Vulnerability in OpenSSL - Malformed RFC 3779 Data Can Cause Assertion Failures

RFC 3779 data can be included in certificates, and if it is malformed, may trigger an assertion failure. This could be used in a denial-of-service attack. Builds of OpenSSL are only vulnerable if configured with “enable-rfc3779”, which is not a default. Found by Andrew Chi...

MIT Kerberos 5 DoS

TGS Null pointer dereference. TGS assertion failure...

Important: bind

Issue Overview: A flaw was discovered in the way BIND handled certain DNS queries, which caused it to cache an invalid record. A remote attacker could use this flaw to send repeated queries for this invalid record, causing the resolvers to exit unexpectedly due to a failed assertion. Affected...

CVE-2011-4313

Description summary: CVE-2011-4313 affects ISC BIND 9.0.x–9.9.0b1 and can cause a remote denial of service (assertion failure and named exit) triggered by certain recursive DNS query handling and the caching of an invalid record. Root cause / impact: the issue is tied to the resolver’s processing...

CVE-2011-4313

query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service assertion failure and named exit via unknown vectors related to recursive DNS...

Mandriva Update for bind MDVSA-2011:176-2 (bind)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

bind, caching security update

CentOS Errata and Security Advisory CESA-2011:1458 Updated bind packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS bas...

Mandriva Update for bind MDVSA-2011:176 (bind)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2011-4132

The cleanupjournaltail function in the Journaling Block Device JBD functionality in the Linux kernel 2.6 allows local users to cause a denial of service assertion error and kernel oops via an ext3 or ext4 image with an "invalid log first block value."...

Mandriva Update for bind MDVSA-2011:176-1 (bind)

Check for the Version of bind OpenVAS Vulnerability Test Mandriva Update for bind MDVSA-2011:176-1 bind Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

bind: Remote denial of service against recursive servers via logging negative cache entry

query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service assertion failure and named exit via unknown vectors related to recursive DNS...

bind: Remote denial of service against recursive servers via logging negative cache entry

query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service assertion failure and named exit via unknown vectors related to recursive DNS...

Mandriva Linux Security Advisory : bind (MDVSA-2011:176-2)

A vulnerability was discovered and corrected in bind : Cache lookup could return RRSIG data associated with nonexistent records, leading to an assertion failure. ISC RT 26590 CVE-2011-4313. The updated packages have been upgraded to bind 9.7.4-P1 and 9.8.1-P1 which is not vulnerable to this issue...

Fedora 15 : krb5-1.9.1-14.fc15 (2011-14673)

This update applies the upstream patch to fix a NULL pointer dereference wi= th the LDAP kdb backend CVE-2011-1527, 744125, an assertion failure with= multiple kdb backends CVE-2011-1528, and a NULL pointer dereference with= multiple kdb backends CVE-2011-1529. 737711 It also rolls up a number of...

Fedora 14 : krb5-1.8.4-3.fc14 (2011-14650)

This update applies the upstream patch to fix a NULL pointer dereference wi= th the LDAP kdb backend CVE-2011-1527, an assertion failure with multiple= kdb backends CVE-2011-1528, and a NULL pointer dereference with multiple= kdb backends CVE-2011-1529. 737711...

Mandriva Update for krb5 MDVSA-2011:160 (krb5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for krb5 MDVSA-2011:160 (krb5)

Check for the Version of krb5 OpenVAS Vulnerability Test Mandriva Update for krb5 MDVSA-2011:160 krb5 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Mandriva Linux Security Advisory : krb5 (MDVSA-2011:160)

Multiple vulnerabilities has been found and corrected in krb5 : The krb5ldaplockoutaudit function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service assertion...

CVE-2011-4151

The krb5db2lockoutaudit function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4, when the db2 aka Berkeley DB back end is used, allows remote attackers to cause a denial of service assertion failure and daemon exit via unspecified vectors, a different vulnerabilit...

CVE-2011-4151

The krb5db2lockoutaudit function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4, when the db2 aka Berkeley DB back end is used, allows remote attackers to cause a denial of service assertion failure and daemon exit via unspecified vectors, a different vulnerabilit...