Lucene search

K
ubuntuUbuntuUSN-1462-1
HistoryJun 05, 2012 - 12:00 a.m.

Bind vulnerabilities

2012-06-0500:00:00
ubuntu.com
123

9.6 High

AI Score

Confidence

High

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:N/A:C

0.904 High

EPSS

Percentile

98.7%

Releases

  • Ubuntu 12.04
  • Ubuntu 11.10
  • Ubuntu 11.04
  • Ubuntu 10.04
  • Ubuntu 8.04

Packages

  • bind9 - Internet Domain Name Server

Details

Dan Luther discovered that Bind incorrectly handled zero length rdata
fields. A remote attacker could use this flaw to cause Bind to crash or
behave erratically, resulting in a denial of service. (CVE-2012-1667)

It was discovered that Bind incorrectly handled revoked domain names. A
remote attacker could use this flaw to cause malicious domain names to be
continuously resolvable even after they have been revoked. (CVE-2012-1033)

OSVersionArchitecturePackageVersionFilename
Ubuntu8.04noarchlibdns36< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchbind9< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchbind9-host< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchdnsutils< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchlibbind-dev< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchlibbind9-30< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchlibdns35< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchlibisc35< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchlibisccc30< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Ubuntu8.04noarchlibisccfg30< 1:9.4.2.dfsg.P2-2ubuntu0.10UNKNOWN
Rows per page:
1-10 of 601

9.6 High

AI Score

Confidence

High

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:N/A:C

0.904 High

EPSS

Percentile

98.7%