Lucene search
Copyright (C) 2017 Greenbone Networks GmbHOPENVAS:1361412562310843133HistoryApr 21, 2017 - 12:00 a.m.
Ubuntu Update for bind9 USN-3259-1
2017-04-2100:00:00
Copyright (C) 2017 Greenbone Networks GmbH
plugins.openvas.org
12
0.298 Low
EPSS
Percentile
96.5%
The remote host is missing an update for the
###############################################################################
# OpenVAS Vulnerability Test
#
# Ubuntu Update for bind9 USN-3259-1
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.843133");
script_version("$Revision: 14140 $");
script_tag(name:"last_modification", value:"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $");
script_tag(name:"creation_date", value:"2017-04-21 06:44:43 +0200 (Fri, 21 Apr 2017)");
script_cve_id("CVE-2017-3137", "CVE-2017-3136", "CVE-2017-3138");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_tag(name:"qod_type", value:"package");
script_name("Ubuntu Update for bind9 USN-3259-1");
script_tag(name:"summary", value:"The remote host is missing an update for the 'bind9'
package(s) announced via the referenced advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"It was discovered that the resolver in
Bind made incorrect assumptions about ordering when processing responses
containing a CNAME or DNAME. An attacker could use this cause a denial of
service. (CVE-2017-3137)
Oleg Gorokhov discovered that in some situations, Bind did not properly
handle DNS64 queries. An attacker could use this to cause a denial
of service. (CVE-2017-3136)
Mike Lalumiere discovered that in some situations, Bind did
not properly handle invalid operations requested via its control
channel. An attacker with access to the control channel could cause
a denial of service. (CVE-2017-3138)");
script_tag(name:"affected", value:"bind9 on Ubuntu 16.10,
Ubuntu 16.04 LTS,
Ubuntu 14.04 LTS,
Ubuntu 12.04 LTS");
script_tag(name:"solution", value:"Please Install the Updated Packages.");
script_xref(name:"USN", value:"3259-1");
script_xref(name:"URL", value:"https://www.ubuntu.com/usn/USN-3259-1");
script_tag(name:"solution_type", value:"VendorFix");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2017 Greenbone Networks GmbH");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(14\.04 LTS|16\.10|12\.04 LTS|16\.04 LTS)");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
if(release == "UBUNTU14.04 LTS")
{
if ((res = isdpkgvuln(pkg:"bind9", ver:"1:9.9.5.dfsg-3ubuntu0.14", rls:"UBUNTU14.04 LTS")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "UBUNTU16.10")
{
if ((res = isdpkgvuln(pkg:"bind9", ver:"1:9.10.3.dfsg.P4-10.1ubuntu1.6", rls:"UBUNTU16.10")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "UBUNTU12.04 LTS")
{
if ((res = isdpkgvuln(pkg:"bind9", ver:"1:9.8.1.dfsg.P1-4ubuntu0.22", rls:"UBUNTU12.04 LTS")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "UBUNTU16.04 LTS")
{
if ((res = isdpkgvuln(pkg:"bind9", ver:"1:9.10.3.dfsg.P4-8ubuntu1.6", rls:"UBUNTU16.04 LTS")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
References
Related
fedora
fedora
[SECURITY] Fedora 24 Update: bind99-9.9.9-4.P8.fc24
2017-05-06 23:52:20
[SECURITY] Fedora 25 Update: bind99-9.9.9-4.P8.fc25
2017-04-19 09:32:40
[SECURITY] Fedora 26 Update: bind-9.11.0-7.P5.fc26
2017-04-19 17:03:48
altlinux
altlinux
Security fix for the ALT Linux 9 package bind version 9.10.4.P8-alt1
2017-04-12 00:00:00
Security fix for the ALT Linux 8 package bind version 9.10.4.P8-alt1
2017-04-12 00:00:00
debian
debian
[SECURITY] [DSA 3854-1] bind9 security update
2017-05-14 17:47:46
[SECURITY] [DSA 3854-1] bind9 security update
2017-05-14 17:47:46
[SECURITY] [DLA 957-1] bind9 security update
2017-05-28 13:21:05
nessus
nessus
Fedora 25 : 32:bind (2017-ee4b0f53cb)
2017-04-20 00:00:00
Debian DSA-3854-1 : bind9 - security update
2017-05-15 00:00:00
Fedora 24 : 32:bind (2017-0a876b0ba5)
2017-04-24 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2017-04-17 00:00:00
openvas
openvas
Fedora Update for bind FEDORA-2017-0a876b0ba5
2017-04-23 00:00:00
Debian Security Advisory DSA 3854-1 (bind9 - security update)
2017-05-14 00:00:00
Fedora Update for bind FEDORA-2017-ee4b0f53cb
2017-04-20 00:00:00
archlinux
archlinux
[ASA-201704-11] bind: denial of service
2017-04-29 00:00:00
ibm
ibm
osv
osv
bind9 - security update
2017-05-28 00:00:00
bind9 - security update
2017-05-14 00:00:00
CVE-2017-3138
2019-01-16 20:29:00
cisa
cisa
ISC Releases Security Updates for BIND
2017-04-12 00:00:00
freebsd
freebsd
BIND -- multiple vulnerabilities
2017-04-12 00:00:00
cloudfoundry
cloudfoundry
USN-3259-1: Bind vulnerabilities | Cloud Foundry
2017-05-01 00:00:00
slackware
slackware
[slackware-security] bind
2017-04-13 21:28:31
avleonov
avleonov
Adding third party nasl plugins to OpenVAS
2017-06-30 16:46:24
f5
f5
K23598445 : BIND vulnerabilities CVE-2017-3136 and CVE-2017-3138
2017-04-24 00:00:00
K30164784 : BIND vulnerability CVE-2017-3137
2017-04-26 00:00:00
K43084130 : BIND vulnerability CVE-2018-5735
2018-03-06 00:00:00
centos
centos
bind security update
2017-04-20 22:44:08
bind security update
2017-04-19 16:57:53
redhat
redhat
(RHSA-2017:1095) Important: bind security update
2017-04-19 04:10:01
(RHSA-2017:1105) Important: bind security update
2017-04-20 08:30:27
(RHSA-2017:1582) Important: bind security and bug fix update
2017-06-28 07:45:28
amazon
amazon
Important: bind
2017-04-27 00:07:00
oraclelinux
oraclelinux
bind security update
2017-04-19 00:00:00
bind security update
2017-04-20 00:00:00
suse
suse
Security update for bind (important)
2017-04-13 06:10:58
Security update for bind (important)
2017-04-13 06:09:37
Security update for bind (important)
2017-04-19 21:09:13
prion
prion
Design/Logic Flaw
2019-01-16 20:29:00
Code injection
2019-01-16 20:29:00
Design/Logic Flaw
2019-01-16 20:29:00
ubuntucve
ubuntucve
debiancve
debiancve
checkpoint_advisories
checkpoint_advisories
cve
cve
redhatcve
redhatcve
veracode
veracode
Denial Of Service (DoS)
2020-08-06 21:39:27
Denial Of Service (DoS)
2019-01-17 05:20:33
Denial Of Service (DoS)
2019-01-15 09:16:55
alpinelinux
alpinelinux
gentoo
gentoo
BIND: Multiple vulnerabilities
2017-08-17 00:00:00
mageia
mageia
Updated bind packages fix security vulnerability
2017-12-31 15:00:06
attackerkb
attackerkb