FreeBSD Security Advisory (FreeBSD-SA-09:04.bind.asc)

FreeBSD-SA-09:04.bind.asc advisory for BIND 9 implementation of DNS protocols and OpenSSL Projec

Reporter	Title	Published	Views	Family All 120
Tenable Nessus	Mac OS X 10.5 < 10.5.7 Multiple Vulnerabilities	18 Aug 200400:00	–	nessus
Tenable Nessus	AIX 5.3 TL 12 : bind9 (IV09491)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 7 : bind9 (IV09978)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 7.1 TL 1 : bind9 (IV10049)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 5 : bind9 (IV11742)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 6 : bind9 (IV11743)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 7.1 TL 0 : bind9 (IV11744)	24 Jan 201300:00	–	nessus
Tenable Nessus	ISC BIND 9 EVP_VerifyFinal() / DSA_do_verify() SSL/TLS Signature Validation Weakness	12 May 200900:00	–	nessus
Tenable Nessus	CentOS 3 / 4 / 5 : bind (CESA-2009:0020)	5 Feb 200900:00	–	nessus
Tenable Nessus	Debian DSA-1703-1 : bind9 - interpretation conflict	14 Jan 200900:00	–	nessus

Source	Link
secure1	www.secure1.securityspace.com/smysecure/catid.html

# SPDX-FileCopyrightText: 2009 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.63243");
  script_version("2023-07-26T05:05:09+0000");
  script_tag(name:"last_modification", value:"2023-07-26 05:05:09 +0000 (Wed, 26 Jul 2023)");
  script_tag(name:"creation_date", value:"2009-01-20 22:42:09 +0100 (Tue, 20 Jan 2009)");
  script_cve_id("CVE-2009-0025");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_name("FreeBSD Security Advisory (FreeBSD-SA-09:04.bind.asc)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 E-Soft Inc.");
  script_family("FreeBSD Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/freebsd", "ssh/login/freebsdpatchlevel");

  script_tag(name:"insight", value:"BIND 9 is an implementation of the Domain Name System (DNS) protocols.
The named(8) daemon is an Internet Domain Name Server.  DNS Security
Extensions (DNSSEC) are additional protocol options that add
authentication as part of responses to DNS queries.

FreeBSD includes software from the OpenSSL Project.  The OpenSSL
Project is a collaborative effort to develop a robust,
commercial-grade, full-featured Open Source toolkit implementing the
Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1)
protocols as well as a full-strength general purpose cryptography
library.

The DSA_do_verify() function from OpenSSL is used to determine if a
DSA digital signature is valid.  When DNSSEC is used within BIND it
uses DSA_do_verify() to verify DSA signatures, but checks the function
return value incorrectly.");

  script_tag(name:"solution", value:"Upgrade your system to the appropriate stable release
  or security branch dated after the correction date.");

  script_xref(name:"URL", value:"https://secure1.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-09:04.bind.asc");

  script_tag(name:"summary", value:"The remote host is missing an update to the system
  as announced in the referenced advisory FreeBSD-SA-09:04.bind.asc");

  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("pkg-lib-bsd.inc");

vuln = FALSE;

if(patchlevelcmp(rel:"7.1", patchlevel:"2")<0) {
  vuln = TRUE;
}
if(patchlevelcmp(rel:"7.0", patchlevel:"9")<0) {
  vuln = TRUE;
}
if(patchlevelcmp(rel:"6.4", patchlevel:"3")<0) {
  vuln = TRUE;
}
if(patchlevelcmp(rel:"6.3", patchlevel:"9")<0) {
  vuln = TRUE;
}

if(vuln) {
  security_message(port:0);
} else if (__pkg_match) {
  exit(99);
}

26 Jul 2023 00:00Current

7.1High risk

Vulners AI Score7.1

CVSS 26.8

EPSS0.00961