade to a version that is listed in the **Versions known to be not vulnerable** column in the previous table.\n\nSupplemental Information\n\n * [Common Vulnerabilities and Exposures (CVE-2011-4313)](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313>)\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents.\n * SOL4602: Overview of the F5 security vulnerability response policy\n * SOL4918: Overview of the F5 critical issue hotfix policy\n * SOL167: Downloading software and firmware from F5\n * SOL13123: Managing BIG-IP product hotfixes (11.x)\n * SOL10025: Managing BIG-IP product hotfixes (10.x)\n * SOL6845: Managing BIG-IP product hotfixes (9.x)\n * SOL9502: BIG-IP hotfix matrix\n", "reporter": "f5", "published": "2013-02-12T00:00:00", "title": "SOL14204 - BIND vulnerability CVE-2011-4313", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "BIG-IP WOM", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP PSM", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP ASM", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP Edge Gateway\n", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP PSM", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP LTM", "version": "9.4.8 HF4", "operator": "le"}, {"name": "BIG-IP APM", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP LTM", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP ASM", "version": "9.4.8 HF4", "operator": "le"}, {"name": "BIG-IP PSM", "version": "9.4.8 HF4", "operator": "le"}, {"name": "BIG-IP APM", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP LTM", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP GTM", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP ASM", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP WOM", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP GTM", "version": "9.4.8 HF4", "operator": "le"}, {"name": "BIG-IP Edge Gateway\n", "version": "10.2.3", "operator": "le"}, {"name": "BIG-IP Link Controller", "version": "9.4.8 HF4", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "9.4.8 HF4", "operator": "le"}, {"name": "BIG-IP GTM", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "11.1.0", "operator": "le"}], "cvelist": ["CVE-2011-4313"], "modified": "2013-09-10T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/14000/200/sol14204.html", "id": "SOL14204", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "cert": [{"lastseen": "2018-08-31T02:37:51", "references": ["https://www.isc.org/software/bind/94-esv-r5-p1", "https://www.isc.org/software/bind/96-esv-r5-p1", "https://www.isc.org/software/bind/981-p1", "https://www.isc.org/software/bind/974-p1", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4313", "http://www.isc.org/software/bind/advisories/cve-2011-4313", "http://www.isc.org/software/bind/advisories/cve-2011-4313", "http://www.isc.org/software/bind/advisories/cve-2011-4313"], "description": "### Overview\n\nISC BIND 9 resolver contains a remote packet denial of service vulnerability after logging an error in query.c.\n\n### Description\n\nAccording to [ISC](<http://www.isc.org/software/bind/advisories/cve-2011-4313>): \n\n_An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure. ISC is working on determining the ultimate cause by which a record with this particular inconsistency is cached.At this time we are making available a patch which makes named recover gracefully from the inconsistency, preventing the abnormal exit. \n \nThe patch has two components. When a client query is handled, the code which processes the response to the client has to ask the cache for the records for the name that is being queried. The first component of the patch prevents the cache from returning the inconsistent data. The second component prevents named from crashing if it detects that it has been given an inconsistent answer of this nature._ \n \n--- \n \n### Impact\n\nA remote, unauthenticated attacker can cause the BIND 9 resolver to crash creating a denial of service condition. \n \n--- \n \n### Solution\n\n \n**Apply an update** \n \nUsers who obtain BIND from a third-party vendor, such as their operating system vendor, should see the vendor information portion of this document for a partial list of affected vendors. \n \nThis vulnerability is addressed in ISC BIND versions 9.4-ESV-R5-P1, 9.6-ESV-R5-P1, 9.7.4-P1 and 9.8.1-P1. Users of BIND from the original source distribution should upgrade to this version. \n \nSee also <http://www.isc.org/software/bind/advisories/cve-2011-4313> \n \n--- \n \n### Vendor Information \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nDebian GNU/Linux| | -| 06 Jan 2012 \nFedora Project| | -| 06 Jan 2012 \nHewlett-Packard Company| | -| 06 Jan 2012 \nInternet Systems Consortium| | -| 16 Nov 2011 \nMandriva S. A.| | -| 06 Jan 2012 \nOracle Corporation| | -| 28 Nov 2011 \nRed Hat, Inc.| | -| 06 Jan 2012 \nSUSE Linux| | -| 06 Jan 2012 \nUbuntu| | -| 06 Jan 2012 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23606539 Vendor Status Inquiry>).\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://www.isc.org/software/bind/advisories/cve-2011-4313>\n * <https://www.isc.org/software/bind/981-p1>\n * <https://www.isc.org/software/bind/974-p1>\n * <https://www.isc.org/software/bind/96-esv-r5-p1>\n * <https://www.isc.org/software/bind/94-esv-r5-p1>\n\n### Credit\n\nThanks to Internet Systems Consortium for reporting this vulnerability.\n\nThis document was written by Michael Orlando.\n\n### Other Information\n\n * CVE IDs: [CVE-2011-4313](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4313>)\n * Date Public: 16 Nov 2011\n * Date First Published: 22 Nov 2011\n * Date Last Updated: 06 Jan 2012\n * Severity Metric: 21.92\n * Document Revision: 11\n\n", "edition": 3, "reporter": "CERT", "published": "2011-11-22T00:00:00", "title": "ISC BIND 9 resolver denial of service vulnerability", "type": "cert", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-4313", "CVE-2011-4313"], "modified": "2012-01-06T00:00:00", "id": "VU:606539", "href": "https://www.kb.cert.org/vuls/id/606539", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "openvas": [{"lastseen": "2018-09-02T00:05:00", "references": ["http://lists.centos.org/pipermail/centos-announce/2011-November/018207.html", "2011:1458"], "pluginID": "1361412562310881045", "description": "Check for the Version of bind", "edition": 4, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-11-21T00:00:00", "title": "CentOS Update for bind CESA-2011:1458 centos5 i386", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310881045", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881045", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for bind CESA-2011:1458 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\n Name System (DNS) protocols. BIND includes a DNS server (named); a resolver\n library (routines for applications to use when interfacing with DNS); and\n tools for verifying that the DNS server is operating correctly.\n\n A flaw was discovered in the way BIND handled certain DNS queries, which\n caused it to cache an invalid record. A remote attacker could use this\n flaw to send repeated queries for this invalid record, causing the\n resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\n Users of bind are advised to upgrade to these updated packages, which\n resolve this issue. After installing the update, the BIND daemon (named)\n will be restarted automatically.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"bind on CentOS 5\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-November/018207.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881045\");\n script_version(\"$Revision: 9371 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:55:06 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-11-21 09:36:00 +0530 (Mon, 21 Nov 2011)\");\n script_xref(name: \"CESA\", value: \"2011:1458\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_cve_id(\"CVE-2011-4313\");\n script_name(\"CentOS Update for bind CESA-2011:1458 centos5 i386\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of bind\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-chroot\", rpm:\"bind-chroot~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libbind-devel\", rpm:\"bind-libbind-devel~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libs\", rpm:\"bind-libs~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-sdb\", rpm:\"bind-sdb~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"caching-nameserver\", rpm:\"caching-nameserver~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:00:52", "references": ["http://lists.centos.org/pipermail/centos-announce/2011-November/018208.html", "2011:1458"], "pluginID": "1361412562310881312", "description": "Check for the Version of bind", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-07-30T00:00:00", "title": "CentOS Update for bind CESA-2011:1458 centos5 x86_64", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310881312", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881312", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for bind CESA-2011:1458 centos5 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\n Name System (DNS) protocols. BIND includes a DNS server (named); a resolver\n library (routines for applications to use when interfacing with DNS); and\n tools for verifying that the DNS server is operating correctly.\n\n A flaw was discovered in the way BIND handled certain DNS queries, which\n caused it to cache an invalid record. A remote attacker could use this\n flaw to send repeated queries for this invalid record, causing the\n resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n \n Users of bind are advised to upgrade to these updated packages, which\n resolve this issue. After installing the update, the BIND daemon (named)\n will be restarted automatically.\";\n\ntag_affected = \"bind on CentOS 5\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-November/018208.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881312\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:21:06 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2011-4313\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"CESA\", value: \"2011:1458\");\n script_name(\"CentOS Update for bind CESA-2011:1458 centos5 x86_64\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of bind\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-chroot\", rpm:\"bind-chroot~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libbind-devel\", rpm:\"bind-libbind-devel~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libs\", rpm:\"bind-libs~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-sdb\", rpm:\"bind-sdb~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"caching-nameserver\", rpm:\"caching-nameserver~9.3.6~16.P1.el5_7.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:00:10", "references": [], "pluginID": "136141256231070561", "description": "The remote host is missing an update to bind9\nannounced via advisory DSA 2347-1.", "edition": 3, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-02-11T00:00:00", "title": "Debian Security Advisory DSA 2347-1 (bind9)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:136141256231070561", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231070561", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2347_1.nasl 9352 2018-04-06 07:13:02Z cfischer $\n# Description: Auto-generated from advisory DSA 2347-1 (bind9)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"It was discovered that BIND, a DNS server, crashes while processing\ncertain sequences of recursive DNS queries, leading to a denial of\nservice. Authoritative-only server configurations are not affected by\nthis issue.\n\nFor the oldstable distribution (lenny), this problem has been fixed in\nversion 1:9.6.ESV.R4+dfsg-0+lenny4.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:9.7.3.dfsg-1~squeeze4.\n\nWe recommend that you upgrade your bind9 packages.\";\ntag_summary = \"The remote host is missing an update to bind9\nannounced via advisory DSA 2347-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202347-1\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.70561\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_cve_id(\"CVE-2011-4313\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-02-11 02:30:55 -0500 (Sat, 11 Feb 2012)\");\n script_name(\"Debian Security Advisory DSA 2347-1 (bind9)\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"bind9\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"bind9-doc\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"bind9-host\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"bind9utils\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"dnsutils\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libbind-dev\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libbind9-50\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libdns58\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libisc50\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libisccc50\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libisccfg50\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"liblwres50\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"lwresd\", ver:\"1:9.6.ESV.R4+dfsg-0+lenny4\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"bind9\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"bind9-doc\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"bind9-host\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"bind9utils\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"dnsutils\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"host\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libbind-dev\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libbind9-60\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libdns69\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libisc62\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libisccc60\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libisccfg62\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"liblwres60\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"lwresd\", ver:\"1:9.7.3.dfsg-1~squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:03:07", "references": ["2011:1496", "http://lists.centos.org/pipermail/centos-announce/2011-November/018259.html"], "pluginID": "1361412562310881048", "description": "Check for the Version of bind", "edition": 4, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-12-02T00:00:00", "title": "CentOS Update for bind CESA-2011:1496 centos4 i386", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310881048", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881048", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for bind CESA-2011:1496 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\n Name System (DNS) protocols. BIND includes a DNS server (named); a resolver\n library (routines for applications to use when interfacing with DNS); and\n tools for verifying that the DNS server is operating correctly.\n\n A flaw was discovered in the way BIND handled certain DNS queries, which\n caused it to cache an invalid record. A remote attacker could use this\n flaw to send repeated queries for this invalid record, causing the\n resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\n Users of bind are advised to upgrade to these updated packages, which\n resolve this issue. After installing the update, the BIND daemon (named)\n will be restarted automatically.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"bind on CentOS 4\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-November/018259.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881048\");\n script_version(\"$Revision: 9371 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:55:06 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-12-02 13:29:44 +0530 (Fri, 02 Dec 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"CESA\", value: \"2011:1496\");\n script_cve_id(\"CVE-2011-4313\");\n script_name(\"CentOS Update for bind CESA-2011:1496 centos4 i386\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of bind\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-chroot\", rpm:\"bind-chroot~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libs\", rpm:\"bind-libs~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-02T21:10:44", "references": ["http://www.vuxml.org/freebsd/90cc1494-10ac-11e1-b3ec-0024e830109b.html", "https://www.isc.org/software/bind/advisories/cve-2011-4313"], "pluginID": "70599", "description": "The remote host is missing an update to the system\nas announced in the referenced advisory.", "edition": 1, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-02-13T00:00:00", "title": "FreeBSD Ports: bind96", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2017-04-17T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=70599", "id": "OPENVAS:70599", "sourceData": "#\n#VID 90cc1494-10ac-11e1-b3ec-0024e830109b\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from VID 90cc1494-10ac-11e1-b3ec-0024e830109b\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The following packages are affected:\n bind96\n bind97\n bind98\n\nCVE-2011-4313\nquery.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5,\n9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1,\nand 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial\nof service (assertion failure and named exit) via unknown vectors\nrelated to recursive DNS queries, error logging, and the caching of an\ninvalid record by the resolver.\";\ntag_solution = \"Update your system with the appropriate patches or\nsoftware upgrades.\";\n\ntag_summary = \"The remote host is missing an update to the system\nas announced in the referenced advisory.\";\n\n\n\nif(description)\n{\n script_id(70599);\n script_tag(name:\"creation_date\", value:\"2012-02-13 01:48:16 +0100 (Mon, 13 Feb 2012)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-04-17 11:02:19 +0200 (Mon, 17 Apr 2017) $\");\n script_cve_id(\"CVE-2011-4313\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_version(\"$Revision: 5958 $\");\n script_name(\"FreeBSD Ports: bind96\");\n\n script_xref(name:\"URL\" , value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\");\n script_xref(name:\"URL\" , value:\"http://www.vuxml.org/freebsd/90cc1494-10ac-11e1-b3ec-0024e830109b.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"FreeBSD Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/freebsdrel\", \"login/SSH/success\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-bsd.inc\");\n\ntxt = \"\";\nvuln = 0;\nbver = portver(pkg:\"bind96\");\nif(!isnull(bver) && revcomp(a:bver, b:\"9.6.3.1.ESV.R5.1\")<0) {\n txt += 'Package bind96 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"bind97\");\nif(!isnull(bver) && revcomp(a:bver, b:\"9.7.4.1\")<0) {\n txt += 'Package bind97 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"bind98\");\nif(!isnull(bver) && revcomp(a:bver, b:\"9.8.1.1\")<0) {\n txt += 'Package bind98 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\n\nif(vuln) {\n security_message(data:string(txt));\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:55:51", "references": ["http://lists.mandriva.com/security-announce/2011-11/msg00030.php", "2011:176"], "pluginID": "831495", "description": "Check for the Version of bind", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-11-18T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Mandriva Update for bind MDVSA-2011:176 (bind)", "type": "openvas", "naslFamily": "Mandrake Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2017-07-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=831495", "id": "OPENVAS:831495", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for bind MDVSA-2011:176 (bind)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"A vulnerability was discovered and corrected in bind:\n Cache lookup could return RRSIG data associated with nonexistent\n records, leading to an assertion failure. [ISC RT #26590]\n (CVE-2011-4313).\n\n The updated packages have been upgraded to bind 9.7.4-P1 and 9.8.1-P1\n which is not vulnerable to this issue.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"bind on Mandriva Linux 2010.1,\n Mandriva Linux 2010.1/X86_64,\n Mandriva Enterprise Server 5,\n Mandriva Enterprise Server 5/X86_64\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.mandriva.com/security-announce/2011-11/msg00030.php\");\n script_id(831495);\n script_version(\"$Revision: 6570 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 15:06:35 +0200 (Thu, 06 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-11-18 09:48:13 +0530 (Fri, 18 Nov 2011)\");\n script_xref(name: \"MDVSA\", value: \"2011:176\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_cve_id(\"CVE-2011-4313\");\n script_name(\"Mandriva Update for bind MDVSA-2011:176 (bind)\");\n\n script_summary(\"Check for the Version of bind\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_mes5\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.7.4~0.0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.7.4~0.0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-doc\", rpm:\"bind-doc~9.7.4~0.0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.7.4~0.0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"MNDK_2010.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.7.4~0.0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.7.4~0.0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-doc\", rpm:\"bind-doc~9.7.4~0.0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.7.4~0.0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-10-22T16:44:23", "references": ["http://lists.mandriva.com/security-announce/2011-11/msg00031.php", "2011:176-1"], "pluginID": "1361412562310831496", "description": "Check for the Version of bind", "edition": 5, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-11-18T00:00:00", "title": "Mandriva Update for bind MDVSA-2011:176-1 (bind)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandrake Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-10-19T00:00:00", "id": "OPENVAS:1361412562310831496", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310831496", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for bind MDVSA-2011:176-1 (bind)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.mandriva.com/security-announce/2011-11/msg00031.php\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.831496\");\n script_version(\"$Revision: 11985 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-19 12:24:37 +0200 (Fri, 19 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-11-18 09:48:14 +0530 (Fri, 18 Nov 2011)\");\n script_xref(name:\"MDVSA\", value:\"2011:176-1\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_cve_id(\"CVE-2011-4313\");\n script_name(\"Mandriva Update for bind MDVSA-2011:176-1 (bind)\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of bind\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\", re:\"ssh/login/release=MNDK_(mes5|2010\\.1)\");\n script_tag(name:\"affected\", value:\"bind on Mandriva Linux 2010.1,\n Mandriva Linux 2010.1/X86_64,\n Mandriva Enterprise Server 5,\n Mandriva Enterprise Server 5/X86_64\");\n script_tag(name:\"insight\", value:\"A vulnerability was discovered and corrected in bind:\n Cache lookup could return RRSIG data associated with nonexistent\n records, leading to an assertion failure. [ISC RT #26590]\n (CVE-2011-4313).\n\n The updated packages have been upgraded to bind 9.7.4-P1 and 9.8.1-P1\n which is not vulnerable to this issue.\n\n Update:\n Packages provided for Mandriva Enterprise Server 5.2 and Mandriva\n Linux 2010.2 with the MDVSA-2011:176 advisory had a faulty release\n number effectively preventing installation without excessive force\n due to a previous packaging mistake. This advisory provides corrected\n packages to address the problem.\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"MNDK_mes5\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.7.4~0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.7.4~0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-doc\", rpm:\"bind-doc~9.7.4~0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.7.4~0.P1.1.1mdvmes5.2\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"MNDK_2010.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.7.4~0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.7.4~0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-doc\", rpm:\"bind-doc~9.7.4~0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.7.4~0.P1.1.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:55:45", "references": ["2011:1496", "http://lists.centos.org/pipermail/centos-announce/2011-November/018259.html"], "pluginID": "881048", "description": "Check for the Version of bind", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-12-02T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "CentOS Update for bind CESA-2011:1496 centos4 i386", "type": "openvas", "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881048", "id": "OPENVAS:881048", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for bind CESA-2011:1496 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\n Name System (DNS) protocols. BIND includes a DNS server (named); a resolver\n library (routines for applications to use when interfacing with DNS); and\n tools for verifying that the DNS server is operating correctly.\n\n A flaw was discovered in the way BIND handled certain DNS queries, which\n caused it to cache an invalid record. A remote attacker could use this\n flaw to send repeated queries for this invalid record, causing the\n resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\n Users of bind are advised to upgrade to these updated packages, which\n resolve this issue. After installing the update, the BIND daemon (named)\n will be restarted automatically.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"bind on CentOS 4\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-November/018259.html\");\n script_id(881048);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-12-02 13:29:44 +0530 (Fri, 02 Dec 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"CESA\", value: \"2011:1496\");\n script_cve_id(\"CVE-2011-4313\");\n script_name(\"CentOS Update for bind CESA-2011:1496 centos4 i386\");\n\n script_summary(\"Check for the Version of bind\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-chroot\", rpm:\"bind-chroot~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libs\", rpm:\"bind-libs~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.2.4~38.el4\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-27T10:55:22", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-November/msg00015.html", "2011:1458-01"], "pluginID": "870515", "description": "Check for the Version of bind", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-11-18T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "RedHat Update for bind RHSA-2011:1458-01", "type": "openvas", "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2017-07-12T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870515", "id": "OPENVAS:870515", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for bind RHSA-2011:1458-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\n Name System (DNS) protocols. BIND includes a DNS server (named); a resolver\n library (routines for applications to use when interfacing with DNS); and\n tools for verifying that the DNS server is operating correctly.\n\n A flaw was discovered in the way BIND handled certain DNS queries, which\n caused it to cache an invalid record. A remote attacker could use this\n flaw to send repeated queries for this invalid record, causing the\n resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\n Users of bind are advised to upgrade to these updated packages, which\n resolve this issue. After installing the update, the BIND daemon (named)\n will be restarted automatically.\";\n\ntag_affected = \"bind on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-November/msg00015.html\");\n script_id(870515);\n script_version(\"$Revision: 6685 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:44:46 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-11-18 09:45:23 +0530 (Fri, 18 Nov 2011)\");\n script_xref(name: \"RHSA\", value: \"2011:1458-01\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_cve_id(\"CVE-2011-4313\");\n script_name(\"RedHat Update for bind RHSA-2011:1458-01\");\n\n script_summary(\"Check for the Version of bind\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind\", rpm:\"bind~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-chroot\", rpm:\"bind-chroot~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-debuginfo\", rpm:\"bind-debuginfo~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-devel\", rpm:\"bind-devel~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libbind-devel\", rpm:\"bind-libbind-devel~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-libs\", rpm:\"bind-libs~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-sdb\", rpm:\"bind-sdb~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind-utils\", rpm:\"bind-utils~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"caching-nameserver\", rpm:\"caching-nameserver~9.3.6~16.P1.el5_7.1\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:55:32", "references": ["http://lists.centos.org/pipermail/centos-announce/2011-November/018209.html", "2011:1459"], "pluginID": "881044", "description": "Check for the Version of bind97", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-11-21T00:00:00", "title": "CentOS Update for bind97 CESA-2011:1459 centos5 i386", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881044", "id": "OPENVAS:881044", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for bind97 CESA-2011:1459 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\n Name System (DNS) protocols. BIND includes a DNS server (named); a resolver\n library (routines for applications to use when interfacing with DNS); and\n tools for verifying that the DNS server is operating correctly.\n\n A flaw was discovered in the way BIND handled certain DNS queries, which\n caused it to cache an invalid record. A remote attacker could use this\n flaw to send repeated queries for this invalid record, causing the\n resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\n Users of bind97 are advised to upgrade to these updated packages, which\n resolve this issue. After installing the update, the BIND daemon (named)\n will be restarted automatically.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"bind97 on CentOS 5\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-November/018209.html\");\n script_id(881044);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-11-21 09:35:58 +0530 (Mon, 21 Nov 2011)\");\n script_xref(name: \"CESA\", value: \"2011:1459\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_cve_id(\"CVE-2011-4313\");\n script_name(\"CentOS Update for bind97 CESA-2011:1459 centos5 i386\");\n\n script_summary(\"Check for the Version of bind97\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"bind97\", rpm:\"bind97~9.7.0~6.P2.el5_7.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind97-chroot\", rpm:\"bind97-chroot~9.7.0~6.P2.el5_7.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind97-devel\", rpm:\"bind97-devel~9.7.0~6.P2.el5_7.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind97-libs\", rpm:\"bind97-libs~9.7.0~6.P2.el5_7.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"bind97-utils\", rpm:\"bind97-utils~9.7.0~6.P2.el5_7.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-01T23:51:17", "references": ["http://www.nessus.org/u?37c9b419", "http://www.nessus.org/u?52e43a07"], "pluginID": "56879", "description": "Updated bind packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which caused it to cache an invalid record. A remote attacker could use this flaw to send repeated queries for this invalid record, causing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which resolve this issue. After installing the update, the BIND daemon (named) will be restarted automatically.", "edition": 5, "reporter": "Tenable", "published": "2011-11-22T00:00:00", "title": "CentOS 5 : bind (CESA-2011:1458)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-07-02T00:00:00", "cpe": ["p-cpe:/a:centos:centos:bind", "p-cpe:/a:centos:centos:bind-devel", "p-cpe:/a:centos:centos:caching-nameserver", "p-cpe:/a:centos:centos:bind-sdb", "p-cpe:/a:centos:centos:bind-utils", "p-cpe:/a:centos:centos:bind-libs", "p-cpe:/a:centos:centos:bind-chroot", "cpe:/o:centos:centos:5", "p-cpe:/a:centos:centos:bind-libbind-devel"], "id": "CENTOS_RHSA-2011-1458.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56879", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1458 and \n# CentOS Errata and Security Advisory 2011:1458 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56879);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/02 18:48:52\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_xref(name:\"RHSA\", value:\"2011:1458\");\n\n script_name(english:\"CentOS 5 : bind (CESA-2011:1458)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated bind packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System\n(CVSS) base score, which gives a detailed severity rating, is\navailable from the CVE link in the References section.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the\nDomain Name System (DNS) protocols. BIND includes a DNS server\n(named); a resolver library (routines for applications to use when\ninterfacing with DNS); and tools for verifying that the DNS server is\noperating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries,\nwhich caused it to cache an invalid record. A remote attacker could\nuse this flaw to send repeated queries for this invalid record,\ncausing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon\n(named) will be restarted automatically.\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2011-November/018207.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?37c9b419\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2011-November/018208.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?52e43a07\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected bind packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-chroot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-libbind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-sdb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:bind-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:caching-nameserver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-9.3.6-16.P1.el5_7.1\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-chroot-9.3.6-16.P1.el5_7.1\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-devel-9.3.6-16.P1.el5_7.1\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-libbind-devel-9.3.6-16.P1.el5_7.1\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-libs-9.3.6-16.P1.el5_7.1\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-sdb-9.3.6-16.P1.el5_7.1\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"bind-utils-9.3.6-16.P1.el5_7.1\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"caching-nameserver-9.3.6-16.P1.el5_7.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:08:16", "references": ["http://rhn.redhat.com/errata/RHSA-2011-1459.html", "https://www.redhat.com/security/data/cve/CVE-2011-4313.html", "https://www.isc.org/software/bind/advisories/cve-2011-4313"], "pluginID": "56867", "description": "Updated bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which caused it to cache an invalid record. A remote attacker could use this flaw to send repeated queries for this invalid record, causing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind97 are advised to upgrade to these updated packages, which resolve this issue. After installing the update, the BIND daemon (named) will be restarted automatically.", "edition": 6, "reporter": "Tenable", "published": "2011-11-18T00:00:00", "title": "RHEL 5 : bind97 (RHSA-2011:1459)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-07-25T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:bind97-chroot", "cpe:/o:redhat:enterprise_linux:5", "p-cpe:/a:redhat:enterprise_linux:bind97-libs", "p-cpe:/a:redhat:enterprise_linux:bind97", "p-cpe:/a:redhat:enterprise_linux:bind97-utils", "p-cpe:/a:redhat:enterprise_linux:bind97-devel"], "id": "REDHAT-RHSA-2011-1459.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56867", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1459. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56867);\n script_version (\"1.14\");\n script_cvs_date(\"Date: 2018/07/25 18:58:05\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_xref(name:\"RHSA\", value:\"2011:1459\");\n\n script_name(english:\"RHEL 5 : bind97 (RHSA-2011:1459)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated bind97 packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System\n(CVSS) base score, which gives a detailed severity rating, is\navailable from the CVE link in the References section.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the\nDomain Name System (DNS) protocols. BIND includes a DNS server\n(named); a resolver library (routines for applications to use when\ninterfacing with DNS); and tools for verifying that the DNS server is\noperating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries,\nwhich caused it to cache an invalid record. A remote attacker could\nuse this flaw to send repeated queries for this invalid record,\ncausing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind97 are advised to upgrade to these updated packages,\nwhich resolve this issue. After installing the update, the BIND daemon\n(named) will be restarted automatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-4313.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2011-1459.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind97\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind97-chroot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind97-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind97-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bind97-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1459\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"bind97-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"bind97-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"bind97-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"bind97-chroot-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"bind97-chroot-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"bind97-chroot-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", reference:\"bind97-devel-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", reference:\"bind97-libs-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"bind97-utils-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"bind97-utils-9.7.0-6.P2.el5_7.4\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"bind97-utils-9.7.0-6.P2.el5_7.4\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"bind97 / bind97-chroot / bind97-devel / bind97-libs / bind97-utils\");\n }\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:45:25", "references": ["http://support.novell.com/security/cve/CVE-2011-4313.html"], "pluginID": "57162", "description": "This update fixes the issue that specially crafted DNS queries could crash the bind name server. (CVE-2011-4313)\n\nAdditionally, a syntax check warning complaining about every include file that only provides a snippet for the overall configuration has been removed.", "edition": 4, "reporter": "Tenable", "published": "2011-12-13T00:00:00", "title": "SuSE 10 Security Update : bind (ZYPP Patch Number 7851)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2012-07-14T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE_BIND-7851.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=57162", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(57162);\n script_version (\"$Revision: 1.5 $\");\n script_cvs_date(\"$Date: 2012/07/14 02:37:28 $\");\n\n script_cve_id(\"CVE-2011-4313\");\n\n script_name(english:\"SuSE 10 Security Update : bind (ZYPP Patch Number 7851)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes the issue that specially crafted DNS queries could\ncrash the bind name server. (CVE-2011-4313)\n\nAdditionally, a syntax check warning complaining about every include\nfile that only provides a snippet for the overall configuration has\nbeen removed.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-4313.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 7851.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/12/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED10\", sp:4, reference:\"bind-libs-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:4, reference:\"bind-utils-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:4, cpu:\"x86_64\", reference:\"bind-libs-32bit-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"bind-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"bind-chrootenv-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"bind-devel-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"bind-doc-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"bind-libs-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"bind-utils-9.6ESVR5P1-0.9.1\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, cpu:\"x86_64\", reference:\"bind-libs-32bit-9.6ESVR5P1-0.9.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:10:50", "references": ["http://www.nessus.org/u?9b4adfe3"], "pluginID": "78144", "description": "ISC reports that query.c in BIND may allow remote attackers to cause a denial-of-service (assertion failure and named exit). The vulnerability uses unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.\nThe affected versions of BIND are as follows :", "edition": 6, "reporter": "Tenable", "published": "2014-10-10T00:00:00", "title": "F5 Networks BIG-IP : BIND vulnerability (SOL14204)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "F5 Networks Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-07-10T00:00:00", "cpe": ["cpe:/a:f5:big-ip_global_traffic_manager", "cpe:/a:f5:big-ip_link_controller", "cpe:/a:f5:big-ip_application_security_manager", "cpe:/h:f5:big-ip_protocol_security_manager", "cpe:/a:f5:big-ip_local_traffic_manager", "cpe:/a:f5:big-ip_wan_optimization_manager", "cpe:/h:f5:big-ip", "cpe:/a:f5:big-ip_webaccelerator", "cpe:/a:f5:big-ip_access_policy_manager"], "id": "F5_BIGIP_SOL14204.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78144", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from F5 Networks BIG-IP Solution SOL14204.\n#\n# The text description of this plugin is (C) F5 Networks.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78144);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/07/10 14:27:32\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n\n script_name(english:\"F5 Networks BIG-IP : BIND vulnerability (SOL14204)\");\n script_summary(english:\"Checks the BIG-IP version.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote device is missing a vendor-supplied security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"ISC reports that query.c in BIND may allow remote attackers to cause a\ndenial-of-service (assertion failure and named exit). The\nvulnerability uses unknown vectors related to recursive DNS queries,\nerror logging, and the caching of an invalid record by the resolver.\nThe affected versions of BIND are as follows :\"\n );\n # http://support.f5.com/kb/en-us/solutions/public/14000/200/sol14204.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9b4adfe3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade to one of the non-vulnerable versions listed in the F5\nSolution SOL14204.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_access_policy_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_application_security_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_global_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_link_controller\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_local_traffic_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_wan_optimization_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_webaccelerator\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip_protocol_security_manager\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/02/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"F5 Networks Local Security Checks\");\n\n script_dependencies(\"f5_bigip_detect.nbin\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/BIG-IP/hotfix\", \"Host/BIG-IP/modules\", \"Host/BIG-IP/version\");\n\n exit(0);\n}\n\n\ninclude(\"f5_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nversion = get_kb_item(\"Host/BIG-IP/version\");\nif ( ! version ) audit(AUDIT_OS_NOT, \"F5 Networks BIG-IP\");\nif ( isnull(get_kb_item(\"Host/BIG-IP/hotfix\")) ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/hotfix\");\nif ( ! get_kb_item(\"Host/BIG-IP/modules\") ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/modules\");\n\nsol = \"SOL14204\";\nvmatrix = make_array();\n\n# APM\nvmatrix[\"APM\"] = make_array();\nvmatrix[\"APM\"][\"affected\" ] = make_list(\"10.1.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"APM\"][\"unaffected\"] = make_list(\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.4.0\");\n\n# ASM\nvmatrix[\"ASM\"] = make_array();\nvmatrix[\"ASM\"][\"affected\" ] = make_list(\"9.4.0-9.4.8HF4\",\"10.0.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"ASM\"][\"unaffected\"] = make_list(\"9.4.8HF5\",\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.4.0\");\n\n# GTM\nvmatrix[\"GTM\"] = make_array();\nvmatrix[\"GTM\"][\"affected\" ] = make_list(\"9.4.0-9.4.8HF4\",\"10.0.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"GTM\"][\"unaffected\"] = make_list(\"9.4.8HF5\",\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.4.0\");\n\n# LC\nvmatrix[\"LC\"] = make_array();\nvmatrix[\"LC\"][\"affected\" ] = make_list(\"9.4.0-9.4.8HF4\",\"10.0.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"LC\"][\"unaffected\"] = make_list(\"9.4.8HF5\",\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.4.0\");\n\n# LTM\nvmatrix[\"LTM\"] = make_array();\nvmatrix[\"LTM\"][\"affected\" ] = make_list(\"9.4.0-9.4.8HF4\",\"10.0.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"LTM\"][\"unaffected\"] = make_list(\"9.4.8HF5\",\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.4.0\");\n\n# PSM\nvmatrix[\"PSM\"] = make_array();\nvmatrix[\"PSM\"][\"affected\" ] = make_list(\"9.4.5-9.4.8HF4\",\"10.0.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"PSM\"][\"unaffected\"] = make_list(\"9.4.8HF5\",\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.4.0\");\n\n# WAM\nvmatrix[\"WAM\"] = make_array();\nvmatrix[\"WAM\"][\"affected\" ] = make_list(\"9.4.0-9.4.8HF4\",\"10.0.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"WAM\"][\"unaffected\"] = make_list(\"9.4.8HF5\",\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.3.0\");\n\n# WOM\nvmatrix[\"WOM\"] = make_array();\nvmatrix[\"WOM\"][\"affected\" ] = make_list(\"10.0.0-10.2.3\",\"11.0.0-11.1.0\");\nvmatrix[\"WOM\"][\"unaffected\"] = make_list(\"10.2.1HF4\",\"10.2.2HF4\",\"10.2.3HF1\",\"10.2.4\",\"11.1.0HF1\",\"11.2.0-11.3.0\");\n\n\nif (bigip_is_affected(vmatrix:vmatrix, sol:sol))\n{\n if (report_verbosity > 0) security_warning(port:0, extra:bigip_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = bigip_get_tested_modules();\n audit_extra = \"For BIG-IP module(s) \" + tested + \",\";\n if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);\n else audit(AUDIT_HOST_NOT, \"running any of the affected modules\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-19T14:15:51", "references": ["ftp://ftp.isc.orc/isc/bind/9.6-ESV-R5-P1/CHANGES", "ftp://ftp.isc.org/isc/bind/9.4-ESV-R5-P1/CHANGES", "ftp://ftp.isc.org/isc/bind/9.7.4-P1/CHANGES", "ftp://ftp.isc.org/isc/bind/9.8.1-P1/CHANGES", "https://www.isc.org/software/bind/advisories/cve-2011-4313"], "pluginID": "56862", "description": "According to its self-reported version number, the remote installation of BIND is potentially affected by a denial of service vulnerability. An unidentified network event causes BIND9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure. \n\nNote that Nessus has only relied on the version itself and has not attempted to determine whether or not the install is actually affected.", "edition": 9, "reporter": "Tenable", "published": "2011-11-17T00:00:00", "title": "ISC BIND 9 Query.c Logging Resolver Denial of Service", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "DNS", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-09-17T00:00:00", "cpe": ["cpe:/a:isc:bind"], "id": "BIND9_981_P1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56862", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56862);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2018/09/17 21:46:53\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_xref(name:\"CERT\", value:\"606539\");\n\n script_name(english:\"ISC BIND 9 Query.c Logging Resolver Denial of Service\");\n script_summary(english:\"Checks version of BIND.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote name server may be affected by a denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version number, the remote\ninstallation of BIND is potentially affected by a denial of service\nvulnerability. An unidentified network event causes BIND9 resolvers\nto cache an invalid record, subsequent queries for which could crash\nthe resolvers with an assertion failure. \n\nNote that Nessus has only relied on the version itself and has not\nattempted to determine whether or not the install is actually\naffected.\");\n\n script_set_attribute(attribute:\"see_also\", value:\"ftp://ftp.isc.org/isc/bind/9.4-ESV-R5-P1/CHANGES\");\n script_set_attribute(attribute:\"see_also\", value:\"ftp://ftp.isc.orc/isc/bind/9.6-ESV-R5-P1/CHANGES\");\n script_set_attribute(attribute:\"see_also\", value:\"ftp://ftp.isc.org/isc/bind/9.7.4-P1/CHANGES\");\n script_set_attribute(attribute:\"see_also\", value:\"ftp://ftp.isc.org/isc/bind/9.8.1-P1/CHANGES\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.isc.org/software/bind/advisories/cve-2011-4313\");\n\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to BIND 9.4-ESV-R5-P1 / 9.6-ESV-R5-P1 / 9.7.4-P1 / 9.8.1-P1\nor later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2011-4313\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/17\");\n\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:isc:bind\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"DNS\");\n\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"bind_version.nasl\");\n script_require_keys(\"bind/version\", \"Settings/ParanoidReport\");\n\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nif (report_paranoia < 2)\n exit(1, \"This plugin only runs if 'Report paranoia' is set to 'Paranoid'.\");\n\nver = get_kb_item_or_exit(\"bind/version\");\n\n# Check whether BIND is vulnerable, and recommend an upgrade.\nif (ver =~ '^9\\\\.4-ESV([^\\\\-]|$|-R([0-4]([^0-9]|$)|5($|[^0-9\\\\-]|-P0($|[^0-9]))))')\n fix = '9.4-ESV-R5-P1';\nelse if (ver =~ '^9\\\\.6-ESV([^\\\\-]|$|-R([0-4]([^0-9]|$)|5($|[^0-9\\\\-]|-P0($|[^0-9]))))')\n fix = '9.6-ESV-R5-P1';\nelse if (ver =~ '^9\\\\.7\\\\.([0-3]($|[^0-9])|4($|[^\\\\-]|-P0($|[^0-9])))' || ver == '9.7.4b1' || ver == '9.7.4rc1')\n fix = '9.7.4-P1';\nelse if (ver =~ '^9\\\\.8\\\\.(0|1($|b[0-3]([^0-9]|$)|rc1([^0-9]|$)|[^\\\\-]|-P0([^0-9]|$)))')\n fix = '9.8.1-P1';\nelse \n exit(0, \"The BIND version \" + ver + \" server listening on UDP port 53 is not affected.\");\n\nif (report_verbosity > 0)\n{\n report =\n '\\n Installed version : ' + ver +\n '\\n Fixed version : ' + fix +\n '\\n';\n security_warning(port:53, proto:\"udp\", extra:report);\n} \nelse security_warning(port:53, proto:\"udp\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:48:35", "references": [], "pluginID": "56861", "description": "It was discovered that Bind incorrectly handled certain specially crafted packets. A remote attacker could use this flaw to cause Bind to crash, resulting in a denial of service.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2011-11-17T00:00:00", "title": "Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : bind9 vulnerability (USN-1264-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2018-08-01T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:libdns66", "cpe:/o:canonical:ubuntu_linux:11.10", "p-cpe:/a:canonical:ubuntu_linux:libdns36", "cpe:/o:canonical:ubuntu_linux:11.04", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:libdns64", "cpe:/o:canonical:ubuntu_linux:8.04:-:lts", "cpe:/o:canonical:ubuntu_linux:10.10", "p-cpe:/a:canonical:ubuntu_linux:libdns69"], "id": "UBUNTU_USN-1264-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=56861", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1264-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56861);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2018/08/01 17:36:14\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_xref(name:\"USN\", value:\"1264-1\");\n\n script_name(english:\"Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : bind9 vulnerability (USN-1264-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that Bind incorrectly handled certain specially\ncrafted packets. A remote attacker could use this flaw to cause Bind\nto crash, resulting in a denial of service.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libdns36\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libdns64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libdns66\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libdns69\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:8.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2011-2018 Canonical, Inc. / NASL script (C) 2011-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(8\\.04|10\\.04|10\\.10|11\\.04|11\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 8.04 / 10.04 / 10.10 / 11.04 / 11.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"8.04\", pkgname:\"libdns36\", pkgver:\"1:9.4.2.dfsg.P2-2ubuntu0.9\")) flag++;\nif (ubuntu_check(osver:\"10.04\", pkgname:\"libdns64\", pkgver:\"1:9.7.0.dfsg.P1-1ubuntu0.4\")) flag++;\nif (ubuntu_check(osver:\"10.10\", pkgname:\"libdns66\", pkgver:\"1:9.7.1.dfsg.P2-2ubuntu0.5\")) flag++;\nif (ubuntu_check(osver:\"11.04\", pkgname:\"libdns69\", pkgver:\"1:9.7.3.dfsg-1ubuntu2.3\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"libdns69\", pkgver:\"1:9.7.3.dfsg-1ubuntu4.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libdns36 / libdns64 / libdns66 / libdns69\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:52:29", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=730995", "http://lists.opensuse.org/opensuse-updates/2011-11/msg00024.html"], "pluginID": "75795", "description": "specially crafted DNS queries could crash the bind name server (CVE-2011-4313).", "edition": 4, "reporter": "Tenable", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : bind (openSUSE-SU-2011:1272-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2014-06-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:bind-debugsource", "p-cpe:/a:novell:opensuse:bind-chrootenv", "p-cpe:/a:novell:opensuse:bind-utils", "p-cpe:/a:novell:opensuse:bind-debuginfo", "p-cpe:/a:novell:opensuse:bind-libs-debuginfo", "p-cpe:/a:novell:opensuse:bind-libs", "cpe:/o:novell:opensuse:11.4", "p-cpe:/a:novell:opensuse:bind-libs-32bit", "p-cpe:/a:novell:opensuse:bind-libs-debuginfo-32bit", "p-cpe:/a:novell:opensuse:bind-devel", "p-cpe:/a:novell:opensuse:bind-utils-debuginfo", "p-cpe:/a:novell:opensuse:bind"], "id": "SUSE_11_4_BIND-111117.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=75795", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update bind-5441.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(75795);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2014/06/13 22:10:32 $\");\n\n script_cve_id(\"CVE-2011-4313\");\n\n script_name(english:\"openSUSE Security Update : bind (openSUSE-SU-2011:1272-1)\");\n script_summary(english:\"Check for the bind-5441 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"specially crafted DNS queries could crash the bind name server\n(CVE-2011-4313).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://lists.opensuse.org/opensuse-updates/2011-11/msg00024.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=730995\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected bind packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-chrootenv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-libs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-libs-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-libs-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-utils-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.4)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.4\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-chrootenv-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-debuginfo-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-debugsource-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-devel-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-libs-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-libs-debuginfo-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-utils-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"bind-utils-debuginfo-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", cpu:\"x86_64\", reference:\"bind-libs-32bit-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", cpu:\"x86_64\", reference:\"bind-libs-debuginfo-32bit-9.7.4P1-0.2.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"bind / bind-chrootenv / bind-devel / bind-libs / bind-libs-32bit / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:57:59", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=730995", "http://lists.opensuse.org/opensuse-updates/2011-11/msg00024.html"], "pluginID": "75441", "description": "specially crafted DNS queries could crash the bind name server (CVE-2011-4313).", "edition": 4, "reporter": "Tenable", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : bind (openSUSE-SU-2011:1272-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2014-06-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:bind-chrootenv", "p-cpe:/a:novell:opensuse:bind-utils", "p-cpe:/a:novell:opensuse:bind-libs", "p-cpe:/a:novell:opensuse:bind-libs-32bit", "p-cpe:/a:novell:opensuse:bind-devel", "cpe:/o:novell:opensuse:11.3", "p-cpe:/a:novell:opensuse:bind"], "id": "SUSE_11_3_BIND-111117.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=75441", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update bind-5441.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(75441);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2014/06/13 21:39:49 $\");\n\n script_cve_id(\"CVE-2011-4313\");\n\n script_name(english:\"openSUSE Security Update : bind (openSUSE-SU-2011:1272-1)\");\n script_summary(english:\"Check for the bind-5441 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"specially crafted DNS queries could crash the bind name server\n(CVE-2011-4313).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://lists.opensuse.org/opensuse-updates/2011-11/msg00024.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=730995\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected bind packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-chrootenv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-libs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:bind-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.3\", reference:\"bind-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"bind-chrootenv-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"bind-devel-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"bind-libs-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"bind-utils-9.7.4P1-0.2.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", cpu:\"x86_64\", reference:\"bind-libs-32bit-9.7.4P1-0.2.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"bind / bind-chrootenv / bind-devel / bind-libs / bind-libs-32bit / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:58:26", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-November/002486.html"], "pluginID": "68395", "description": "From Red Hat Security Advisory 2011:1496 :\n\nUpdated bind packages that fix one security issue are now available for Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which caused it to cache an invalid record. A remote attacker could use this flaw to send repeated queries for this invalid record, causing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which resolve this issue. After installing the update, the BIND daemon (named) will be restarted automatically.", "edition": 4, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 4 : bind (ELSA-2011-1496)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2015-12-01T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:bind-chroot", "p-cpe:/a:oracle:linux:bind", "p-cpe:/a:oracle:linux:bind-devel", "p-cpe:/a:oracle:linux:bind-utils", "p-cpe:/a:oracle:linux:bind-libs", "cpe:/o:oracle:linux:4"], "id": "ORACLELINUX_ELSA-2011-1496.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=68395", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1496 and \n# Oracle Linux Security Advisory ELSA-2011-1496 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68395);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/12/01 16:58:00 $\");\n\n script_cve_id(\"CVE-2011-4313\");\n script_bugtraq_id(50690);\n script_xref(name:\"RHSA\", value:\"2011:1496\");\n\n script_name(english:\"Oracle Linux 4 : bind (ELSA-2011-1496)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1496 :\n\nUpdated bind packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System\n(CVSS) base score, which gives a detailed severity rating, is\navailable from the CVE link in the References section.\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the\nDomain Name System (DNS) protocols. BIND includes a DNS server\n(named); a resolver library (routines for applications to use when\ninterfacing with DNS); and tools for verifying that the DNS server is\noperating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries,\nwhich caused it to cache an invalid record. A remote attacker could\nuse this flaw to send repeated queries for this invalid record,\ncausing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon\n(named) will be restarted automatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-November/002486.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected bind packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-chroot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:bind-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 4\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL4\", reference:\"bind-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"EL4\", reference:\"bind-chroot-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"EL4\", reference:\"bind-devel-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"EL4\", reference:\"bind-libs-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"EL4\", reference:\"bind-utils-9.2.4-38.el4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"bind / bind-chroot / bind-devel / bind-libs / bind-utils\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:47:10", "references": ["http://www.nessus.org/u?c565cd6b"], "pluginID": "61180", "description": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which caused it to cache an invalid record. A remote attacker could use this flaw to send repeated queries for this invalid record, causing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which resolve this issue. After installing the update, the BIND daemon (named) will be restarted automatically.", "edition": 4, "reporter": "Tenable", "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : bind on SL4.x i386/x86_64", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-4313"], "modified": "2012-08-01T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20111129_BIND_ON_SL4_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=61180", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61180);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2012/08/01 14:38:56 $\");\n\n script_cve_id(\"CVE-2011-4313\");\n\n script_name(english:\"Scientific Linux Security Update : bind on SL4.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The Berkeley Internet Name Domain (BIND) is an implementation of the\nDomain Name System (DNS) protocols. BIND includes a DNS server\n(named); a resolver library (routines for applications to use when\ninterfacing with DNS); and tools for verifying that the DNS server is\noperating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries,\nwhich caused it to cache an invalid record. A remote attacker could\nuse this flaw to send repeated queries for this invalid record,\ncausing the resolvers to exit unexpectedly due to a failed assertion.\n(CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon\n(named) will be restarted automatically.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1111&L=scientific-linux-errata&T=0&P=3120\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c565cd6b\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/11/29\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL4\", reference:\"bind-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"bind-chroot-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"bind-debuginfo-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"bind-devel-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"bind-libs-9.2.4-38.el4\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"bind-utils-9.2.4-38.el4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:08:48", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2011-4313"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "1:9.4.2.dfsg.P2-2ubuntu0.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libdns36", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "1:9.7.0.dfsg.P1-1ubuntu0.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libdns64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "1:9.7.3.dfsg-1ubuntu4.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libdns69", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "1:9.7.3.dfsg-1ubuntu2.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libdns69", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "1:9.7.1.dfsg.P2-2ubuntu0.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libdns66", "operator": "lt"}], "description": "It was discovered that Bind incorrectly handled certain specially crafted packets. A remote attacker could use this flaw to cause Bind to crash, resulting in a denial of service.", "edition": 3, "reporter": "Ubuntu", "published": "2011-11-16T00:00:00", "title": "Bind vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-16T00:00:00", "id": "USN-1264-1", "href": "https://usn.ubuntu.com/1264-1/", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "freebsd": [{"lastseen": "2018-08-31T01:15:12", "references": ["https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "9.6.3.1.ESV.R5.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "bind96", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "7.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "FreeBSD", "operator": "eq"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "9.8.1.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "bind98", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "7.3_9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "FreeBSD", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "9.7.4.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "bind97", "operator": "lt"}], "description": "\nThe Internet Systems Consortium reports:\n\nOrganizations across the Internet reported crashes interrupting\n\t service on BIND 9 nameservers performing recursive queries.\n\t Affected servers crashed after logging an error in query.c with\n\t the following message: \"INSIST(! dns_rdataset_isassociated(sigrdataset))\"\n\t Multiple versions were reported being affected, including all\n\t currently supported release versions of ISC BIND 9.\nBecause it may be possible to trigger this bug even on networks\n\t that do not allow untrusted users to access the recursive name\n\t servers (perhaps via specially crafted e-mail messages, and/or\n\t malicious web sites) it is recommended that ALL operators of\n\t recursive name servers upgrade immediately.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2011-11-16T00:00:00", "title": "BIND -- Remote DOS", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2012-01-29T00:00:00", "id": "90CC1494-10AC-11E1-B3EC-0024E830109B", "href": "https://vuxml.freebsd.org/freebsd/90cc1494-10ac-11e1-b3ec-0024e830109b.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:42:27", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "ia64", "packageFilename": "bind-utils-9.2.4-38.el4.ia64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "i386", "packageFilename": "bind-9.2.4-38.el4.i386.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "i386", "packageFilename": "bind-utils-9.2.4-38.el4.i386.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "ia64", "packageFilename": "bind-9.2.4-38.el4.ia64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "i386", "packageFilename": "bind-libs-9.2.4-38.el4.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "i386", "packageFilename": "bind-libs-9.2.4-38.el4.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "i386", "packageFilename": "bind-libs-9.2.4-38.el4.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "x86_64", "packageFilename": "bind-devel-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "src", "packageFilename": "bind-9.2.4-38.el4.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "src", "packageFilename": "bind-9.2.4-38.el4.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "src", "packageFilename": "bind-9.2.4-38.el4.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "x86_64", "packageFilename": "bind-utils-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "ia64", "packageFilename": "bind-libs-9.2.4-38.el4.ia64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "x86_64", "packageFilename": "bind-chroot-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "x86_64", "packageFilename": "bind-libs-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "ia64", "packageFilename": "bind-chroot-9.2.4-38.el4.ia64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "x86_64", "packageFilename": "bind-9.2.4-38.el4.x86_64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "i386", "packageFilename": "bind-devel-9.2.4-38.el4.i386.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "i386", "packageFilename": "bind-chroot-9.2.4-38.el4.i386.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "arch": "ia64", "packageFilename": "bind-devel-9.2.4-38.el4.ia64.rpm", "packageName": "bind-devel", "operator": "lt"}], "description": "[20:9.2.4-38]\n- fix CVE-2011-4313", "edition": 3, "reporter": "Oracle", "published": "2011-11-29T00:00:00", "title": "bind security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-29T00:00:00", "id": "ELSA-2011-1496", "href": "http://linux.oracle.com/errata/ELSA-2011-1496.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:48:36", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "src", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.src.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "src", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.src.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "src", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.src.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-libs", "operator": "lt"}], "description": "[32:9.7.0-6.P2.4]\n- fix DOS against recursive servers (#754398)", "edition": 3, "reporter": "Oracle", "published": "2011-11-17T00:00:00", "title": "bind97 security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-17T00:00:00", "id": "ELSA-2011-1459", "href": "http://linux.oracle.com/errata/ELSA-2011-1459.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:41:34", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "src", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "src", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "src", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.x86_64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageFilename": "bind-utils-9.7.3-2.el6_1.P3.3.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageFilename": "bind-chroot-9.7.3-2.el6_1.P3.3.x86_64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-sdb-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "caching-nameserver", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-utils-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.x86_64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageFilename": "bind-chroot-9.7.3-2.el6_1.P3.3.i686.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libbind-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "src", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "src", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.ia64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageFilename": "bind-sdb-9.7.3-2.el6_1.P3.3.x86_64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind", "operator": "lt"}], "description": "[32:9.7.3-2.3.P3]\n- fix DOS against recursive servers (#754398)\n[32:9.7.3-2.2.P3]\n- update to 9.7.3-P3 (CVE-2011-2464)\n[32:9.7.3-2.1.P1]\n- update to 9.7.3-P1 (CVE-2011-1910)", "edition": 3, "reporter": "Oracle", "published": "2011-11-17T00:00:00", "title": "bind security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-2464", "CVE-2011-4313", "CVE-2011-1910"], "modified": "2011-11-17T00:00:00", "id": "ELSA-2011-1458", "href": "http://linux.oracle.com/errata/ELSA-2011-1458.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "redhat": [{"lastseen": "2018-06-12T21:09:09", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "bind", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "src", "packageName": "bind", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "bind", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "bind", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "bind-libbind-devel", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc", "packageName": "caching-nameserver", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc64", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc64", "packageName": "bind-libbind-devel", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ppc64", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390", "packageName": "bind-libbind-devel", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "bind", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "bind-libbind-devel", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "s390x", "packageName": "caching-nameserver", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "bind-libbind-devel", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "i386", "packageName": "caching-nameserver", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "bind-libbind-devel", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "x86_64", "packageName": "caching-nameserver", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "bind", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "bind-libbind-devel", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "arch": "ia64", "packageName": "caching-nameserver", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageName": "bind-debuginfo", "packageFilename": "bind-debuginfo-9.7.3-2.el6_1.P3.3.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "src", "packageName": "bind", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageName": "bind-debuginfo", "packageFilename": "bind-debuginfo-9.7.3-2.el6_1.P3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageName": "bind", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.7.3-2.el6_1.P3.3.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.7.3-2.el6_1.P3.3.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageName": "bind", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.7.3-2.el6_1.P3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.7.3-2.el6_1.P3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "i686", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.3-2.el6_1.P3.3.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "x86_64", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.3-2.el6_1.P3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc", "packageName": "bind-debuginfo", "packageFilename": "bind-debuginfo-9.7.3-2.el6_1.P3.3.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc64", "packageName": "bind-debuginfo", "packageFilename": "bind-debuginfo-9.7.3-2.el6_1.P3.3.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc64", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc64", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.7.3-2.el6_1.P3.3.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc64", "packageName": "bind", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc64", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.7.3-2.el6_1.P3.3.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc64", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "ppc64", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.3-2.el6_1.P3.3.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390", "packageName": "bind-debuginfo", "packageFilename": "bind-debuginfo-9.7.3-2.el6_1.P3.3.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390x", "packageName": "bind-debuginfo", "packageFilename": "bind-debuginfo-9.7.3-2.el6_1.P3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390x", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.3-2.el6_1.P3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390x", "packageName": "bind-sdb", "packageFilename": "bind-sdb-9.7.3-2.el6_1.P3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390x", "packageName": "bind", "packageFilename": "bind-9.7.3-2.el6_1.P3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390x", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.7.3-2.el6_1.P3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390x", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.3-2.el6_1.P3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "9.7.3-2.el6_1.P3.3", "arch": "s390x", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.3-2.el6_1.P3.3.s390x.rpm", "operator": "lt"}], "description": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which\ncaused it to cache an invalid record. A remote attacker could use this\nflaw to send repeated queries for this invalid record, causing the\nresolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon (named)\nwill be restarted automatically.\n", "reporter": "RedHat", "published": "2011-11-17T05:00:00", "type": "redhat", "title": "(RHSA-2011:1458) Important: bind security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:12", "id": "RHSA-2011:1458", "href": "https://access.redhat.com/errata/RHSA-2011:1458", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-09-09T07:19:44", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-libs", "packageFilename": "bind-libs-9.2.4-38.el4.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind", "packageFilename": "bind-9.2.4-38.el4.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.2.4-38.el4.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-devel", "packageFilename": "bind-devel-9.2.4-38.el4.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-libs", "packageFilename": "bind-libs-9.2.4-38.el4.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-utils", "packageFilename": "bind-utils-9.2.4-38.el4.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind", "packageFilename": "bind-9.2.4-38.el4.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind", "packageFilename": "bind-9.2.4-38.el4.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.2.4-38.el4.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-devel", "packageFilename": "bind-devel-9.2.4-38.el4.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-utils", "packageFilename": "bind-utils-9.2.4-38.el4.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind", "packageFilename": "bind-9.2.4-38.el4.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.2.4-38.el4.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-devel", "packageFilename": "bind-devel-9.2.4-38.el4.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-libs", "packageFilename": "bind-libs-9.2.4-38.el4.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-utils", "packageFilename": "bind-utils-9.2.4-38.el4.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind", "packageFilename": "bind-9.2.4-38.el4.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.2.4-38.el4.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-devel", "packageFilename": "bind-devel-9.2.4-38.el4.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-libs", "packageFilename": "bind-libs-9.2.4-38.el4.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-utils", "packageFilename": "bind-utils-9.2.4-38.el4.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-libs", "packageFilename": "bind-libs-9.2.4-38.el4.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind", "packageFilename": "bind-9.2.4-38.el4.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.2.4-38.el4.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-devel", "packageFilename": "bind-devel-9.2.4-38.el4.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-libs", "packageFilename": "bind-libs-9.2.4-38.el4.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-utils", "packageFilename": "bind-utils-9.2.4-38.el4.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind", "packageFilename": "bind-9.2.4-38.el4.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-chroot", "packageFilename": "bind-chroot-9.2.4-38.el4.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-devel", "packageFilename": "bind-devel-9.2.4-38.el4.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-libs", "packageFilename": "bind-libs-9.2.4-38.el4.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageName": "bind-utils", "packageFilename": "bind-utils-9.2.4-38.el4.s390x.rpm", "arch": "s390x", "operator": "lt"}], "description": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which\ncaused it to cache an invalid record. A remote attacker could use this\nflaw to send repeated queries for this invalid record, causing the\nresolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon (named)\nwill be restarted automatically.\n", "reporter": "RedHat", "published": "2011-11-29T05:00:00", "type": "redhat", "title": "(RHSA-2011:1496) Important: bind security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:13:05", "id": "RHSA-2011:1496", "href": "https://access.redhat.com/errata/RHSA-2011:1496", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-09-09T07:19:15", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ppc", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.ppc.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ppc", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.ppc.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ppc", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.ppc.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ppc", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.ppc.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ppc", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.ppc.rpm", "packageName": "bind97-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ppc64", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.ppc64.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ppc64", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.ppc64.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "src", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.src.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "s390", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.s390.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "s390", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.s390.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "s390x", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.s390x.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "s390x", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.s390x.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "s390x", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.s390x.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "s390x", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.s390x.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "s390x", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.s390x.rpm", "packageName": "bind97-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.i386.rpm", "packageName": "bind97-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.x86_64.rpm", "packageName": "bind97-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-chroot", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-libs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "ia64", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.ia64.rpm", "packageName": "bind97-utils", "operator": "lt"}], "description": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which\ncaused it to cache an invalid record. A remote attacker could use this\nflaw to send repeated queries for this invalid record, causing the\nresolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\nUsers of bind97 are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon (named)\nwill be restarted automatically.\n", "reporter": "RedHat", "published": "2011-11-17T05:00:00", "type": "redhat", "title": "(RHSA-2011:1459) Important: bind97 security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:18:54", "id": "RHSA-2011:1459", "href": "https://access.redhat.com/errata/RHSA-2011:1459", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "threatpost": [{"lastseen": "2018-10-06T23:04:22", "_object_types": ["robots.models.base.Bulletin", "robots.models.threatpost.ThreatpostBulletin"], "references": ["https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://www.isc.org/software/bind/advisories/cve-2011-4313", "https://www.isc.org/software/bind/advisories/cve-2011-4313"], "description": "[](<https://www.isc.org/software/bind/advisories/cve-2011-4313>)There\u2019s a new vulnerability in the popular BIND name server software that is causing various versions of the application to crash unexpectedly after logging a certain kind of error. The Internet Software Consortium, which maintains BIND, is investigating the issue and trying to determine the severity of the problem.\n\nThe problem reportedly affects all of the currently supported versions of BIND, including BIND 9.7x and 9.8x.It\u2019s unknown right now whether the flaw can be used to run remote code.\n\n\u201cOrganizations across the Internet reported crashes interrupting service on BIND 9 nameservers performing recursive queries. Affected servers crashed after logging an error in query.c with the following message: \u201cINSIST(! dns_rdataset_isassociated(sigrdataset))\u201d Multiple versions were reported being affected, including all currently supported release versions of ISC BIND 9. ISC is actively investigating the root cause and has produced patches which prevent the crash,\u201d the ISC said in an [advisory on the BIND flaw](<https://www.isc.org/software/bind/advisories/cve-2011-4313>).\n\n\u201cAn as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure. ISC is working on determining the ultimate cause by which a record with this particular inconsistency is cached.At this time we are making available a patch which makes named recover gracefully from the inconsistency, preventing the abnormal exit. \u201c\n\nISC has produced patches for each of the vulnerable versions, and is still looking into whether there are any active exploits being used against the vulnerability right now. The patches are available on the [ISC BIND](<https://www.isc.org/software/bind/advisories/cve-2011-4313>) site.\n\n\u201cThe patch has two components. When a client query is handled, the code which processes the response to the client has to ask the cache for the records for the name that is being queried. The first component of the patch prevents the cache from returning the inconsistent data. The second component prevents named from crashing if it detects that it has been given an inconsistent answer of this nature,\u201d the ISC advisory says.\n", "reporter": "Dennis Fisher", "published": "2011-11-16T19:29:10", "type": "threatpost", "title": "New Flaw in BIND Causing Server Crashes", "enchantments": {"score": {"modified": "2018-10-06T23:04:22", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2011-4313"], "_object_type": "robots.models.threatpost.ThreatpostBulletin", "modified": "2013-04-17T16:33:19", "id": "THREATPOST:AF7AF07452980EF7C523521B0CCAAC68", "href": "https://threatpost.com/new-flaw-bind-causing-server-crashes-111611/75904/", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "centos": [{"lastseen": "2017-10-03T18:24:34", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1458.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-libs", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-sdb", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "caching-nameserver", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-libbind-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libbind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-libbind-devel-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libbind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-sdb-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-sdb", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-utils", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-utils-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-utils", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.src.rpm", "packageName": "bind", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-9.3.6-16.P1.el5_7.1.src.rpm", "packageName": "bind", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "caching-nameserver-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "caching-nameserver", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libs", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-libs-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-libs", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.i386.rpm", "packageName": "bind-chroot", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.3.6-16.P1.el5_7.1", "packageFilename": "bind-chroot-9.3.6-16.P1.el5_7.1.x86_64.rpm", "packageName": "bind-chroot", "arch": "x86_64", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2011:1458\n\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which\ncaused it to cache an invalid record. A remote attacker could use this\nflaw to send repeated queries for this invalid record, causing the\nresolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon (named)\nwill be restarted automatically.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018207.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018208.html\n\n**Affected packages:**\nbind\nbind-chroot\nbind-devel\nbind-libbind-devel\nbind-libs\nbind-sdb\nbind-utils\ncaching-nameserver\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-1458.html", "edition": 1, "reporter": "CentOS Project", "published": "2011-11-18T08:24:22", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "bind, caching security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-18T08:24:22", "href": "http://lists.centos.org/pipermail/centos-announce/2011-November/018207.html", "id": "CESA-2011:1458", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-10-03T18:25:02", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1459.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageName": "bind97-utils", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageName": "bind97-libs", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageName": "bind97-libs", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageName": "bind97-libs", "packageFilename": "bind97-libs-9.7.0-6.P2.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageName": "bind97-chroot", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "any", "packageName": "bind97", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "any", "packageName": "bind97", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageName": "bind97-chroot", "packageFilename": "bind97-chroot-9.7.0-6.P2.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageName": "bind97", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageName": "bind97", "packageFilename": "bind97-9.7.0-6.P2.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageName": "bind97-utils", "packageFilename": "bind97-utils-9.7.0-6.P2.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "x86_64", "packageName": "bind97-devel", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageName": "bind97-devel", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "9.7.0-6.P2.el5_7.4", "arch": "i386", "packageName": "bind97-devel", "packageFilename": "bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2011:1459\n\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which\ncaused it to cache an invalid record. A remote attacker could use this\nflaw to send repeated queries for this invalid record, causing the\nresolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\nUsers of bind97 are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon (named)\nwill be restarted automatically.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018209.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018210.html\n\n**Affected packages:**\nbind97\nbind97-chroot\nbind97-devel\nbind97-libs\nbind97-utils\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-1459.html", "edition": 1, "reporter": "CentOS Project", "published": "2011-11-18T08:25:41", "title": "bind97 security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-18T08:25:41", "href": "http://lists.centos.org/pipermail/centos-announce/2011-November/018209.html", "id": "CESA-2011:1459", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-10-03T18:24:25", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1496.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-libs-9.2.4-38.el4.i386.rpm", "packageName": "bind-libs", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-libs-9.2.4-38.el4.i386.rpm", "packageName": "bind-libs", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-chroot-9.2.4-38.el4.i386.rpm", "packageName": "bind-chroot", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-devel-9.2.4-38.el4.i386.rpm", "packageName": "bind-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-9.2.4-38.el4.x86_64.rpm", "packageName": "bind", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-chroot-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-chroot", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-utils-9.2.4-38.el4.i386.rpm", "packageName": "bind-utils", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-utils-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-utils", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-9.2.4-38.el4.i386.rpm", "packageName": "bind", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-devel-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-libs-9.2.4-38.el4.x86_64.rpm", "packageName": "bind-libs", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-9.2.4-38.el4.src.rpm", "packageName": "bind", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "9.2.4-38.el4", "packageFilename": "bind-9.2.4-38.el4.src.rpm", "packageName": "bind", "arch": "any", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2011:1496\n\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly.\n\nA flaw was discovered in the way BIND handled certain DNS queries, which\ncaused it to cache an invalid record. A remote attacker could use this\nflaw to send repeated queries for this invalid record, causing the\nresolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)\n\nUsers of bind are advised to upgrade to these updated packages, which\nresolve this issue. After installing the update, the BIND daemon (named)\nwill be restarted automatically.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018259.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018260.html\n\n**Affected packages:**\nbind\nbind-chroot\nbind-devel\nbind-libs\nbind-utils\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-1496.html", "edition": 1, "reporter": "CentOS Project", "published": "2011-11-29T13:31:45", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "bind security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-29T13:31:45", "href": "http://lists.centos.org/pipermail/centos-announce/2011-November/018259.html", "id": "CESA-2011:1496", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "suse": [{"lastseen": "2016-09-04T12:14:51", "references": ["https://bugzilla.novell.com/730995", "http://download.novell.com/patch/finder/?keywords=f33939df45afd911a3f5c222f6b62f24"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.3.4-1.31.29.2.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind", "packageFilename": "bind-9.3.4-1.31.29.2.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.3.4-1.31.29.2.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.3.4-1.31.29.2.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.3.4-1.31.29.2.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.4-1.31.29.2.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.4-1.31.29.2.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.4-1.31.29.2.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.4-1.31.29.2.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.3.4-1.31.29.2.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-doc", "packageFilename": "bind-doc-9.3.4-1.31.29.2.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind", "packageFilename": "bind-9.3.4-1.31.29.2.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-doc", "packageFilename": "bind-doc-9.3.4-1.31.29.2.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-doc", "packageFilename": "bind-doc-9.3.4-1.31.29.2.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind", "packageFilename": "bind-9.3.4-1.31.29.2.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.4-1.31.29.2.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-utils", "packageFilename": "bind-utils-9.3.4-1.31.29.2.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-libs", "packageFilename": "bind-libs-9.3.4-1.31.29.2.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.4-1.31.29.2.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.2", "packageVersion": "9.3.4-1.31.29.2", "packageName": "bind-devel", "packageFilename": "bind-devel-9.3.4-1.31.29.2.i586.rpm", "arch": "i586", "operator": "lt"}], "description": "This update fixes the issue that specially crafted DNS\n queries could crash the bind name server. (CVE-2011-4313\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313</a>\n > )\n", "edition": 1, "reporter": "Suse", "published": "2011-11-23T05:08:36", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "title": "Security update for bind (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-23T05:08:36", "id": "SUSE-SU-2011:1270-2", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00031.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:49:45", "references": ["https://bugzilla.novell.com/730995", "http://download.novell.com/patch/finder/?keywords=77e4667fd1aa11b5be86207eb4a99b61"], "affectedPackage": [{"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "i586", "packageFilename": "bind-9.3.4-4.14.i586.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "s390", "packageFilename": "bind-utils-9.3.4-4.14.s390.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "s390x", "packageFilename": "bind-9.3.4-4.14.s390x.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "s390x", "packageFilename": "bind-devel-9.3.4-4.14.s390x.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9-201111241609", "arch": "s390x", "packageFilename": "bind-utils-32bit-9-201111241609.s390x.rpm", "packageName": "bind-utils-32bit", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "s390x", "packageFilename": "bind-utils-9.3.4-4.14.s390x.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "s390", "packageFilename": "bind-9.3.4-4.14.s390.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "i586", "packageFilename": "bind-utils-9.3.4-4.14.i586.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "x86_64", "packageFilename": "bind-utils-9.3.4-4.14.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9-201111241547", "arch": "x86_64", "packageFilename": "bind-utils-32bit-9-201111241547.x86_64.rpm", "packageName": "bind-utils-32bit", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "x86_64", "packageFilename": "bind-9.3.4-4.14.x86_64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "i586", "packageFilename": "bind-devel-9.3.4-4.14.i586.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "x86_64", "packageFilename": "bind-devel-9.3.4-4.14.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "SUSE CORE", "OSVersion": "9", "packageVersion": "9.3.4-4.14", "arch": "s390", "packageFilename": "bind-devel-9.3.4-4.14.s390.rpm", "packageName": "bind-devel", "operator": "lt"}], "description": "The following bug has been fixed:\n\n * specially crafted DNS queries could crash the bind\n name server (CVE-2011-4313).\n", "edition": 1, "reporter": "Suse", "published": "2011-11-30T18:08:19", "title": "Security update for bind (important)", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-30T18:08:19", "id": "SUSE-SU-2011:1270-3", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00033.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:43:03", "references": ["https://bugzilla.novell.com/727495", "http://download.novell.com/patch/finder/?keywords=02f16ad2f80852be5821cef61cdfd7f0", "https://bugzilla.novell.com/730995", "http://download.novell.com/patch/finder/?keywords=0c80fc3c343491f7eb7e6bc404ef7f33"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs-x86", "packageFilename": "bind-libs-x86-9.6ESVR5P1-0.2.4.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.2.4.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.2.4.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.2.4.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.2.4.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.2.4.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.2.4.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs-64bit", "packageFilename": "bind-libs-64bit-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.2.4.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs-x86", "packageFilename": "bind-libs-x86-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel-64bit", "packageFilename": "bind-devel-64bit-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.2.4.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel-64bit", "packageFilename": "bind-devel-64bit-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-devel-32bit", "packageFilename": "bind-devel-32bit-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.6ESVR5P1-0.2.4.1.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.2.4.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.6ESVR5P1-0.2.4.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SLE SDK", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server for VMware", "OSVersion": "11.1", "packageVersion": "9.6ESVR5P1-0.2.4.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.2.4.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.6ESVR5P1-0.9.1.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.6ESVR5P1-0.9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10.4", "packageVersion": "9.6ESVR5P1-0.9.1", "packageName": "bind", "packageFilename": "bind-9.6ESVR5P1-0.9.1.ppc.rpm", "arch": "ppc", "operator": "lt"}], "description": "This update for bind fixes the issue that specially crafted\n DNS queries could crash the bind name server\n (CVE-2011-4313\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313</a>\n > ) .\n\n Additionally, a syntax check warning for include files as\n that one is failing on every include file that only\n provides a snippet for the overall configuration has been\n removed.\n", "edition": 1, "reporter": "Suse", "published": "2011-11-22T01:08:39", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "title": "Security update for bind (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-22T01:08:39", "id": "SUSE-SU-2011:1268-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00027.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2016-09-04T12:43:04", "references": ["https://bugzilla.novell.com/730995"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind", "packageFilename": "bind-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind", "packageFilename": "bind-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind", "packageFilename": "bind-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind", "packageFilename": "bind-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-chrootenv", "packageFilename": "bind-chrootenv-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-devel", "packageFilename": "bind-devel-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-libs", "packageFilename": "bind-libs-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.7.4P1-0.2.1.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-libs-32bit", "packageFilename": "bind-libs-32bit-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.4", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.4P1-0.2.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-doc", "packageFilename": "bind-doc-9.7.4P1-0.2.1.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.3", "packageVersion": "9.7.4P1-0.2.1", "packageName": "bind-utils", "packageFilename": "bind-utils-9.7.4P1-0.2.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "specially crafted DNS queries could crash the bind name\n server (CVE-2011-4313).\n\n", "edition": 1, "reporter": "Suse", "published": "2011-11-22T13:08:45", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "title": "bind (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-22T13:08:45", "id": "OPENSUSE-SU-2011:1272-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00029.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2016-09-04T12:43:04", "references": ["http://download.novell.com/patch/finder/?keywords=bf741f83685683458e4f1b5a8c453c92", "https://bugzilla.novell.com/730995"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "i586", "packageFilename": "bind-utils-9.3.4-1.34.1.i586.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "s390x", "packageFilename": "bind-utils-9.3.4-1.34.1.s390x.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "i586", "packageFilename": "bind-libs-9.3.4-1.34.1.i586.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "x86_64", "packageFilename": "bind-libs-9.3.4-1.34.1.x86_64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "i586", "packageFilename": "bind-doc-9.3.4-1.34.1.i586.rpm", "packageName": "bind-doc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "x86_64", "packageFilename": "bind-libs-32bit-9.3.4-1.34.1.x86_64.rpm", "packageName": "bind-libs-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "s390x", "packageFilename": "bind-libs-9.3.4-1.34.1.s390x.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "i586", "packageFilename": "bind-9.3.4-1.34.1.i586.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "x86_64", "packageFilename": "bind-doc-9.3.4-1.34.1.x86_64.rpm", "packageName": "bind-doc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "s390x", "packageFilename": "bind-9.3.4-1.34.1.s390x.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "x86_64", "packageFilename": "bind-chrootenv-9.3.4-1.34.1.x86_64.rpm", "packageName": "bind-chrootenv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "i586", "packageFilename": "bind-chrootenv-9.3.4-1.34.1.i586.rpm", "packageName": "bind-chrootenv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "s390x", "packageFilename": "bind-libs-32bit-9.3.4-1.34.1.s390x.rpm", "packageName": "bind-libs-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "x86_64", "packageFilename": "bind-9.3.4-1.34.1.x86_64.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "s390x", "packageFilename": "bind-chrootenv-9.3.4-1.34.1.s390x.rpm", "packageName": "bind-chrootenv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "s390x", "packageFilename": "bind-devel-9.3.4-1.34.1.s390x.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "s390x", "packageFilename": "bind-doc-9.3.4-1.34.1.s390x.rpm", "packageName": "bind-doc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "x86_64", "packageFilename": "bind-utils-9.3.4-1.34.1.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "i586", "packageFilename": "bind-devel-9.3.4-1.34.1.i586.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "10.3", "packageVersion": "9.3.4-1.34.1", "arch": "x86_64", "packageFilename": "bind-devel-9.3.4-1.34.1.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}], "description": "This update fixes the issue that specially crafted DNS\n queries could crash the bind name server. (CVE-2011-4313\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313</a>\n > )\n", "edition": 1, "reporter": "Suse", "published": "2011-11-22T02:08:16", "title": "Security update for bind (important)", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-22T02:08:16", "id": "SUSE-SU-2011:1270-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00028.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "debian": [{"lastseen": "2018-10-16T22:12:56", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "dnsutils_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "dnsutils", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "libisccfg50_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "libisccfg50", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "bind9utils_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "bind9utils", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "liblwres50_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "liblwres50", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "lwresd_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "lwresd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "libbind9-60_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "libbind9-60", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "bind9-doc_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "bind9-doc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "lwresd_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "lwresd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "libbind-dev_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "libbind-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "bind9-doc_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "bind9-doc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "bind9utils_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "bind9utils", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "host_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "host", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "bind9-host_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "bind9-host", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "libdns69_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "libdns69", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "libisccc60_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "libisccc60", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "libisc50_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "libisc50", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "libdns58_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "libdns58", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "libisc62_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "libisc62", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "libisccfg62_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "libisccfg62", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "libbind9-50_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "libbind9-50", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "bind9_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "bind9", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "libisccc50_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "libisccc50", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "bind9_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "bind9", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "dnsutils_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "dnsutils", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "liblwres60_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "liblwres60", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "1:9.6.ESV.R4+dfsg-0+lenny4", "arch": "all", "packageFilename": "bind9-host_1:9.6.ESV.R4+dfsg-0+lenny4_all.deb", "packageName": "bind9-host", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1:9.7.3.dfsg-1~squeeze4", "arch": "all", "packageFilename": "libbind-dev_1:9.7.3.dfsg-1~squeeze4_all.deb", "packageName": "libbind-dev", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2347-1 security@debian.org\nhttp://www.debian.org/security/ Florian Weimer\nNovember 16, 2011 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : bind9\nVulnerability : improper assert\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2011-4313\n\nIt was discovered that BIND, a DNS server, crashes while processing\ncertain sequences of recursive DNS queries, leading to a denial of\nservice. Authoritative-only server configurations are not affected by\nthis issue.\n\nFor the oldstable distribution (lenny), this problem has been fixed in\nversion 1:9.6.ESV.R4+dfsg-0+lenny4.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1:9.7.3.dfsg-1~squeeze4.\n\nWe recommend that you upgrade your bind9 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2011-11-16T20:44:53", "title": "[SECURITY] [DSA 2347-1] bind9 security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:12:56", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2011-11-16T20:44:53", "id": "DEBIAN:DSA-2347-1:7C7B0", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2011/msg00225.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:42", "references": [], "description": "==========================================================================\r\nUbuntu Security Notice USN-1264-1\r\nNovember 16, 2011\r\n\r\nbind9 vulnerability\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 11.10\r\n- Ubuntu 11.04\r\n- Ubuntu 10.10\r\n- Ubuntu 10.04 LTS\r\n- Ubuntu 8.04 LTS\r\n\r\nSummary:\r\n\r\nBind could be made to crash if it received specially crafted network\r\ntraffic.\r\n\r\nSoftware Description:\r\n- bind9: Internet Domain Name Server\r\n\r\nDetails:\r\n\r\nIt was discovered that Bind incorrectly handled certain specially crafted\r\npackets. A remote attacker could use this flaw to cause Bind to crash,\r\nresulting in a denial of service.\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 11.10:\r\n libdns69 1:9.7.3.dfsg-1ubuntu4.1\r\n\r\nUbuntu 11.04:\r\n libdns69 1:9.7.3.dfsg-1ubuntu2.3\r\n\r\nUbuntu 10.10:\r\n libdns66 1:9.7.1.dfsg.P2-2ubuntu0.5\r\n\r\nUbuntu 10.04 LTS:\r\n libdns64 1:9.7.0.dfsg.P1-1ubuntu0.4\r\n\r\nUbuntu 8.04 LTS:\r\n libdns36 1:9.4.2.dfsg.P2-2ubuntu0.9\r\n\r\nIn general, a standard system update will make all the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-1264-1\r\n CVE-2011-4313\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/bind9/1:9.7.3.dfsg-1ubuntu4.1\r\n https://launchpad.net/ubuntu/+source/bind9/1:9.7.3.dfsg-1ubuntu2.3\r\n https://launchpad.net/ubuntu/+source/bind9/1:9.7.1.dfsg.P2-2ubuntu0.5\r\n https://launchpad.net/ubuntu/+source/bind9/1:9.7.0.dfsg.P1-1ubuntu0.4\r\n https://launchpad.net/ubuntu/+source/bind9/1:9.4.2.dfsg.P2-2ubuntu0.9\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2011-11-20T00:00:00", "title": "[USN-1264-1] Bind vulnerability", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:42", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-4313"], "modified": "2011-11-20T00:00:00", "id": "SECURITYVULNS:DOC:27305", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27305", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:44", "references": ["https://vulners.com/securityvulns/securityvulns:doc:27305"], "description": "Crash on packet parsing.", "edition": 1, "reporter": "BUGTRAQ", "published": "2011-11-20T00:00:00", "title": "bind DNS server DoS", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:44", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "bind", "version": "9.8", "operator": "eq"}, {"name": "bind", "version": "9.7", "operator": "eq"}], "cvelist": ["CVE-2011-4313"], "modified": "2011-11-20T00:00:00", "id": "SECURITYVULNS:VULN:12039", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12039", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:46", "references": [], "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\nAPPLE-SA-2012-09-19-2 OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and\r\nSecurity Update 2012-004\r\n\r\nOS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update\r\n2012-004 are now available and address the following:\r\n\r\nApache\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Multiple vulnerabilities in Apache\r\nDescription: Apache is updated to version 2.2.22 to address several\r\nvulnerabilities, the most serious of which may lead to a denial of\r\nservice. Further information is available via the Apache web site at\r\nhttp://httpd.apache.org/. This issue does not affect OS X Mountain\r\nLion systems.\r\nCVE-ID\r\nCVE-2011-3368\r\nCVE-2011-3607\r\nCVE-2011-4317\r\nCVE-2012-0021\r\nCVE-2012-0031\r\nCVE-2012-0053\r\n\r\nBIND\r\nAvailable for: OS X Lion v10.7 to v10.7.4,\r\nOS X Lion Server v10.7 to v10.7.4\r\nImpact: A remote attacker may be able to cause a denial of service\r\nin systems configured to run BIND as a DNS nameserver\r\nDescription: A reachable assertion issue existed in the handling of\r\nDNS records. This issue was addressed by updating to BIND 9.7.6-P1.\r\nThis issue does not affect OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2011-4313\r\n\r\nBIND\r\nAvailable for: OS X Lion v10.7 to v10.7.4,\r\nOS X Lion Server v10.7 to v10.7.4,\r\nOS X Mountain Lion v10.8 and v10.8.1\r\nImpact: A remote attacker may be able to cause a denial of service,\r\ndata corruption, or obtain sensitive information from process memory\r\nin systems configured to run BIND as a DNS nameserver\r\nDescription: A memory management issue existed in the handling of\r\nDNS records. This issue was addressed by updating to BIND 9.7.6-P1 on\r\nOS X Lion systems, and BIND 9.8.3-P1 on OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-1667\r\n\r\nCoreText\r\nAvailable for: OS X Lion v10.7 to v10.7.4,\r\nOS X Lion Server v10.7 to v10.7.4\r\nImpact: Applications that use CoreText may be vulnerable to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: A bounds checking issue existed in the handling of text\r\nglyphs, which may lead to out of bounds memory reads or writes. This\r\nissue was addressed through improved bounds checking. This issue does\r\nnot affect Mac OS X v10.6 or OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-3716 : Jesse Ruderman of Mozilla Corporation\r\n\r\nData Security\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4,\r\nOS X Mountain Lion v10.8 and v10.8.1\r\nImpact: An attacker with a privileged network position may intercept\r\nuser credentials or other sensitive information\r\nDescription: TrustWave, a trusted root CA, has issued, and\r\nsubsequently revoked, a sub-CA certificate from one of its trusted\r\nanchors. This sub-CA facilitated the interception of communications\r\nsecured by Transport Layer Security (TLS). This update adds the\r\ninvolved sub-CA certificate to OS X's list of untrusted certificates.\r\n\r\nDirectoryService\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8\r\nImpact: If the DirectoryService Proxy is used, a remote attacker may\r\ncause a denial of service or arbitrary code execution\r\nDescription: A buffer overflow existed in the DirectoryService\r\nProxy. This issue was addressed through improved bounds checking.\r\nThis issue does not affect OS X Lion and Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-0650 : aazubel working with HP's Zero Day Initiative\r\n\r\nImageIO\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Viewing a maliciously crafted PNG image may lead to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: Multiple memory corruption issues existed in libpng's\r\nhandling of PNG images. These issues were addressed through improved\r\nvalidation of PNG images. These issues do not affect OS X Mountain\r\nLion systems.\r\nCVE-ID\r\nCVE-2011-3026 : Juri Aedla\r\nCVE-2011-3048\r\n\r\nImageIO\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Viewing a maliciously crafted TIFF image may lead to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: An integer overflow issue existed in libTIFF's handling\r\nof TIFF images. This issue was addressed through improved validation\r\nof TIFF images. This issue does not affect OS X Mountain Lion\r\nsystems.\r\nCVE-ID\r\nCVE-2012-1173 : Alexander Gavrun working with HP's Zero Day\r\nInitiative\r\n\r\nInstaller\r\nAvailable for: OS X Lion v10.7 to v10.7.4,\r\nOS X Lion Server v10.7 to v10.7.4\r\nImpact: Remote admins and persons with physical access to the system\r\nmay obtain account information\r\nDescription: The fix for CVE-2012-0652 in OS X Lion 10.7.4 prevented\r\nuser passwords from being recorded in the system log, but did not\r\nremove the old log entries. This issue was addressed by deleting log\r\nfiles that contained passwords. This issue does not affect Mac OS X\r\n10.6 or OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-0652\r\n\r\nInternational Components for Unicode\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Applications that use ICU may be vulnerable to an unexpected\r\napplication termination or arbitrary code execution\r\nDescription: A stack buffer overflow existed in the handling of ICU\r\nlocale IDs. This issue was addressed through improved bounds\r\nchecking. This issue does not affect OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2011-4599\r\n\r\nKernel\r\nAvailable for: OS X Lion v10.7 to v10.7.4,\r\nOS X Lion Server v10.7 to v10.7.4\r\nImpact: A malicious program could bypass sandbox restrictions\r\nDescription: A logic issue existed in the handling of debug system\r\ncalls. This may allow a malicious program to gain code execution in\r\nother programs with the same user privileges. This issue was\r\naddressed by disabling handling of addresses in PT_STEP and\r\nPT_CONTINUE. This issue does not affect OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-0643 : iOS Jailbreak Dream Team\r\n\r\nLoginWindow\r\nAvailable for: OS X Mountain Lion v10.8 and v10.8.1\r\nImpact: A local user may be able to obtain other user's login\r\npasswords\r\nDescription: A user-installed input method could intercept password\r\nkeystrokes from Login Window or Screen Saver Unlock. This issue was\r\naddressed by preventing user-installed methods from being used when\r\nthe system is handling login information.\r\nCVE-ID\r\nCVE-2012-3718 : An anonymous researcher\r\n\r\nMail\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Viewing an e-mail message may lead to execution of web\r\nplugins\r\nDescription: An input validation issue existed in Mail's handling of\r\nembedded web plugins. This issue was addressed by disabling third-\r\nparty plug-ins in Mail. This issue does not affect OS X Mountain Lion\r\nsystems.\r\nCVE-ID\r\nCVE-2012-3719 : Will Dormann of the CERT/CC\r\n\r\nMobile Accounts\r\nAvailable for: OS X Mountain Lion v10.8 and v10.8.1\r\nImpact: A user with access to the contents of a mobile account may\r\nobtain the account password\r\nDescription: Creating a mobile account saved a hash of the password\r\nin the account, which was used to login when the mobile account was\r\nused as an external account. The password hash could be used to\r\ndetermine the user's password. This issue was addressed by creating\r\nthe password hash only if external accounts are enabled on the system\r\nwhere the mobile account is created.\r\nCVE-ID\r\nCVE-2012-3720 : Harald Wagener of Google, Inc.\r\n\r\nPHP\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4,\r\nOS X Mountain Lion v10.8 and v10.8.1\r\nImpact: Multiple vulnerabilities in PHP\r\nDescription: >PHP is updated to version 5.3.15 to address multiple\r\nvulnerabilities, the most serious of which may lead to arbitrary code\r\nexecution. Further information is available via the PHP web site at\r\nhttp://www.php.net\r\nCVE-ID\r\nCVE-2012-0831\r\nCVE-2012-1172\r\nCVE-2012-1823\r\nCVE-2012-2143\r\nCVE-2012-2311\r\nCVE-2012-2386\r\nCVE-2012-2688\r\n\r\nPHP\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: PHP scripts which use libpng may be vulnerable to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: A memory corruption issue existed in the handling of\r\nPNG files. This issue was addressed by updating PHP's copy of libpng\r\nto version 1.5.10. This issue does not affect OS X Mountain Lion\r\nsystems.\r\nCVE-ID\r\nCVE-2011-3048\r\n\r\nProfile Manager\r\nAvailable for: OS X Lion Server v10.7 to v10.7.4\r\nImpact: An unauthenticated user could enumerate managed devices\r\nDescription: An authentication issue existed in the Device\r\nManagement private interface. This issue was addressed by removing\r\nthe interface. This issue does not affect OS X Mountain Lion\r\nsystems.\r\nCVE-ID\r\nCVE-2012-3721 : Derick Cassidy of XEquals Corporation\r\n\r\nQuickLook\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Viewing a maliciously crafted .pict file may lead to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: A memory corruption issue existed in the handling of\r\n.pict files. This issue was addressed through improved validation of\r\n.pict files. This issue does not affect OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-0671 : Rodrigo Rubira Branco (twitter.com/bsdaemon) from the\r\nQualys Vulnerability & Malware Research Labs (VMRL)\r\n\r\nQuickTime\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Viewing a maliciously crafted movie file may lead to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: An integer overflow existed in QuickTime's handling of\r\nsean atoms. This issue was addressed through improved bounds\r\nchecking. This issue does not affect OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-0670 : Tom Gallagher (Microsoft) and Paul Bates (Microsoft)\r\nworking with HP's Zero Day Initiative\r\n\r\nQuickTime\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Viewing a maliciously crafted movie file may lead to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: An uninitialized memory access existed in the handling\r\nof Sorenson encoded movie files. This issue was addressed through\r\nimproved memory initialization. This issue does not affect OS X\r\nMountain Lion systems.\r\nCVE-ID\r\nCVE-2012-3722 : Will Dormann of the CERT/CC\r\n\r\nQuickTime\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: Viewing a maliciously crafted movie file may lead to an\r\nunexpected application termination or arbitrary code execution\r\nDescription: A buffer overflow existed in the handling of RLE\r\nencoded movie files. This issue was addressed through improved bounds\r\nchecking. This issue does not affect OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-0668 : Luigi Auriemma working with HP's Zero Day Initiative\r\n\r\nRuby\r\nAvailable for: Mac OS X 10.6.8, Mac OS X Server 10.6.8,\r\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\r\nImpact: An attacker may be able to decrypt data protected by SSL\r\nDescription: There are known attacks on the confidentiality of SSL\r\n3.0 and TLS 1.0 when a cipher suite uses a block cipher in CBC mode.\r\nThe Ruby OpenSSL module disabled the 'empty fragment' countermeasure\r\nwhich prevented these attacks. This issue was addressed by enabling\r\nempty fragments. This issue does not affect OS X Mountain Lion\r\nsystems.\r\nCVE-ID\r\nCVE-2011-3389\r\n\r\nUSB\r\nAvailable for: OS X Lion v10.7 to v10.7.4,\r\nOS X Lion Server v10.7 to v10.7.4\r\nImpact: Attaching a USB device may lead to an unexpected system\r\ntermination or arbitrary code execution\r\nDescription: A memory corruption issue existed in the handling of\r\nUSB hub descriptors. This issue was addressed through improved\r\nhandling of the bNbrPorts descriptor field. This issue does not\r\naffect OS X Mountain Lion systems.\r\nCVE-ID\r\nCVE-2012-3723 : Andy Davis of NGS Secure\r\n\r\nNote: OS X Mountain Lion v10.8.2 includes the content of\r\nSafari 6.0.1. For further details see "About the security content\r\nof Safari 6.0.1" at http://http//support.apple.com/kb/HT5502\r\n\r\n\r\nOS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update\r\n2012-004 may be obtained from the Software Update pane in System\r\nPreferences, or Apple's Software Downloads web site:\r\nhttp://www.apple.com/support/downloads/\r\n\r\nThe Software Update utility will present the update that applies\r\nto your system configuration. Only one is needed, either\r\nOS X Mountain Lion v10.8.2, OS X Lion v10.7.5 or Security Update\r\n2012-004.\r\n\r\nFor OS X Mountain Lion v10.8.1\r\nThe download file is named: OSXUpd10.8.2.dmg\r\nIts SHA-1 digest is: d6779e1cc748b78af0207499383b1859ffbebe33\r\n\r\nFor OS X Mountain Lion v10.8\r\nThe download file is named: OSXUpdCombo10.8.2.dmg\r\nIts SHA-1 digest is: b08f10233d362e39f20b69f91d1d73f5e7b68a2c\r\n\r\nFor OS X Lion v10.7.4\r\nThe download file is named: MacOSXUpd10.7.5.dmg\r\nIts SHA-1 digest is: e0a9582cce9896938a7a541bd431862d93893532\r\n\r\nFor OS X Lion v10.7 and v10.7.3\r\nThe download file is named: MacOSXUpdCombo10.7.5.dmg\r\nIts SHA-1 digest is: f7a26b164fa10dae4fe646e57b01c34a619c8d9b\r\n\r\nFor OS X Lion Server v10.7.4\r\nThe download file is named: MacOSXServerUpd10.7.5.dmg\r\nIts SHA-1 digest is: a891b03bfb4eecb745c0c39a32f39960fdb6796a\r\n\r\nFor OS X Lion Server v10.7 and v10.7.3\r\nThe download file is named: MacOSXServerUpdCombo10.7.5.dmg\r\nIts SHA-1 digest is: df6e1748ab0a3c9e05c890be49d514673efd965e\r\n\r\nFor Mac OS X v10.6.8\r\nThe download file is named: SecUpd2012-004.dmg\r\nIts SHA-1 digest is: 5b136e29a871d41012f0c6ea1362d6210c8b4fb7\r\n\r\nFor Mac OS X Server v10.6.8\r\nThe download file is named: SecUpdSrvr2012-004.dmg\r\nIts SHA-1 digest is: 9b24496be15078e58a88537700f2f39c112e3b28\r\n\r\nInformation will also be posted to the Apple Security Updates\r\nweb site: http://support.apple.com/kb/HT1222\r\n\r\nThis message is signed with Apple's Product Security PGP key,\r\nand details are available at:\r\nhttps://www.apple.com/support/security/pgp/\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG/MacGPG2 v2.0.17 (Darwin)\r\nComment: GPGTools - http://gpgtools.org\r\n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\r\nxyBfrQfG/dsif6jGHaot\r\n=8joH\r\n-----END PGP SIGNATURE-----\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2012-09-24T00:00:00", "title": "APPLE-SA-2012-09-19-2 OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:46", "vector": "NONE", "value": 9.3}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2012-3722", "CVE-2011-4317", "CVE-2012-2311", "CVE-2011-3026", "CVE-2012-2386", "CVE-2011-3607", "CVE-2012-0031", "CVE-2012-3721", "CVE-2011-4599", "CVE-2012-1823", "CVE-2012-2143", "CVE-2012-2688", "CVE-2012-3723", "CVE-2011-3389", "CVE-2012-0643", "CVE-2012-0053", "CVE-2012-0021", "CVE-2012-3720", "CVE-2011-3368", "CVE-2012-0670", "CVE-2012-3718", "CVE-2012-1667", "CVE-2012-0650", "CVE-2012-1172", "CVE-2011-3048", "CVE-2012-3716", "CVE-2012-0671", "CVE-2012-0652", "CVE-2012-1173", "CVE-2012-0831", "CVE-2012-0668", "CVE-2011-4313", "CVE-2012-3719"], "modified": "2012-09-24T00:00:00", "id": "SECURITYVULNS:DOC:28577", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:28577", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "amazon": [{"lastseen": "2018-10-02T16:55:10", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1458.html"], "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "i686", "packageFilename": "bind-9.7.3-2.11.amzn1.i686.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "src", "packageFilename": "bind-9.7.3-2.11.amzn1.src.rpm", "packageName": "bind", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "x86_64", "packageFilename": "bind-chroot-9.7.3-2.11.amzn1.x86_64.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "i686", "packageFilename": "bind-chroot-9.7.3-2.11.amzn1.i686.rpm", "packageName": "bind-chroot", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "i686", "packageFilename": "bind-utils-9.7.3-2.11.amzn1.i686.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "x86_64", "packageFilename": "bind-utils-9.7.3-2.11.amzn1.x86_64.rpm", "packageName": "bind-utils", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "i686", "packageFilename": "bind-devel-9.7.3-2.11.amzn1.i686.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "x86_64", "packageFilename": "bind-sdb-9.7.3-2.11.amzn1.x86_64.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "x86_64", "packageFilename": "bind-devel-9.7.3-2.11.amzn1.x86_64.rpm", "packageName": "bind-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "i686", "packageFilename": "bind-sdb-9.7.3-2.11.amzn1.i686.rpm", "packageName": "bind-sdb", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "i686", "packageFilename": "bind-libs-9.7.3-2.11.amzn1.i686.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "i686", "packageFilename": "bind-debuginfo-9.7.3-2.11.amzn1.i686.rpm", "packageName": "bind-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "x86_64", "packageFilename": "bind-debuginfo-9.7.3-2.11.amzn1.x86_64.rpm", "packageName": "bind-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "x86_64", "packageFilename": "bind-libs-9.7.3-2.11.amzn1.x86_64.rpm", "packageName": "bind-libs", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "9.7.3-2.11.amzn1", "arch": "x86_64", "packageFilename": "bind-9.7.3-2.11.amzn1.x86_64.rpm", "packageName": "bind", "operator": "lt"}], "description": "**Issue Overview:**\n\nA flaw was discovered in the way BIND handled certain DNS queries, which caused it to cache an invalid record. A remote attacker could use this flaw to send repeated queries for this invalid record, causing the resolvers to exit unexpectedly due to a failed assertion.\n\n \n**Affected Packages:** \n\n\nbind\n\n \n**Issue Correction:** \nRun _yum update bind_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n bind-9.7.3-2.11.amzn1.i686 \n bind-debuginfo-9.7.3-2.11.amzn1.i686 \n bind-utils-9.7.3-2.11.amzn1.i686 \n bind-sdb-9.7.3-2.11.amzn1.i686 \n bind-chroot-9.7.3-2.11.amzn1.i686 \n bind-libs-9.7.3-2.11.amzn1.i686 \n bind-devel-9.7.3-2.11.amzn1.i686 \n \n src: \n bind-9.7.3-2.11.amzn1.src \n \n x86_64: \n bind-libs-9.7.3-2.11.amzn1.x86_64 \n bind-devel-9.7.3-2.11.amzn1.x86_64 \n bind-9.7.3-2.11.amzn1.x86_64 \n bind-debuginfo-9.7.3-2.11.amzn1.x86_64 \n bind-chroot-9.7.3-2.11.amzn1.x86_64 \n bind-sdb-9.7.3-2.11.amzn1.x86_64 \n bind-utils-9.7.3-2.11.amzn1.x86_64 \n \n \n", "edition": 1, "reporter": "Amazon", "published": "2014-09-14T15:03:00", "title": "Important: bind", "type": "amazon", "enchantments": {"score": {"modified": "2018-10-02T16:55:10", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-4313"], "modified": "2014-09-14T15:03:00", "id": "ALAS-2011-024", "href": "https://alas.aws.amazon.com/ALAS-2011-24.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:55", "references": ["http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3762", "https://bugs.gentoo.org/show_bug.cgi?id=374623", "https://bugs.gentoo.org/show_bug.cgi?id=374201", "https://bugs.gentoo.org/show_bug.cgi?id=390753", "https://bugs.gentoo.org/show_bug.cgi?id=368863", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2464", "https://bugs.gentoo.org/show_bug.cgi?id=356223", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4313", "https://bugs.gentoo.org/show_bug.cgi?id=347621", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3615", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1910", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2465", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0414", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3614", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3613"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "9.7.4_p1", "packageFilename": "UNKNOWN", "packageName": "net-dns/bind", "arch": "all", "operator": "lt"}], "description": "### Background\n\nBIND is the Berkeley Internet Name Domain Server.\n\n### Description\n\nMultiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nThe vulnerabilities allow remote attackers to cause a Denial of Service (daemon crash) via a DNS query, to bypass intended access restrictions, to incorrectly cache a ncache entry and a rrsig for the same type and to incorrectly mark zone data as insecure. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll bind users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-dns/bind-9.7.4_p1\"\n \n\nNOTE: This is a legacy GLSA. Updates for all affected architectures are available since December 22, 2011. It is likely that your system is already no longer affected by this issue.", "edition": 1, "reporter": "Gentoo Foundation", "published": "2012-06-02T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "gentoo", "title": "BIND: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2011-0414", "CVE-2011-2464", "CVE-2010-3615", "CVE-2011-2465", "CVE-2010-3614", "CVE-2010-3613", "CVE-2011-4313", "CVE-2010-3762", "CVE-2011-1910"], "modified": "2012-06-02T00:00:00", "id": "GLSA-201206-01", "href": "https://security.gentoo.org/glsa/201206-01", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}]}
