RedHat Update for bind RHSA-2011:0926-01

Updated RedHat bind package resolves DNS vulnerabilit

Reporter	Title	Published	Views	Family All 108
Tenable Nessus	ISC BIND 9 Unspecified Packet Processing Remote DoS	7 Jul 201100:00	–	nessus
Tenable Nessus	Mac OS X 10.7 < 10.7.2 Multiple Vulnerabilities	13 Oct 201100:00	–	nessus
Tenable Nessus	ISC BIND 9 Unspecified Packet Processing Remote DoS	7 Jul 201100:00	–	nessus
Tenable Nessus	CentOS 5 : bind97 (CESA-2011:0926)	8 Jul 201100:00	–	nessus
Tenable Nessus	Debian DSA-2272-1 : bind9 - denial of service	6 Jul 201100:00	–	nessus
Tenable Nessus	F5 Networks BIG-IP : BIND vulnerability (SOL12986)	10 Oct 201400:00	–	nessus
Tenable Nessus	Fedora 14 : bind-9.7.4-0.3.b1.fc14 (2011-9127)	25 Jul 201100:00	–	nessus
Tenable Nessus	Fedora 15 : bind-9.8.0-7.P4.fc15 (2011-9146)	12 Jul 201100:00	–	nessus
Tenable Nessus	FreeBSD : BIND -- Remote DoS against authoritative and recursive servers (fd64188d-a71d-11e0-89b4-001ec9578670)	6 Jul 201100:00	–	nessus
Tenable Nessus	GLSA-201206-01 : BIND: Multiple vulnerabilities	21 Jun 201200:00	–	nessus

Source	Link
redhat	www.redhat.com/archives/rhsa-announce/2011-July/msg00003.html

###############################################################################
# OpenVAS Vulnerability Test
#
# RedHat Update for bind RHSA-2011:0926-01
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
  Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
  library (routines for applications to use when interfacing with DNS); and
  tools for verifying that the DNS server is operating correctly.

  A flaw was discovered in the way BIND handled certain DNS requests. A
  remote attacker could use this flaw to send a specially-crafted DNS request
  packet to BIND, causing it to exit unexpectedly due to a failed assertion.
  (CVE-2011-2464)
  
  Users of bind97 on Red Hat Enterprise Linux 5, and bind on Red Hat
  Enterprise Linux 6, are advised to upgrade to these updated packages, which
  resolve this issue. After installing the update, the BIND daemon (named)
  will be restarted automatically.";

tag_affected = "bind on Red Hat Enterprise Linux (v. 5 server)";
tag_solution = "Please Install the Updated Packages.";


if(description)
{
  script_xref(name : "URL" , value : "https://www.redhat.com/archives/rhsa-announce/2011-July/msg00003.html");
  script_id(870451);
  script_version("$Revision: 6685 $");
  script_tag(name:"last_modification", value:"$Date: 2017-07-12 11:44:46 +0200 (Wed, 12 Jul 2017) $");
  script_tag(name:"creation_date", value:"2011-07-08 16:31:28 +0200 (Fri, 08 Jul 2011)");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_xref(name: "RHSA", value: "2011:0926-01");
  script_cve_id("CVE-2011-2464");
  script_name("RedHat Update for bind RHSA-2011:0926-01");

  script_summary("Check for the Version of bind");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2011 Greenbone Networks GmbH");
  script_family("Red Hat Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/rhel", "ssh/login/rpms");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "RHENT_5")
{

  if ((res = isrpmvuln(pkg:"bind97", rpm:"bind97~9.7.0~6.P2.el5_6.3", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"bind97-chroot", rpm:"bind97-chroot~9.7.0~6.P2.el5_6.3", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"bind97-debuginfo", rpm:"bind97-debuginfo~9.7.0~6.P2.el5_6.3", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"bind97-devel", rpm:"bind97-devel~9.7.0~6.P2.el5_6.3", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"bind97-libs", rpm:"bind97-libs~9.7.0~6.P2.el5_6.3", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"bind97-utils", rpm:"bind97-utils~9.7.0~6.P2.el5_6.3", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

12 Jul 2017 00:00Current

8.8High risk

Vulners AI Score8.8

EPSS0.24783