Lucene search
K

117 matches found

Tenable Nessus
Tenable Nessus
added 2017/07/06 12:0 a.m.36 views

Scientific Linux Security Update : bind on SL6.x i386/x86_64 (20170705)

Security Fixes : - A flaw was found in the way BIND handled TSIG authentication for dynamic updates. A remote attacker able to communicate with an authoritative BIND server could use this flaw to manipulate the contents of a zone, by forging a valid TSIG or SIG0 signature for a dynamic update...

7.5CVSS6.2AI score0.18157EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2017/07/06 12:0 a.m.47 views

RHEL 6 : bind (RHSA-2017:1679)

"An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.3AI score0.18157EPSS
Exploits1References7
Cent OS
Cent OS
added 2017/07/05 6:39 p.m.241 views

bind security update

CentOS Errata and Security Advisory CESA-2017:1680 An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS6.7AI score0.18157EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2017/07/05 9:26 a.m.114 views

Important: Red Hat Security Advisory: bind security and bug fix update

An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.7AI score0.18157EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2017/07/05 9:16 a.m.93 views

Important: Red Hat Security Advisory: bind security and bug fix update

An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.7AI score0.18157EPSS
Exploits1References5
Debian
Debian
added 2017/07/05 7:52 a.m.75 views

[BSA-116] Security Update for openvpn

Bernhard Schmidt uploaded new packages for openvpn which fixed the following security problems: CVE-2017-7479 It was discovered that openvpn did not properly handle the rollover of packet identifiers. This would allow an authenticated remote attacker to cause a denial-of-service via application...

7.5CVSS7.4AI score0.04759EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2017/06/28 9:0 a.m.45 views

Important: Red Hat Security Advisory: bind security and bug fix update

An update for bind is now available for Red Hat Enterprise Linux 7.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.5CVSS6.9AI score0.40556EPSS
Exploits0References11
Broadcom
Broadcom
added 2017/06/23 12:0 a.m.9 views

BSA-2017-339

Security Advisory ID : BSA-2017-339 Component : OpenVPN Revision : 2.0: Interim An authenticated client can cause the server's the packet-id counter to roll over, which would lead the server process to hit anASSERT and stop running. To make the server hit theASSERT, the client must first cause th...

6.5CVSS6.8AI score0.01867EPSS
Exploits0
OSV
OSV
added 2017/05/15 6:29 p.m.1 views

DEBIAN-CVE-2017-7479

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker...

6.5CVSS7.4AI score0.01867EPSS
Exploits0References1
OSV
OSV
added 2017/05/11 2:0 p.m.4 views

UBUNTU-CVE-2017-7479

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker...

6.5CVSS6.9AI score0.01867EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.30 views

Mandriva Linux Security Advisory : bind (MDVSA-2015:165)

Updated bind packages fix security vulnerabilities : By making use of maliciously-constructed zones or a rogue server, an attacker can exploit an oversight in the code BIND 9 uses to follow delegations in the Domain Name Service, causing BIND to issue unlimited queries in an attempt to follow the...

7.8CVSS6.8AI score0.65683EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.20 views

Debian DLA-163-1 : bind9 security update

Jan-Piet Mens discovered that the BIND DNS server would crash when processing an invalid DNSSEC key rollover, either due to an error on the zone operator's part, or due to interference with network traffic by an attacker. This issue affects configurations with the directives 'dnssec-validation...

5.4CVSS7.2AI score0.22168EPSS
Exploits0References3
Debian
Debian
added 2015/03/01 6:49 p.m.28 views

[SECURITY] [DLA 163-1] bind9 security update

Package : bind9 Version : 1:9.7.3.dfsg-1squeeze14 CVE ID : CVE-2015-1349 Debian Bug : 778733 Jan-Piet Mens discovered that the BIND DNS server would crash when processing an invalid DNSSEC key rollover, either due to an error on the zone operators part, or due to interference with network traffic...

5.4CVSS8AI score0.22168EPSS
Exploits0
OSV
OSV
added 2015/02/21 6:3 p.m.5 views

MGASA-2015-0082 Updated bind packages fix CVE-2015-1349

Updated bind packages fix security vulnerability: Jan-Piet Mens discovered that the BIND DNS server would crash when processing an invalid DNSSEC key rollover, either due to an error on the zone operator's part, or due to interference with network traffic by an attacker. This issue affects...

5.4CVSS6.2AI score0.22168EPSS
Exploits0References5
Mageia
Mageia
added 2015/02/21 6:3 p.m.43 views

Updated bind packages fix CVE-2015-1349

Updated bind packages fix security vulnerability: Jan-Piet Mens discovered that the BIND DNS server would crash when processing an invalid DNSSEC key rollover, either due to an error on the zone operator's part, or due to interference with network traffic by an attacker. This issue affects...

5.4CVSS8.5AI score0.22168EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/02/19 12:0 a.m.19 views

Debian DSA-3162-1 : bind9 - security update

Jan-Piet Mens discovered that the BIND DNS server would crash when processing an invalid DNSSEC key rollover, either due to an error on the zone operator's part, or due to interference with network traffic by an attacker. This issue affects configurations with the directives 'dnssec-validation...

5.4CVSS7.2AI score0.22168EPSS
Exploits0References3
Debian
Debian
added 2015/02/18 9:22 p.m.22 views

[SECURITY] [DSA 3162-1] bind9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3162-1 [email protected] http://www.debian.org/security/ Florian Weimer February 18, 2015 http://www.debian.org/security/faq -...

5.4CVSS5.7AI score0.22168EPSS
Exploits0
OSV
OSV
added 2015/02/18 12:0 a.m.25 views

DSA-3162-1 bind9 - security update

Bulletin has no description...

5.4CVSS7.2AI score0.22168EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/02/18 12:0 a.m.27 views

Debian Security Advisory DSA 3162-1 (bind9 - security update)

Jan-Piet Mens discovered that the BIND DNS server would crash when processing an invalid DNSSEC key rollover, either due to an error on the zone operator OpenVAS Vulnerability Test $Id: deb3162.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3162-1 using nvtgen 1.0 Scri...

5.4CVSS0.1AI score0.22168EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.41 views

AIX 6.1 TL 4 : bind9 (IV01118)

The security status of an NS RRset is not properly determined during a DNSKEY algorithm rollover which can allow a remote attacker to cause a denial of service. Signed negative responses and corresponding RRSIG records in the cache are not properly handled which can allow a remote attacker to cau...

6.4CVSS7.2AI score0.1692EPSS
Exploits0References3
Rows per page
Query Builder