Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2017-2533.NASL
HistoryAug 24, 2017 - 12:00 a.m.

RHEL 7 : bind (RHSA-2017:2533)

2017-08-2400:00:00
This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
JSON

An update for bind is now available for Red Hat Enterprise Linux 7.2 Extended Update Support and Red Hat Enterprise Linux 7.3 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

Security Fix(es) :

  • It was found that the lightweight resolver protocol implementation in BIND could enter an infinite recursion and crash when asked to resolve a query name which, when combined with a search list entry, exceeds the maximum allowable length. A remote attacker could use this flaw to crash lwresd or named when using the ‘lwres’ statement in named.conf. (CVE-2016-2775)
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2017:2533. The text 
# itself is copyright (C) Red Hat, Inc.
#

include("compat.inc");

if (description)
{
  script_id(102726);
  script_version("3.10");
  script_cvs_date("Date: 2019/10/24 15:35:43");

  script_cve_id("CVE-2016-2775");
  script_xref(name:"RHSA", value:"2017:2533");

  script_name(english:"RHEL 7 : bind (RHSA-2017:2533)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An update for bind is now available for Red Hat Enterprise Linux 7.2
Extended Update Support and Red Hat Enterprise Linux 7.3 Extended
Update Support.

Red Hat Product Security has rated this update as having a security
impact of Moderate. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the
Domain Name System (DNS) protocols. BIND includes a DNS server
(named); a resolver library (routines for applications to use when
interfacing with DNS); and tools for verifying that the DNS server is
operating correctly.

Security Fix(es) :

* It was found that the lightweight resolver protocol implementation
in BIND could enter an infinite recursion and crash when asked to
resolve a query name which, when combined with a search list entry,
exceeds the maximum allowable length. A remote attacker could use this
flaw to crash lwresd or named when using the 'lwres' statement in
named.conf. (CVE-2016-2775)"
  );
  # https://kb.isc.org/article/AA-01393/
  script_set_attribute(
    attribute:"see_also",
    value:"https://kb.isc.org/docs/aa-01393"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2017:2533"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2016-2775"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-chroot");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-libs-lite");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-license");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-lite-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-pkcs11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-pkcs11-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-pkcs11-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-pkcs11-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-sdb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-sdb-chroot");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.3");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/07/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/08/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/08/24");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^(7\.2|7\.3)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 7.2 / 7.3", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2017:2533";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{  sp = get_kb_item("Host/RedHat/minor_release");
  if (isnull(sp)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");

  flag = 0;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"s390x", reference:"bind-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"s390x", reference:"bind-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"x86_64", reference:"bind-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"x86_64", reference:"bind-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"s390x", reference:"bind-chroot-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"s390x", reference:"bind-chroot-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"x86_64", reference:"bind-chroot-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"x86_64", reference:"bind-chroot-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-debuginfo-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-debuginfo-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-devel-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-devel-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-libs-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-libs-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-libs-lite-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-libs-lite-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-license-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-license-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-lite-devel-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-lite-devel-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"s390x", reference:"bind-pkcs11-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"s390x", reference:"bind-pkcs11-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"x86_64", reference:"bind-pkcs11-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"x86_64", reference:"bind-pkcs11-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-pkcs11-devel-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-pkcs11-devel-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", reference:"bind-pkcs11-libs-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", reference:"bind-pkcs11-libs-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"s390x", reference:"bind-pkcs11-utils-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"s390x", reference:"bind-pkcs11-utils-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"x86_64", reference:"bind-pkcs11-utils-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"x86_64", reference:"bind-pkcs11-utils-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"s390x", reference:"bind-sdb-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"s390x", reference:"bind-sdb-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"x86_64", reference:"bind-sdb-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"x86_64", reference:"bind-sdb-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"s390x", reference:"bind-sdb-chroot-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"s390x", reference:"bind-sdb-chroot-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"x86_64", reference:"bind-sdb-chroot-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"x86_64", reference:"bind-sdb-chroot-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"s390x", reference:"bind-utils-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"s390x", reference:"bind-utils-9.9.4-29.el7_2.7")) flag++;
  if (rpm_check(release:"RHEL7", sp:"3", cpu:"x86_64", reference:"bind-utils-9.9.4-50.el7_3.2")) flag++;
  if (rpm_check(release:"RHEL7", sp:"2", cpu:"x86_64", reference:"bind-utils-9.9.4-29.el7_2.7")) flag++;

  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chroot / bind-debuginfo / bind-devel / bind-libs / etc");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxbindp-cpe:/a:redhat:enterprise_linux:bind
redhatenterprise_linuxbind-chrootp-cpe:/a:redhat:enterprise_linux:bind-chroot
redhatenterprise_linuxbind-debuginfop-cpe:/a:redhat:enterprise_linux:bind-debuginfo
redhatenterprise_linuxbind-develp-cpe:/a:redhat:enterprise_linux:bind-devel
redhatenterprise_linuxbind-libsp-cpe:/a:redhat:enterprise_linux:bind-libs
redhatenterprise_linuxbind-libs-litep-cpe:/a:redhat:enterprise_linux:bind-libs-lite
redhatenterprise_linuxbind-licensep-cpe:/a:redhat:enterprise_linux:bind-license
redhatenterprise_linuxbind-lite-develp-cpe:/a:redhat:enterprise_linux:bind-lite-devel
redhatenterprise_linuxbind-pkcs11p-cpe:/a:redhat:enterprise_linux:bind-pkcs11
redhatenterprise_linuxbind-pkcs11-develp-cpe:/a:redhat:enterprise_linux:bind-pkcs11-devel
Rows per page:
1-10 of 171

Related

fedora 5
nessus 25
openvas 20
veracode 2
cvelist 1
cve 1
debiancve 1
redhat 1
f5 2
prion 1
archlinux 1
amazon 1
slackware 1
checkpoint_advisories 1
redhatcve 1
ubuntucve 1
freebsd 1
ubuntu 1
osv 3
debian 2
aix 1
mageia 1
threatpost 1
ibm 1
suse 3
gentoo 1
fedora
fedora
[SECURITY] Fedora 24 Update: bind99-9.9.9-1.P2.fc24
2016-07-30 18:26:19
[SECURITY] Fedora 23 Update: bind-9.10.4-1.P2.fc23
2016-08-18 00:54:45
[SECURITY] Fedora 23 Update: bind99-9.9.9-1.P2.fc23
2016-08-09 00:01:33
nessus
nessus
Amazon Linux AMI : bind (ALAS-2016-745)
2016-09-16 00:00:00
Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : bind (SSA:2016-204-01)
2016-07-25 00:00:00
Fedora 24 : 32:bind (2016-007efacd1c)
2016-08-01 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2016-204-01)
2022-04-21 00:00:00
Amazon Linux: Security Advisory (ALAS-2016-745)
2016-10-26 00:00:00
Fedora Update for dhcp FEDORA-2016-2941b3264e
2016-08-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:15:05
Denial Of Service (DoS)
2018-11-01 08:51:00
cvelist
cvelist
CVE-2016-2775
2016-07-19 22:00:00
cve
cve
CVE-2016-2775
2016-07-19 22:59:00
debiancve
debiancve
CVE-2016-2775
2016-07-19 22:59:00
redhat
redhat
(RHSA-2017:2533) Moderate: bind security update
2017-08-24 04:19:14
f5
f5
SOL92991044 - lwresd and bind vulnerability CVE-2016-2775
2016-07-28 00:00:00
K92991044 : lwresd and bind vulnerability CVE-2016-2775
2016-07-28 00:00:00
prion
prion
Design/Logic Flaw
2016-07-19 22:59:00
archlinux
archlinux
bind: denial of service
2016-07-20 00:00:00
amazon
amazon
Medium: bind
2016-09-15 19:00:00
slackware
slackware
[slackware-security] bind
2016-07-22 20:53:45
checkpoint_advisories
checkpoint_advisories
ISC BIND lwresd Query Name Denial of Service (CVE-2016-2775)
2016-09-15 00:00:00
redhatcve
redhatcve
CVE-2016-2775
2016-07-19 08:48:43
ubuntucve
ubuntucve
CVE-2016-2775
2016-07-19 00:00:00
freebsd
freebsd
bind -- denial of service vulnerability
2016-07-18 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2022-11-29 00:00:00
osv
osv
bind9 - security update
2016-10-05 00:00:00
bind9 - security update
2016-09-27 00:00:00
bind9 vulnerabilities
2022-11-29 12:09:33
debian
debian
[SECURITY] [DLA 645-1] bind9 security update
2016-10-05 17:45:24
[SECURITY] [DSA 3680-1] bind9 security update
2016-09-27 18:52:39
aix
aix
Vulnerabilities in BIND impact AIX,Vulnerabilities in BIND impact VIOS
2016-11-18 08:19:36
mageia
mageia
Updated bind packages fix security vulnerability
2016-10-04 15:20:54
threatpost
threatpost
ISC Patches Critical Error Condition in BIND
2016-09-28 16:29:53
ibm
ibm
Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2016-2775, CVE-2016-2776, CVE-2016-8864 and CVE-2016-6170)
2019-12-18 14:26:38
suse
suse
Security update for bind (important)
2017-04-13 06:10:58
Security update for bind (important)
2017-04-13 06:09:37
Security update for bind (important)
2017-04-19 21:09:13
gentoo
gentoo
BIND: Multiple vulnerabilities
2016-10-11 00:00:00
JSON
Related for REDHAT-RHSA-2017-2533.NASL
fedora5nessus25openvas20veracode2cvelist1cve1debiancve1redhat1f52prion1archlinux1amazon1slackware1checkpoint_advisories1redhatcve1ubuntucve1freebsd1ubuntu1osv3debian2aix1mageia1threatpost1ibm1suse3gentoo1