Lucene search

K
ubuntuUbuntuUSN-888-1
HistoryJan 20, 2010 - 12:00 a.m.

Bind vulnerabilities

2010-01-2000:00:00
ubuntu.com
35

8 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.013 Low

EPSS

Percentile

85.5%

Releases

  • Ubuntu 9.10
  • Ubuntu 9.04
  • Ubuntu 8.10
  • Ubuntu 8.04
  • Ubuntu 6.06

Packages

  • bind9 -

Details

It was discovered that Bind would incorrectly cache bogus NXDOMAIN
responses. When DNSSEC validation is in use, a remote attacker could
exploit this to cause a denial of service, and possibly poison DNS caches.
(CVE-2010-0097)

USN-865-1 provided updated Bind packages to fix a security vulnerability.
The upstream security patch to fix CVE-2009-4022 was incomplete and
CVE-2010-0290 was assigned to the issue. This update corrects the problem.
Original advisory details:

Michael Sinatra discovered that Bind did not correctly validate certain
records added to its cache. When DNSSEC validation is in use, a remote
attacker could exploit this to spoof DNS entries and poison DNS caches.
Among other things, this could lead to misdirected email and web traffic.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchlibdns53< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchbind9< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchbind9-host< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchbind9utils< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchdnsutils< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchlibbind-dev< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchlibbind9-50< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchlibdns50< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchlibisc50< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Ubuntu9.10noarchlibisccc50< 1:9.6.1.dfsg.P1-3ubuntu0.3UNKNOWN
Rows per page:
1-10 of 631

8 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.013 Low

EPSS

Percentile

85.5%