Mandriva Linux Security Advisory : bind (MDVSA-2011:176-2)

🗓️ 17 Nov 2011 00:00:00Reported by TenableType

A vulnerability in bind for Mandriva Linux is patched with upgraded packages to fix cache lookup leading to assertion failure

Reporter	Title	Published	Views	Family All 152
ALT Linux	Security fix for the ALT Linux 9 package bind version 9.3.6-alt7	16 Dec 201100:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 7 package bind version 9.3.6-alt7	16 Dec 201100:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package bind version 9.3.6-alt7	16 Dec 201100:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 6 package bind version 9.3.6-alt7	16 Dec 201100:00	–	altlinux
Tenable Nessus	ISC BIND 9 'Query.c' Logging Resolver DoS	17 Nov 201100:00	–	nessus
Tenable Nessus	Mac OS X 10.7 < 10.7.5 Multiple Vulnerabilities	21 Sep 201200:00	–	nessus
Tenable Nessus	Mac OS X 10.8 < 10.8.2 Multiple Vulnerabilities	21 Sep 201200:00	–	nessus
Tenable Nessus	AIX 5.3 TL 12 : bind9 (IV09491)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 7 : bind9 (IV09978)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 7.1 TL 1 : bind9 (IV10049)	24 Jan 201300:00	–	nessus

Source	Link
isc	www.isc.org/software/bind/advisories/CVE-2011-4313
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandriva Linux Security Advisory MDVSA-2011:176. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(56858);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2011-4313");
  script_bugtraq_id(50690);
  script_xref(name:"MDVSA", value:"2011:176-2");

  script_name(english:"Mandriva Linux Security Advisory : bind (MDVSA-2011:176-2)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandriva Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A vulnerability was discovered and corrected in bind :

Cache lookup could return RRSIG data associated with nonexistent
records, leading to an assertion failure. [ISC RT #26590]
(CVE-2011-4313).

The updated packages have been upgraded to bind 9.7.4-P1 and 9.8.1-P1
which is not vulnerable to this issue.

Update :

Packages provided for Mandriva Enterprise Server 5.2 and Mandriva
Linux 2010.2 with the MDVSA-2011:176 and MDVSA-2011:176-1 advisory had
wrong release numbers effectively preventing installation without
excessive force due previous packaging mistakes. This advisory
provides corrected packages to address the problem."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.isc.org/software/bind/advisories/CVE-2011-4313"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:bind");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:bind-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:bind-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:bind-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2010.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/11/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/11/17");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2010.1", reference:"bind-9.7.4-0.1.P1.1.1mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", reference:"bind-devel-9.7.4-0.1.P1.1.1mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", reference:"bind-doc-9.7.4-0.1.P1.1.1mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", reference:"bind-utils-9.7.4-0.1.P1.1.1mdv2010.2", yank:"mdv")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

06 Jan 2021 00:00Current

6.9Medium risk

Vulners AI Score6.9

CVSS 25

EPSS0.16747