RHEL 4 : bind (RHSA-2012:1365)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1365 advisory. - bind: specially crafted resource record causes named to exit CVE-2012-4244 - bind: Specially crafted DNS data can cause a lockup in named...

K14201: BIND denial-of-service attack CVE-2012-5166/CVE-2012-4244

Security Advisory Description A vulnerability exists in the BIND DNS server process that may allow a remote attacker to initiate a denial-of-service DoS attack against the DNS service. Impact DNS services may be unavailable and cause a failure in DNS resolution. Security Advisory Status F5 Produc...

OracleVM 3.2 : bind (OVMSA-2016-0055)

The remote OracleVM system is missing necessary patches to address critical security updates : - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix CVE-2016-1285, CVE-2016-1286 - Fix CVE-2015-8704 - Fix CVE-2015-8000 - Fix CVE-2015-5722 - Fix CVE-2015-5477 - Remove...

ISC BIND DNS RDATA Handling Remote DoS Vulnerability (Jan 2016)

ISC BIND is prone to a remote denial of service DoS vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Oracle: Security Advisory (ELSA-2012-1364)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle: Security Advisory (ELSA-2012-1363)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux: Security Advisory (ALAS-2012-138)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

F5 Networks BIG-IP : BIND denial-of-service attack (SOL14201)

A vulnerability exists in the BIND DNS server process that may allow a remote attacker to initiate a denial-of-service DoS attack against the DNS service. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution...

openSUSE Security Update : bind (openSUSE-SU-2012:1372-1)

The bind nameserver was updated to fix specially crafted DNS data can cause a lockup in named. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-716. The text description of this...

Amazon Linux AMI : bind (ALAS-2012-138)

A flaw was found in the way BIND handled certain combinations of resource records. A remote attacker could use this flaw to cause a recursive resolver, or an authoritative server in certain configurations, to lockup. CVE-2012-5166 C Tenable Network Security, Inc. The descriptive text and package...

Oracle Linux 5 : bind97 (ELSA-2012-1364)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-1364 advisory. 32:9.7.0-10.P2.4 - fix CVE-2012-5166 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus ha...

Oracle Linux 4 : bind (ELSA-2012-1365)

Description of changes: 20:9.2.4-38.0.2.el4 - fix CVE-2012-4244 Adam Tkac orabz 14518 - fix CVE-2012-5166 Adam Tkac orabz 14518 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Oracle Linux Security Advisory...

Oracle Linux 6 : bind (ELSA-2013-0550)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0550 advisory. - fix CVE-2012-5689 - fix CVE-2012-5688 - fix CVE-2012-5166 - fix CVE-2012-4244 - fix CVE-2012-3817 Tenable has extracted the preceding description block direct...

AIX 7.1 TL 1 : bos.net.tcp.server (U855824)

The remote host is missing AIX PTF U855824, which is related to the security of the package bos.net.tcp.server. If specific combinations of RDATA are loaded into a nameserver, either via cache or an authoritative zone, a subsequent query for a related record will cause named to lock up...

AIX 6.1 TL 6 : bos.net.tcp.server (U854732)

The remote host is missing AIX PTF U854732, which is related to the security of the package bos.net.tcp.server. If specific combinations of RDATA are loaded into a nameserver, either via cache or an authoritative zone, a subsequent query for a related record will cause named to lock up...

SOL14201 - BIND denial-of-service attack CVE-2012-5166/CVE-2012-4244

Recommended Action To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table. To mitigate this vulnerability, you can disable recursion of the DNS server. To do so, perform the following procedure: Impact of action...

AIX 5.3 TL 12 : bind9 (IV30368)

If specific combinations of RDATA are loaded into a nameserver, either via cache or an authoritative zone, a subsequent query for a related record will cause named to lock up. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory...

Six Security Flaws Fixed in BIND 9.9.2

A new version of the BIND DNS server software is available, fixing six security vulnerabilities and a long list of other bugs. BIND 9.9.2-P1 is mainly a security update and most of the issues it fixes are crashes and not remote code execution flaws. BIND is the overwhelming leader in market share...

FreeBSD-SA-12:06.bind

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-12:06.bind Security Advisory The FreeBSD Project Topic: Multiple Denial of Service vulnerabilities with named8 Category: contrib Module: bind Announced: 2012-11-2...

Debian: Security Advisory (DSA-2560-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...