Lucene search
UbuntuUSN-2081-1HistoryJan 13, 2014 - 12:00 a.m.
Bind vulnerability
2014-01-1300:00:00
ubuntu.com
34
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.637 Medium
EPSS
Percentile
97.9%
Releases
- Ubuntu 13.10
- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04
- Ubuntu 10.04
Packages
- bind9 - Internet Domain Name Server
Details
Jared Mauch discovered that Bind incorrectly handled certain queries for
NSEC3-signed zones. A remote attacker could use this flaw with a specially
crafted query to cause Bind to stop responding, resulting in a denial of
service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.10 | noarch | bind9 | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | bind9-host | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | bind9utils | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | dnsutils | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libbind-dev | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libbind9-90 | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libdns99 | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libisc95 | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libisccc90 | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libisccfg90 | <Β 1:9.9.3.dfsg.P2-4ubuntu1.1 | UNKNOWN |
References
Related
nessus
nessus
RHEL 5 : bind97 (RHSA-2014:1244)
2014-09-16 00:00:00
Debian DLA-48-1 : bind9 security update
2015-03-26 00:00:00
RHEL 6 : bind (RHSA-2014:0043)
2014-01-21 00:00:00
openvas
openvas
CentOS Update for bind97 CESA-2014:1244 centos5
2014-10-01 00:00:00
Debian Security Advisory DSA 3023-1 (bind9 - security update)
2014-09-11 00:00:00
CentOS Update for bind CESA-2014:0043 centos6
2014-01-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:55:26
debiancve
debiancve
CVE-2014-0591
2014-01-14 04:29:56
f5
f5
K15133 : BIND vulnerability CVE-2014-0591
2014-04-03 00:00:00
SOL15133 - BIND vulnerability CVE-2014-0591
2014-04-03 00:00:00
cve
cve
CVE-2014-0591
2014-01-14 04:29:56
redhat
redhat
(RHSA-2014:0043) Moderate: bind security update
2014-01-20 00:00:00
(RHSA-2014:1244) Moderate: bind97 security and bug fix update
2014-09-16 00:00:00
centos
centos
bind97 security update
2014-09-30 11:21:28
bind security update
2014-01-20 17:58:43
slackware
slackware
bind
2014-01-28 14:58:17
[slackware-security] bind
2014-06-24 23:46:33
ubuntucve
ubuntucve
CVE-2014-0591
2014-01-13 00:00:00
mageia
mageia
Updated bind package fixes security vulnerability
2014-01-17 04:39:03
securityvulns
securityvulns
ISC bind DoS
2014-01-14 00:00:00
[USN-2081-1] Bind vulnerability
2014-01-14 00:00:00
APPLE-SA-2014-10-16-3 OS X Server v4.0
2014-10-18 00:00:00
osv
osv
bind9 - security update
2014-09-11 00:00:00
bind9 - security update
2014-09-05 00:00:00
nvd
nvd
CVE-2014-0591
2014-01-14 04:29:56
amazon
amazon
Medium: bind
2014-02-03 15:28:00
checkpoint_advisories
checkpoint_advisories
prion
prion
Design/Logic Flaw
2014-01-14 04:29:00
debian
debian
[SECURITY] [DLA 48-1] bind9 security update
2014-09-05 19:30:04
[SECURITY] [DSA 3023-1] bind9 security update
2014-09-11 20:39:20
[SECURITY] [DSA 3023-1] bind9 security update
2014-09-11 20:39:20
freebsd
freebsd
bind -- denial of service vulnerability
2014-01-08 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: bind-9.9.4-11.P2.fc20
2014-01-18 04:24:44
[SECURITY] Fedora 19 Update: bind-9.9.3-14.P2.fc19
2014-01-18 04:21:45
[SECURITY] Fedora 20 Update: bind-9.9.4-17.P2.fc20
2014-12-18 06:10:51
cvelist
cvelist
CVE-2014-0591
2014-01-14 02:00:00
seebug
seebug
ISC BIND NSEC3ηΎεεζ₯θ―’ε€ηζη»ζε‘ζΌζ΄
2014-01-16 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:04.bind
2014-01-14 00:00:00
suse
suse
Security update for bind (important)
2015-03-11 20:04:56
oraclelinux
oraclelinux
bind97 security and bug fix update
2014-09-17 00:00:00
bind security update
2014-01-20 00:00:00
gentoo
gentoo
BIND: Denial of service
2014-01-29 00:00:00
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.637 Medium
EPSS
Percentile
97.9%
Related for USN-2081-1