Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2022-2023 Canonical, Inc. / NASL script (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-5747-1.NASL
HistoryNov 29, 2022 - 12:00 a.m.

Ubuntu 16.04 ESM : Bind vulnerabilities (USN-5747-1)

2022-11-2900:00:00
Ubuntu Security Notice (C) 2022-2023 Canonical, Inc. / NASL script (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5747-1 advisory.

  • ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x before 9.11.0b2, when lwresd or the named lwres option is enabled, allows remote attackers to cause a denial of service (daemon crash) via a long request that uses the lightweight resolver protocol. (CVE-2016-2775)

  • ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and possibly allows IXFR servers to cause a denial of service (IXFR client crash) via a large IXFR response and allows remote authenticated users to cause a denial of service (primary DNS server crash) via a large UPDATE message. (CVE-2016-6170)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-5747-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(168280);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/07/10");

  script_cve_id("CVE-2016-2775", "CVE-2016-6170");
  script_xref(name:"USN", value:"5747-1");
  script_xref(name:"IAVA", value:"2017-A-0004");
  script_xref(name:"IAVA", value:"2016-A-0194-S");

  script_name(english:"Ubuntu 16.04 ESM : Bind vulnerabilities (USN-5747-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in
the USN-5747-1 advisory.

  - ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x before 9.11.0b2, when lwresd or the
    named lwres option is enabled, allows remote attackers to cause a denial of service (daemon crash) via a
    long request that uses the lightweight resolver protocol. (CVE-2016-2775)

  - ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS
    servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and possibly
    allows IXFR servers to cause a denial of service (IXFR client crash) via a large IXFR response and allows
    remote authenticated users to cause a denial of service (primary DNS server crash) via a large UPDATE
    message. (CVE-2016-6170)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-5747-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-2775");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2016-6170");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/07/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/11/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/11/29");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:esm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:bind9");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:bind9-host");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:bind9utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsutils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:host");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind-export-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind9-140");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind9-90");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdns-export162");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdns100");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdns162");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libirs-export141");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libirs141");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisc-export160");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisc160");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisc95");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc-export140");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc-export140-udeb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc140");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc90");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccfg-export140");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccfg140");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccfg90");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:liblwres141");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:liblwres90");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:lwresd");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2022-2023 Canonical, Inc. / NASL script (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '16.04', 'pkgname': 'bind9', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'bind9-host', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'bind9utils', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'dnsutils', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'host', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libbind-dev', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libbind-export-dev', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libbind9-140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libdns-export162', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libdns162', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libirs-export141', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libirs141', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libisc-export160', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libisc160', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libisccc-export140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libisccc-export140-udeb', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libisccc140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libisccfg-export140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'libisccfg140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'liblwres141', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'},
    {'osver': '16.04', 'pkgname': 'lwresd', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.19+esm5'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bind9 / bind9-host / bind9utils / dnsutils / host / libbind-dev / etc');
}
VendorProductVersionCPE
canonicalubuntu_linux16.04cpe:/o:canonical:ubuntu_linux:16.04:-:esm
canonicalubuntu_linuxbind9p-cpe:/a:canonical:ubuntu_linux:bind9
canonicalubuntu_linuxbind9-hostp-cpe:/a:canonical:ubuntu_linux:bind9-host
canonicalubuntu_linuxbind9utilsp-cpe:/a:canonical:ubuntu_linux:bind9utils
canonicalubuntu_linuxdnsutilsp-cpe:/a:canonical:ubuntu_linux:dnsutils
canonicalubuntu_linuxhostp-cpe:/a:canonical:ubuntu_linux:host
canonicalubuntu_linuxlibbind-devp-cpe:/a:canonical:ubuntu_linux:libbind-dev
canonicalubuntu_linuxlibbind-export-devp-cpe:/a:canonical:ubuntu_linux:libbind-export-dev
canonicalubuntu_linuxlibbind9-140p-cpe:/a:canonical:ubuntu_linux:libbind9-140
canonicalubuntu_linuxlibbind9-90p-cpe:/a:canonical:ubuntu_linux:libbind9-90
Rows per page:
1-10 of 281

Related

ubuntu 1
openvas 29
osv 3
ibm 1
suse 3
nessus 35
redhatcve 2
f5 4
cve 2
debiancve 2
ubuntucve 2
prion 2
veracode 2
fedora 8
redhat 1
archlinux 1
slackware 1
amazon 1
checkpoint_advisories 1
freebsd 2
debian 2
mageia 1
aix 1
threatpost 1
gentoo 1
ubuntu
ubuntu
Bind vulnerabilities
2022-11-29 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5747-1)
2022-11-30 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1000-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:0998-1)
2021-04-19 00:00:00
osv
osv
bind9 vulnerabilities
2022-11-29 12:09:33
bind9 - security update
2016-10-05 00:00:00
bind9 - security update
2016-09-27 00:00:00
ibm
ibm
Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2016-2775, CVE-2016-2776, CVE-2016-8864 and CVE-2016-6170)
2019-12-18 14:26:38
suse
suse
Security update for bind (important)
2017-04-13 06:10:58
Security update for bind (important)
2017-04-13 06:09:37
Security update for bind (important)
2017-04-19 21:09:13
nessus
nessus
SUSE SLES11 Security Update : bind (SUSE-SU-2017:1000-1)
2017-04-13 00:00:00
openSUSE Security Update : bind (openSUSE-2017-491)
2017-04-20 00:00:00
SUSE SLES12 Security Update : bind (SUSE-SU-2017:0999-1)
2017-04-13 00:00:00
redhatcve
redhatcve
CVE-2016-6170
2016-07-07 13:18:28
CVE-2016-2775
2016-07-19 08:48:43
f5
f5
K32049025 : BIND vulnerability CVE-2016-6170
2016-09-01 00:00:00
SOL32049025 - BIND vulnerability CVE-2016-6170
2016-09-01 00:00:00
SOL92991044 - lwresd and bind vulnerability CVE-2016-2775
2016-07-28 00:00:00
cve
cve
CVE-2016-6170
2016-07-06 14:59:00
CVE-2016-2775
2016-07-19 22:59:00
debiancve
debiancve
CVE-2016-6170
2016-07-06 14:59:00
CVE-2016-2775
2016-07-19 22:59:00
ubuntucve
ubuntucve
CVE-2016-6170
2016-07-06 00:00:00
CVE-2016-2775
2016-07-19 00:00:00
prion
prion
Code injection
2016-07-06 14:59:00
Design/Logic Flaw
2016-07-19 22:59:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:15:05
Denial Of Service (DoS)
2018-11-01 08:51:00
fedora
fedora
[SECURITY] Fedora 23 Update: bind99-9.9.9-1.P2.fc23
2016-08-09 00:01:33
[SECURITY] Fedora 24 Update: bind99-9.9.9-1.P2.fc24
2016-07-30 18:26:19
[SECURITY] Fedora 23 Update: bind-9.10.4-1.P2.fc23
2016-08-18 00:54:45
redhat
redhat
(RHSA-2017:2533) Moderate: bind security update
2017-08-24 04:19:14
archlinux
archlinux
bind: denial of service
2016-07-20 00:00:00
slackware
slackware
[slackware-security] bind
2016-07-22 20:53:45
amazon
amazon
Medium: bind
2016-09-15 19:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND lwresd Query Name Denial of Service (CVE-2016-2775)
2016-09-15 00:00:00
freebsd
freebsd
bind -- denial of service vulnerability
2016-07-18 00:00:00
BIND,Knot,NSD,PowerDNS -- denial over service via oversized zone transfers
2016-07-06 00:00:00
debian
debian
[SECURITY] [DLA 645-1] bind9 security update
2016-10-05 17:45:24
[SECURITY] [DSA 3680-1] bind9 security update
2016-09-27 18:52:39
mageia
mageia
Updated bind packages fix security vulnerability
2016-10-04 15:20:54
aix
aix
Vulnerabilities in BIND impact AIX,Vulnerabilities in BIND impact VIOS
2016-11-18 08:19:36
threatpost
threatpost
ISC Patches Critical Error Condition in BIND
2016-09-28 16:29:53
gentoo
gentoo
BIND: Multiple vulnerabilities
2016-10-11 00:00:00
JSON
Related for UBUNTU_USN-5747-1.NASL
ubuntu1openvas29osv3ibm1suse3nessus35redhatcve2f54cve2debiancve2ubuntucve2prion2veracode2fedora8redhat1archlinux1slackware1amazon1checkpoint_advisories1freebsd2debian2mageia1aix1threatpost1gentoo1