Vulnerabilities > CVE-2016-1285

named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 does not properly handle DNAME records when parsing fetch reply messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed packet to the rndc (aka control channel) interface, related to alist.c and sexpr.c.

Vulnerable Configurations

Part	Description	Count
Application	Isc ISC Bind 9.10.3 ISC Bind 9.9.8 ISC Bind 9.0.0 ISC Bind 9.0.1 ISC Bind 9.1 ISC Bind 9.1.0 ISC Bind 9.1.1 ISC Bind 9.1.2 ISC Bind 9.1.3 ISC Bind 9.2 ISC Bind 9.2.0 ISC Bind 9.2.1 ISC Bind 9.2.2 ISC Bind 9.2.3 ISC Bind 9.2.4 ISC Bind 9.2.5 ISC Bind 9.2.6 ISC Bind 9.2.7 ISC Bind 9.2.8 ISC Bind 9.2.9 ISC Bind 9.3 ISC Bind 9.3.0 ISC Bind 9.3.1 ISC Bind 9.3.2 ISC Bind 9.3.3 ISC Bind 9.3.4 ISC Bind 9.3.5 ISC Bind 9.3.6 ISC Bind 9.4 ISC Bind 9.4.0 ISC Bind 9.4.0A1 ISC Bind 9.4.0A2 ISC Bind 9.4.0A3 ISC Bind 9.4.0A4 ISC Bind 9.4.0A5 ISC Bind 9.4.0A6 ISC Bind 9.4.0B1 ISC Bind 9.4.0B2 ISC Bind 9.4.0B3 ISC Bind 9.4.0B4 ISC Bind 9.4.1 ISC Bind 9.4.2 ISC Bind 9.4.3 ISC Bind 9.4.3B1 ISC Bind 9.4.3B2 ISC Bind 9.4.3B3 ISC Bind 9.4.4 ISC Bind 9.5 ISC Bind 9.5.0 ISC Bind 9.5.0-P1 ISC Bind 9.5.0-P2 ISC Bind 9.5.0-P2-W1 ISC Bind 9.5.0-P2-W2 ISC Bind 9.5.0A1 ISC Bind 9.5.0A2 ISC Bind 9.5.0A3 ISC Bind 9.5.0A4 ISC Bind 9.5.0A5 ISC Bind 9.5.0A6 ISC Bind 9.5.0A7 ISC Bind 9.5.0B1 ISC Bind 9.5.0B2 ISC Bind 9.5.0B3 ISC Bind 9.5.1 ISC Bind 9.5.1B1 ISC Bind 9.5.1B2 ISC Bind 9.5.1B3 ISC Bind 9.5.2 ISC Bind 9.5.2-P1 ISC Bind 9.5.2-P2 ISC Bind 9.5.2-P3 ISC Bind 9.5.2-P4 ISC Bind 9.5.2B1 ISC Bind 9.5.3 ISC Bind 9.5.3B1 ISC Bind 9.6 ISC Bind 9.6-Esv ISC Bind 9.6-Esv-R1 ISC Bind 9.6-Esv-R2 ISC Bind 9.6-Esv-R3 ISC Bind 9.6-Esv-R4 ISC Bind 9.6-Esv-R4-P1 ISC Bind 9.6-Esv-R5 ISC Bind 9.6-Esv-R5B1 ISC Bind 9.6-Esv-R6 ISC Bind 9.6-Esv-R7 ISC Bind 9.6-Esv-R9 ISC Bind 9.6.0 ISC Bind 9.6.0A1 ISC Bind 9.6.0B1 ISC Bind 9.6.1 ISC Bind 9.6.1B1 ISC Bind 9.6.2 ISC Bind 9.6.2-P1 ISC Bind 9.6.2-P2 ISC Bind 9.6.2-P3 ISC Bind 9.6.2B1 ISC Bind 9.6.3 ISC Bind 9.6.3B1 ISC Bind 9.7.0 ISC Bind 9.7.0A1 ISC Bind 9.7.0A2 ISC Bind 9.7.0A3 ISC Bind 9.7.0B1 ISC Bind 9.7.0B2 ISC Bind 9.7.0B3 ISC Bind 9.7.1 ISC Bind 9.7.1B1 ISC Bind 9.7.2 ISC Bind 9.7.3 ISC Bind 9.7.4 ISC Bind 9.7.4B1 ISC Bind 9.7.5 ISC Bind 9.7.6 ISC Bind 9.7.7 ISC Bind 9.8.0 ISC Bind 9.8.1 ISC Bind 9.8.2 ISC Bind 9.8.3 ISC Bind 9.8.4 ISC Bind 9.8.5 ISC Bind 9.8.6 ISC Bind 9.8.7 ISC Bind 9.8.8 ISC Bind 9.8.9 ISC Bind 9.9.0 ISC Bind 9.9.1 ISC Bind 9.9.2 ISC Bind 9.9.3 ISC Bind 9.9.4 ISC Bind 9.9.4-65 ISC Bind 9.9.4-72 ISC Bind 9.9.5 ISC Bind 9.9.6 ISC Bind 9.9.7 ISC Bind 9.10.0 ISC Bind 9.10.1 ISC Bind 9.10.2	1086
Application	Suse Suse Linux Enterprise Debuginfo 11 Suse Openstack Cloud 5 Suse Manager Proxy 2.1 Suse Manager 2.1	6
Application	Juniper Juniper Vsrx -	1
OS	Suse Suse Linux Enterprise Server 11 Suse Linux Enterprise Server 12 Suse Linux Enterprise Desktop 11 Suse Linux Enterprise Desktop 12 Suse Linux Enterprise Software Development KIT 12 Suse Linux Enterprise Software Development KIT 11	11
OS	Opensuse Opensuse Opensuse 11.4 Opensuse Opensuse 13.1 Opensuse Opensuse 13.2 Opensuse Leap 42.1	4
OS	Fedoraproject Fedoraproject Fedora 22 Fedoraproject Fedora 24 Fedoraproject Fedora 23	3
OS	Canonical Canonical Ubuntu Linux 15.10 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 12.04	3
OS	Debian Debian Debian Linux 8.0 Debian Debian Linux 7.0 Debian Debian Linux 9.0	3
OS	Juniper Juniper Junos 12.1X46 Juniper Junos 12.1X46-D10 Juniper Junos 12.1X46-D76 Juniper Junos 12.3X48 Juniper Junos 15.1X49 Juniper Junos 17.3 Juniper Junos 17.4 Juniper Junos 18.1 Juniper Junos 18.2 Juniper Junos 18.3 Juniper Junos 18.4	153
Hardware	Juniper Juniper Srx100 - Juniper Srx110 - Juniper Srx1400 - Juniper Srx1500 - Juniper Srx1600 - Juniper Srx210 - Juniper Srx220 - Juniper Srx2300 - Juniper Srx240 - Juniper Srx240H2 - Juniper Srx240M - Juniper Srx300 - Juniper Srx320 - Juniper Srx340 - Juniper Srx3400 - Juniper Srx345 - Juniper Srx3600 - Juniper Srx380 - Juniper Srx4000 - Juniper Srx4100 - Juniper Srx4200 - Juniper Srx4300 - Juniper Srx4600 - Juniper Srx4700 - Juniper Srx5000 - Juniper Srx5400 - Juniper Srx550 - Juniper Srx550 HM - Juniper Srx550M - Juniper Srx5600 - Juniper Srx5800 - Juniper Srx650 -	32

Nessus

NASL family	FreeBSD Local Security Checks
NASL id	FREEBSD_PKG_C9075321F48311E592CE002590263BF5.NASL
description	ISC reports : An error parsing input received by the rndc control channel can cause an assertion failure in sexpr.c or alist.c.
last seen	2020-06-01
modified	2020-06-02
plugin id	90237
published	2016-03-28
reporter	This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/90237
title	FreeBSD : bind -- denial of service vulnerability (c9075321-f483-11e5-92ce-002590263bf5)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from the FreeBSD VuXML database : # # Copyright 2003-2018 Jacques Vidrine and contributors # # Redistribution and use in source (VuXML) and 'compiled' forms (SGML, # HTML, PDF, PostScript, RTF and so forth) with or without modification, # are permitted provided that the following conditions are met: # 1. Redistributions of source code (VuXML) must retain the above # copyright notice, this list of conditions and the following # disclaimer as the first lines of this file unmodified. # 2. Redistributions in compiled form (transformed to other DTDs, # published online in any format, converted to PDF, PostScript, # RTF and other formats) must reproduce the above copyright # notice, this list of conditions and the following disclaimer # in the documentation and/or other materials provided with the # distribution. # # THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS "AS IS" # AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, # THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS # BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, # OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT # OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR # BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, # WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE # OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION, # EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. # include("compat.inc"); if (description) { script_id(90237); script_version("2.8"); script_cvs_date("Date: 2018/12/19 13:21:18"); script_cve_id("CVE-2016-1285"); script_xref(name:"FreeBSD", value:"SA-16:13.bind"); script_name(english:"FreeBSD : bind -- denial of service vulnerability (c9075321-f483-11e5-92ce-002590263bf5)"); script_summary(english:"Checks for updated packages in pkg_info output"); script_set_attribute( attribute:"synopsis", value: "The remote FreeBSD host is missing one or more security-related updates." ); script_set_attribute( attribute:"description", value: "ISC reports : An error parsing input received by the rndc control channel can cause an assertion failure in sexpr.c or alist.c." ); # https://kb.isc.org/article/AA-01352 script_set_attribute( attribute:"see_also", value:"https://kb.isc.org/docs/aa-01352" ); # https://vuxml.freebsd.org/freebsd/c9075321-f483-11e5-92ce-002590263bf5.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?5be9de34" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:bind9-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:bind910"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:bind98"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:bind99"); script_set_attribute(attribute:"cpe", value:"cpe:/o:freebsd:freebsd"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/28"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/28"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"FreeBSD Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/FreeBSD/release", "Host/FreeBSD/pkg_info"); exit(0); } include("audit.inc"); include("freebsd_package.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/FreeBSD/release")) audit(AUDIT_OS_NOT, "FreeBSD"); if (!get_kb_item("Host/FreeBSD/pkg_info")) audit(AUDIT_PACKAGE_LIST_MISSING); flag = 0; if (pkg_test(save_report:TRUE, pkg:"bind98<=9.8.8")) flag++; if (pkg_test(save_report:TRUE, pkg:"bind99>=9.9.0<9.9.8P4")) flag++; if (pkg_test(save_report:TRUE, pkg:"bind910>=9.10.0<9.10.3P4")) flag++; if (pkg_test(save_report:TRUE, pkg:"bind9-devel<9.11.0.a20160309")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get()); else security_warning(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");

NASL family	AIX Local Security Checks
NASL id	AIX_IV85298.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91686
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91686
title	AIX 5.3 TL 12 : bind (IV85298) (deprecated)
code	#%NASL_MIN_LEVEL 999999 # # (C) Tenable Network Security, Inc. # # The text in the description was extracted from AIX Security # Advisory bind_advisory12.asc. # # @DEPRECATED@ # # Disabled on 2017/07/20. Deprecated by aix_bind_advisory12.nasl. include("compat.inc"); if (description) { script_id(91686); script_version("2.6"); script_cvs_date("Date: 2018/07/20 0:18:51"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"AIX 5.3 TL 12 : bind (IV85298) (deprecated)"); script_summary(english:"Check for APAR IV85298"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124)." ); script_set_attribute( attribute:"see_also", value:"http://aix.software.ibm.com/aix/efixes/security/bind_advisory12.asc" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:5.3"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/06/17"); script_set_attribute(attribute:"patch_publication_date", value:"2016/06/17"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/06/20"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc."); script_family(english:"AIX Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version"); exit(0); } exit(0, "This plugin has been deprecated. Use aix_bind_advisory12.nasl (plugin ID 102124) instead."); include("audit.inc"); include("global_settings.inc"); include("aix.inc"); include("misc_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX"); if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING); if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") ); flag = 0; if (aix_check_ifix(release:"5.3", ml:"12", sp:"09", patch:"IV85298m9a", package:"bos.net.tcp.client", minfilesetver:"5.3.12.0", maxfilesetver:"5.3.12.10") < 0) flag++; if (aix_check_ifix(release:"5.3", ml:"12", sp:"09", patch:"IV85298m9a", package:"bos.net.tcp.server", minfilesetver:"5.3.12.0", maxfilesetver:"5.3.12.6") < 0) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:aix_report_get()); else security_warning(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2016-161B73FC2C.NASL
description	New version fixing CVE-2016-1285 CVE-2016-1286 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2016-04-05
plugin id	90326
published	2016-04-05
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/90326
title	Fedora 22 : bind99-9.9.8-4.P4.fc22 (2016-161b73fc2c)
code	#%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Fedora Security Advisory 2016-161b73fc2c. # include("compat.inc"); if (description) { script_id(90326); script_version("2.5"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/04"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_xref(name:"FEDORA", value:"2016-161b73fc2c"); script_name(english:"Fedora 22 : bind99-9.9.8-4.P4.fc22 (2016-161b73fc2c)"); script_summary(english:"Checks rpm output for the updated package."); script_set_attribute( attribute:"synopsis", value:"The remote Fedora host is missing a security update." ); script_set_attribute( attribute:"description", value: "New version fixing CVE-2016-1285 CVE-2016-1286 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1316446" ); # https://lists.fedoraproject.org/pipermail/package-announce/2016-April/181037.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?821ebf50" ); script_set_attribute( attribute:"solution", value:"Update the affected bind99 package." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind99"); script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:22"); script_set_attribute(attribute:"patch_publication_date", value:"2016/04/02"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/04/05"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2020 Tenable Network Security, Inc."); script_family(english:"Fedora Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) \|\| "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora"); os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora"); os_ver = os_ver[1]; if (! ereg(pattern:"^22([^0-9]\|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 22.x", "Fedora " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu); flag = 0; if (rpm_check(release:"FC22", reference:"bind99-9.9.8-4.P4.fc22")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind99"); }

NASL family	Oracle Linux Local Security Checks
NASL id	ORACLELINUX_ELSA-2016-0458.NASL
description	From Red Hat Security Advisory 2016:0458 : Updated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
last seen	2020-06-01
modified	2020-06-02
plugin id	89979
published	2016-03-17
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89979
title	Oracle Linux 5 : bind97 (ELSA-2016-0458)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2016:0458 and # Oracle Linux Security Advisory ELSA-2016-0458 respectively. # include("compat.inc"); if (description) { script_id(89979); script_version("2.12"); script_cvs_date("Date: 2019/09/27 13:00:37"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_xref(name:"RHSA", value:"2016:0458"); script_name(english:"Oracle Linux 5 : bind97 (ELSA-2016-0458)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote Oracle Linux host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "From Red Hat Security Advisory 2016:0458 : Updated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically." ); script_set_attribute( attribute:"see_also", value:"https://oss.oracle.com/pipermail/el-errata/2016-March/005866.html" ); script_set_attribute( attribute:"solution", value:"Update the affected bind97 packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind97"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind97-chroot"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind97-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind97-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind97-utils"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:5"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/16"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/17"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Oracle Linux Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux"); release = get_kb_item("Host/RedHat/release"); if (isnull(release) \|\| !pregmatch(pattern: "Oracle (?:Linux Server\|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux"); os_ver = pregmatch(pattern: "Oracle (?:Linux Server\|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux"); os_ver = os_ver[1]; if (! preg(pattern:"^5([^0-9]\|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 5", "Oracle Linux " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu); flag = 0; if (rpm_check(release:"EL5", reference:"bind97-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"EL5", reference:"bind97-chroot-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"EL5", reference:"bind97-devel-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"EL5", reference:"bind97-libs-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"EL5", reference:"bind97-utils-9.7.0-21.P2.el5_11.6")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind97 / bind97-chroot / bind97-devel / bind97-libs / bind97-utils"); }

NASL family	AIX Local Security Checks
NASL id	AIX_IV84984.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91683
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91683
title	AIX 6.1 TL 9 : bind (IV84984) (deprecated)
code	#%NASL_MIN_LEVEL 999999 # # (C) Tenable Network Security, Inc. # # The text in the description was extracted from AIX Security # Advisory bind_advisory12.asc. # # @DEPRECATED@ # # Disabled on 2017/07/20. Deprecated by aix_bind_advisory12.nasl. include("compat.inc"); if (description) { script_id(91683); script_version("2.8"); script_cvs_date("Date: 2018/07/20 0:18:51"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"AIX 6.1 TL 9 : bind (IV84984) (deprecated)"); script_summary(english:"Check for APAR IV84984"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124)." ); script_set_attribute( attribute:"see_also", value:"http://aix.software.ibm.com/aix/efixes/security/bind_advisory12.asc" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:6.1"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/06/17"); script_set_attribute(attribute:"patch_publication_date", value:"2016/06/17"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/06/20"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc."); script_family(english:"AIX Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version"); exit(0); } exit(0, "This plugin has been deprecated. Use aix_bind_advisory12.nasl (plugin ID 102124) instead."); include("audit.inc"); include("global_settings.inc"); include("aix.inc"); include("misc_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX"); if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING); if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") ); flag = 0; if (aix_check_ifix(release:"6.1", ml:"09", sp:"05", patch:"IV84984m5b", package:"bos.net.tcp.client", minfilesetver:"6.1.9.0", maxfilesetver:"6.1.9.102") < 0) flag++; if (aix_check_ifix(release:"6.1", ml:"09", sp:"05", patch:"IV84984m5b", package:"bos.net.tcp.server", minfilesetver:"6.1.9.0", maxfilesetver:"6.1.9.101") < 0) flag++; if (aix_check_ifix(release:"6.1", ml:"09", sp:"06", patch:"IV84984m6a", package:"bos.net.tcp.client", minfilesetver:"6.1.9.0", maxfilesetver:"6.1.9.102") < 0) flag++; if (aix_check_ifix(release:"6.1", ml:"09", sp:"06", patch:"IV84984m6a", package:"bos.net.tcp.server", minfilesetver:"6.1.9.0", maxfilesetver:"6.1.9.101") < 0) flag++; if (aix_check_ifix(release:"6.1", ml:"09", sp:"07", patch:"IV84984s7a", package:"bos.net.tcp.client", minfilesetver:"6.1.9.0", maxfilesetver:"6.1.9.102") < 0) flag++; if (aix_check_ifix(release:"6.1", ml:"09", sp:"07", patch:"IV84984s7a", package:"bos.net.tcp.server", minfilesetver:"6.1.9.0", maxfilesetver:"6.1.9.101") < 0) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:aix_report_get()); else security_warning(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2016-75F31FBB0A.NASL
description	New version fixing CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2016-03-28
plugin id	90215
published	2016-03-28
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/90215
title	Fedora 24 : bind-9.10.3-12.P4.fc24 (2016-75f31fbb0a)
code	#%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Fedora Security Advisory 2016-75f31fbb0a. # include("compat.inc"); if (description) { script_id(90215); script_version("2.7"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/04"); script_cve_id("CVE-2016-1285", "CVE-2016-1286", "CVE-2016-2088"); script_xref(name:"FEDORA", value:"2016-75f31fbb0a"); script_name(english:"Fedora 24 : bind-9.10.3-12.P4.fc24 (2016-75f31fbb0a)"); script_summary(english:"Checks rpm output for the updated package."); script_set_attribute( attribute:"synopsis", value:"The remote Fedora host is missing a security update." ); script_set_attribute( attribute:"description", value: "New version fixing CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1316445" ); # https://lists.fedoraproject.org/pipermail/package-announce/2016-March/179904.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?830975ec" ); script_set_attribute(attribute:"solution", value:"Update the affected bind package."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind"); script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:24"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/26"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/28"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2020 Tenable Network Security, Inc."); script_family(english:"Fedora Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) \|\| "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora"); os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora"); os_ver = os_ver[1]; if (! ereg(pattern:"^24([^0-9]\|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 24.x", "Fedora " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu); flag = 0; if (rpm_check(release:"FC24", reference:"bind-9.10.3-12.P4.fc24")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind"); }

NASL family	AIX Local Security Checks
NASL id	AIX_IV84458.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91680
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91680
title	AIX 7.1 TL 4 : bind (IV84458) (deprecated)
code	#%NASL_MIN_LEVEL 999999 # # (C) Tenable Network Security, Inc. # # The text in the description was extracted from AIX Security # Advisory bind_advisory12.asc. # # @DEPRECATED@ # # Disabled on 2017/07/20. Deprecated by aix_bind_advisory12.nasl. include("compat.inc"); if (description) { script_id(91680); script_version("2.6"); script_cvs_date("Date: 2018/07/20 0:18:51"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"AIX 7.1 TL 4 : bind (IV84458) (deprecated)"); script_summary(english:"Check for APAR IV84458"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124)." ); script_set_attribute( attribute:"see_also", value:"http://aix.software.ibm.com/aix/efixes/security/bind_advisory12.asc" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:7.1"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/06/17"); script_set_attribute(attribute:"patch_publication_date", value:"2016/06/17"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/06/20"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc."); script_family(english:"AIX Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version"); exit(0); } exit(0, "This plugin has been deprecated. Use aix_bind_advisory12.nasl (plugin ID 102124) instead."); include("audit.inc"); include("global_settings.inc"); include("aix.inc"); include("misc_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX"); if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING); if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") ); flag = 0; if (aix_check_ifix(release:"7.1", ml:"04", sp:"01", patch:"IV84458s1a", package:"bos.net.tcp.client", minfilesetver:"7.1.4.0", maxfilesetver:"7.1.4.1") < 0) flag++; if (aix_check_ifix(release:"7.1", ml:"04", sp:"01", patch:"IV84458s1a", package:"bos.net.tcp.server", minfilesetver:"7.1.4.0", maxfilesetver:"7.1.4.1") < 0) flag++; if (aix_check_ifix(release:"7.1", ml:"04", sp:"02", patch:"IV84458s2a", package:"bos.net.tcp.client", minfilesetver:"7.1.4.0", maxfilesetver:"7.1.4.1") < 0) flag++; if (aix_check_ifix(release:"7.1", ml:"04", sp:"02", patch:"IV84458s2a", package:"bos.net.tcp.server", minfilesetver:"7.1.4.0", maxfilesetver:"7.1.4.1") < 0) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:aix_report_get()); else security_warning(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");

NASL family	OracleVM Local Security Checks
NASL id	ORACLEVM_OVMSA-2016-0055.NASL
description	The remote OracleVM system is missing necessary patches to address critical security updates : - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix (CVE-2016-1285, CVE-2016-1286) - Fix (CVE-2015-8704) - Fix (CVE-2015-8000) - Fix (CVE-2015-5722) - Fix (CVE-2015-5477) - Remove files backup after patching (Related: #1171971) - Fix CVE-2014-8500 (#1171971) - fix race condition in socket module - fix (CVE-2012-5166) - bind-chroot-admin: set correct permissions on /etc/named.conf during update - fix (CVE-2012-4244) - fix (CVE-2012-3817) - fix (CVE-2012-1667) - fix (CVE-2012-1033)
last seen	2020-06-01
modified	2020-06-02
plugin id	91739
published	2016-06-22
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/91739
title	OracleVM 3.2 : bind (OVMSA-2016-0055)
code	# # (C) Tenable Network Security, Inc. # # The package checks in this plugin were extracted from OracleVM # Security Advisory OVMSA-2016-0055. # include("compat.inc"); if (description) { script_id(91739); script_version("2.9"); script_cvs_date("Date: 2019/09/27 13:00:35"); script_cve_id("CVE-2012-1033", "CVE-2012-1667", "CVE-2012-3817", "CVE-2012-4244", "CVE-2012-5166", "CVE-2014-8500", "CVE-2015-5477", "CVE-2015-5722", "CVE-2015-8000", "CVE-2015-8704", "CVE-2016-1285", "CVE-2016-1286"); script_bugtraq_id(51898, 53772, 54658, 55522, 55852, 71590); script_name(english:"OracleVM 3.2 : bind (OVMSA-2016-0055)"); script_summary(english:"Checks the RPM output for the updated packages."); script_set_attribute( attribute:"synopsis", value:"The remote OracleVM host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "The remote OracleVM system is missing necessary patches to address critical security updates : - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix (CVE-2016-1285, CVE-2016-1286) - Fix (CVE-2015-8704) - Fix (CVE-2015-8000) - Fix (CVE-2015-5722) - Fix (CVE-2015-5477) - Remove files backup after patching (Related: #1171971) - Fix CVE-2014-8500 (#1171971) - fix race condition in socket module - fix (CVE-2012-5166) - bind-chroot-admin: set correct permissions on /etc/named.conf during update - fix (CVE-2012-4244) - fix (CVE-2012-3817) - fix (CVE-2012-1667) - fix (CVE-2012-1033)" ); script_set_attribute( attribute:"see_also", value:"https://oss.oracle.com/pipermail/oraclevm-errata/2016-June/000477.html" ); script_set_attribute( attribute:"solution", value:"Update the affected bind-libs / bind-utils packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:C"); script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"exploit_framework_core", value:"true"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:bind-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:bind-utils"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:vm_server:3.2"); script_set_attribute(attribute:"vuln_publication_date", value:"2012/02/08"); script_set_attribute(attribute:"patch_publication_date", value:"2016/06/21"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/06/22"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"OracleVM Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/OracleVM/release", "Host/OracleVM/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/OracleVM/release"); if (isnull(release) \|\| "OVS" >!< release) audit(AUDIT_OS_NOT, "OracleVM"); if (! preg(pattern:"^OVS" + "3\.2" + "(\.[0-9]\|$)", string:release)) audit(AUDIT_OS_NOT, "OracleVM 3.2", "OracleVM " + release); if (!get_kb_item("Host/OracleVM/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "OracleVM", cpu); if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu); flag = 0; if (rpm_check(release:"OVS3.2", reference:"bind-libs-9.3.6-25.P1.el5_11.8")) flag++; if (rpm_check(release:"OVS3.2", reference:"bind-utils-9.3.6-25.P1.el5_11.8")) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get()); else security_hole(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind-libs / bind-utils"); }

NASL family	CentOS Local Security Checks
NASL id	CENTOS_RHSA-2016-0458.NASL
description	Updated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
last seen	2020-06-01
modified	2020-06-02
plugin id	89969
published	2016-03-17
reporter	This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89969
title	CentOS 5 : bind97 (CESA-2016:0458)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2016:0458 and # CentOS Errata and Security Advisory 2016:0458 respectively. # include("compat.inc"); if (description) { script_id(89969); script_version("2.14"); script_cvs_date("Date: 2020/01/02"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_xref(name:"RHSA", value:"2016:0458"); script_name(english:"CentOS 5 : bind97 (CESA-2016:0458)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote CentOS host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "Updated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically." ); # https://lists.centos.org/pipermail/centos-announce/2016-March/021735.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?4c474076" ); script_set_attribute( attribute:"solution", value:"Update the affected bind97 packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-1286"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:bind97"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:bind97-chroot"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:bind97-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:bind97-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:bind97-utils"); script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:5"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/16"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/17"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"CentOS Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/CentOS/release"); if (isnull(release) \|\| "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS"); os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS"); os_ver = os_ver[1]; if (! preg(pattern:"^5([^0-9]\|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 5.x", "CentOS " + os_ver); if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu); flag = 0; if (rpm_check(release:"CentOS-5", reference:"bind97-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"CentOS-5", reference:"bind97-chroot-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"CentOS-5", reference:"bind97-devel-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"CentOS-5", reference:"bind97-libs-9.7.0-21.P2.el5_11.6")) flag++; if (rpm_check(release:"CentOS-5", reference:"bind97-utils-9.7.0-21.P2.el5_11.6")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind97 / bind97-chroot / bind97-devel / bind97-libs / bind97-utils"); }

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2016-0601.NASL
description	An update for bind is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es) : * A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) * A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	90391
published	2016-04-07
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/90391
title	RHEL 6 : bind (RHSA-2016:0601)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2016:0601. The text # itself is copyright (C) Red Hat, Inc. # include("compat.inc"); if (description) { script_id(90391); script_version("2.15"); script_cvs_date("Date: 2019/10/24 15:35:41"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_xref(name:"RHSA", value:"2016:0601"); script_name(english:"RHEL 6 : bind (RHSA-2016:0601)"); script_summary(english:"Checks the rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote Red Hat host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "An update for bind is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es) : * A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) * A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues." ); # https://kb.isc.org/article/AA-01352 script_set_attribute( attribute:"see_also", value:"https://kb.isc.org/docs/aa-01352" ); # https://kb.isc.org/article/AA-01353 script_set_attribute( attribute:"see_also", value:"https://kb.isc.org/docs/aa-01353" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2016:0601" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2016-1286" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2016-1285" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-chroot"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-sdb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bind-utils"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6.2"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/04/06"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/04/07"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Red Hat Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) \|\| "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat"); os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat"); os_ver = os_ver[1]; if (! preg(pattern:"^6\.2([^0-9]\|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 6.2", "Red Hat " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu); yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo"); if (!empty_or_null(yum_updateinfo)) { rhsa = "RHSA-2016:0601"; yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa); if (!empty_or_null(yum_report)) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : yum_report ); exit(0); } else { audit_message = "affected by Red Hat security advisory " + rhsa; audit(AUDIT_OS_NOT, audit_message); } } else { flag = 0; if (rpm_check(release:"RHEL6", sp:"2", cpu:"x86_64", reference:"bind-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"x86_64", reference:"bind-chroot-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"i686", reference:"bind-debuginfo-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"x86_64", reference:"bind-debuginfo-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"i686", reference:"bind-devel-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"x86_64", reference:"bind-devel-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"i686", reference:"bind-libs-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"x86_64", reference:"bind-libs-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"x86_64", reference:"bind-sdb-9.7.3-8.P3.el6_2.4")) flag++; if (rpm_check(release:"RHEL6", sp:"2", cpu:"x86_64", reference:"bind-utils-9.7.3-8.P3.el6_2.4")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() + redhat_report_package_caveat() ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chroot / bind-debuginfo / bind-devel / bind-libs / etc"); } }

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2016-368.NASL
description	This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073)
last seen	2020-06-05
modified	2016-03-21
plugin id	90060
published	2016-03-21
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/90060
title	openSUSE Security Update : bind (openSUSE-2016-368)
code	#%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from openSUSE Security Update openSUSE-2016-368. # # The text description of this plugin is (C) SUSE LLC. # include("compat.inc"); if (description) { script_id(90060); script_version("2.7"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/04"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"openSUSE Security Update : bind (openSUSE-2016-368)"); script_summary(english:"Check for the openSUSE-2016-368 patch"); script_set_attribute( attribute:"synopsis", value:"The remote openSUSE host is missing a security update." ); script_set_attribute( attribute:"description", value: "This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073)" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=970072" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=970073" ); script_set_attribute(attribute:"solution", value:"Update the affected bind packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-chrootenv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs-32bit"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs-debuginfo-32bit"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-lwresd"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-lwresd-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-utils"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-utils-debuginfo"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.2"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/19"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/21"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2020 Tenable Network Security, Inc."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) \|\| release =~ "^(SLED\|SLES)") audit(AUDIT_OS_NOT, "openSUSE"); if (release !~ "^(SUSE13\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.2", release); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); ourarch = get_kb_item("Host/cpu"); if (!ourarch) audit(AUDIT_UNKNOWN_ARCH); if (ourarch !~ "^(i586\|i686\|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch); flag = 0; if ( rpm_check(release:"SUSE13.2", reference:"bind-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-chrootenv-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-debuginfo-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-debugsource-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-devel-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-libs-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-libs-debuginfo-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-lwresd-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-lwresd-debuginfo-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-utils-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"bind-utils-debuginfo-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"bind-libs-32bit-9.9.6P1-2.19.1") ) flag++; if ( rpm_check(release:"SUSE13.2", cpu:"x86_64", reference:"bind-libs-debuginfo-32bit-9.9.6P1-2.19.1") ) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chrootenv / bind-debuginfo / bind-debugsource / etc"); }

NASL family	Ubuntu Local Security Checks
NASL id	UBUNTU_USN-2925-1.NASL
description	It was discovered that Bind incorrectly handled input received by the rndc control channel. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. (CVE-2016-1285) It was discovered that Bind incorrectly parsed resource record signatures for DNAME resource records. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. (CVE-2016-1286). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	89828
published	2016-03-10
reporter	Ubuntu Security Notice (C) 2016-2019 Canonical, Inc. / NASL script (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89828
title	Ubuntu 12.04 LTS / 14.04 LTS / 15.10 : bind9 vulnerabilities (USN-2925-1)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Ubuntu Security Notice USN-2925-1. The text # itself is copyright (C) Canonical, Inc. See # <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered # trademark of Canonical, Inc. # include("compat.inc"); if (description) { script_id(89828); script_version("2.15"); script_cvs_date("Date: 2019/09/18 12:31:45"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_xref(name:"USN", value:"2925-1"); script_name(english:"Ubuntu 12.04 LTS / 14.04 LTS / 15.10 : bind9 vulnerabilities (USN-2925-1)"); script_summary(english:"Checks dpkg output for updated package."); script_set_attribute( attribute:"synopsis", value:"The remote Ubuntu host is missing a security-related patch." ); script_set_attribute( attribute:"description", value: "It was discovered that Bind incorrectly handled input received by the rndc control channel. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. (CVE-2016-1285) It was discovered that Bind incorrectly parsed resource record signatures for DNAME resource records. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. (CVE-2016-1286). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://usn.ubuntu.com/2925-1/" ); script_set_attribute(attribute:"solution", value:"Update the affected bind9 package."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:bind9"); script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts"); script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04"); script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:15.10"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/10"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"Ubuntu Security Notice (C) 2016-2019 Canonical, Inc. / NASL script (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Ubuntu Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l"); exit(0); } include("audit.inc"); include("ubuntu.inc"); include("misc_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/Ubuntu/release"); if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu"); release = chomp(release); if (! preg(pattern:"^(12\.04\|14\.04\|15\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 12.04 / 14.04 / 15.10", "Ubuntu " + release); if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu); flag = 0; if (ubuntu_check(osver:"12.04", pkgname:"bind9", pkgver:"1:9.8.1.dfsg.P1-4ubuntu0.16")) flag++; if (ubuntu_check(osver:"14.04", pkgname:"bind9", pkgver:"1:9.9.5.dfsg-3ubuntu0.8")) flag++; if (ubuntu_check(osver:"15.10", pkgname:"bind9", pkgver:"1:9.9.5.dfsg-11ubuntu1.3")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : ubuntu_report_get() ); exit(0); } else { tested = ubuntu_pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind9"); }

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2016-382.NASL
description	This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) This update was imported from the SUSE:SLE-12-SP1:Update update project.
last seen	2020-06-05
modified	2016-03-23
plugin id	90106
published	2016-03-23
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/90106
title	openSUSE Security Update : bind (openSUSE-2016-382)
code	#%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from openSUSE Security Update openSUSE-2016-382. # # The text description of this plugin is (C) SUSE LLC. # include("compat.inc"); if (description) { script_id(90106); script_version("2.7"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/04"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"openSUSE Security Update : bind (openSUSE-2016-382)"); script_summary(english:"Check for the openSUSE-2016-382 patch"); script_set_attribute( attribute:"synopsis", value:"The remote openSUSE host is missing a security update." ); script_set_attribute( attribute:"description", value: "This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) This update was imported from the SUSE:SLE-12-SP1:Update update project." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=970072" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=970073" ); script_set_attribute(attribute:"solution", value:"Update the affected bind packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-chrootenv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs-32bit"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs-debuginfo-32bit"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-lwresd"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-lwresd-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-utils"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-utils-debuginfo"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.1"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/23"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2020 Tenable Network Security, Inc."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) \|\| release =~ "^(SLED\|SLES)") audit(AUDIT_OS_NOT, "openSUSE"); if (release !~ "^(SUSE42\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.1", release); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); ourarch = get_kb_item("Host/cpu"); if (!ourarch) audit(AUDIT_UNKNOWN_ARCH); if (ourarch !~ "^(i586\|i686\|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch); flag = 0; if ( rpm_check(release:"SUSE42.1", reference:"bind-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-chrootenv-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-debuginfo-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-debugsource-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-devel-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-libs-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-libs-debuginfo-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-lwresd-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-lwresd-debuginfo-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-utils-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", reference:"bind-utils-debuginfo-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"bind-libs-32bit-9.9.6P1-33.1") ) flag++; if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"bind-libs-debuginfo-32bit-9.9.6P1-33.1") ) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chrootenv / bind-debuginfo / bind-debugsource / etc"); }

NASL family	OracleVM Local Security Checks
NASL id	ORACLEVM_OVMSA-2016-0036.NASL
description	The remote OracleVM system is missing necessary patches to address critical security updates : - Fix (CVE-2016-1285, CVE-2016-1286)
last seen	2020-06-01
modified	2020-06-02
plugin id	89982
published	2016-03-17
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89982
title	OracleVM 3.3 / 3.4 : bind (OVMSA-2016-0036)
code	# # (C) Tenable Network Security, Inc. # # The package checks in this plugin were extracted from OracleVM # Security Advisory OVMSA-2016-0036. # include("compat.inc"); if (description) { script_id(89982); script_version("2.15"); script_cvs_date("Date: 2019/09/27 13:00:35"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"OracleVM 3.3 / 3.4 : bind (OVMSA-2016-0036)"); script_summary(english:"Checks the RPM output for the updated packages."); script_set_attribute( attribute:"synopsis", value:"The remote OracleVM host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "The remote OracleVM system is missing necessary patches to address critical security updates : - Fix (CVE-2016-1285, CVE-2016-1286)" ); # https://oss.oracle.com/pipermail/oraclevm-errata/2016-March/000441.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?f778c258" ); # https://oss.oracle.com/pipermail/oraclevm-errata/2016-March/000448.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?19ffe6f8" ); script_set_attribute( attribute:"solution", value:"Update the affected bind-libs / bind-utils packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:bind-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:bind-utils"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:vm_server:3.3"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:vm_server:3.4"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/24"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/17"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"OracleVM Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/OracleVM/release", "Host/OracleVM/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/OracleVM/release"); if (isnull(release) \|\| "OVS" >!< release) audit(AUDIT_OS_NOT, "OracleVM"); if (! preg(pattern:"^OVS" + "(3\.3\|3\.4)" + "(\.[0-9]\|$)", string:release)) audit(AUDIT_OS_NOT, "OracleVM 3.3 / 3.4", "OracleVM " + release); if (!get_kb_item("Host/OracleVM/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "OracleVM", cpu); if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu); flag = 0; if (rpm_check(release:"OVS3.3", reference:"bind-libs-9.8.2-0.37.rc1.el6_7.7")) flag++; if (rpm_check(release:"OVS3.3", reference:"bind-utils-9.8.2-0.37.rc1.el6_7.7")) flag++; if (rpm_check(release:"OVS3.4", reference:"bind-libs-9.8.2-0.37.rc1.el6_7.7")) flag++; if (rpm_check(release:"OVS3.4", reference:"bind-utils-9.8.2-0.37.rc1.el6_7.7")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind-libs / bind-utils"); }

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2016-0759-1.NASL
description	This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	89960
published	2016-03-16
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89960
title	SUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2016:0759-1)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from SUSE update advisory SUSE-SU-2016:0759-1. # The text itself is copyright (C) SUSE. # include("compat.inc"); if (description) { script_id(89960); script_version("2.14"); script_cvs_date("Date: 2019/09/11 11:22:13"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"SUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2016:0759-1)"); script_summary(english:"Checks rpm output for the updated packages."); script_set_attribute( attribute:"synopsis", value:"The remote SUSE host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=970072" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=970073" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2016-1285/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2016-1286/" ); # https://www.suse.com/support/update/announcement/2016/suse-su-20160759-1/ script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?c8a31497" ); script_set_attribute( attribute:"solution", value: "To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product : SUSE Linux Enterprise Software Development Kit 12-SP1 : zypper in -t patch SUSE-SLE-SDK-12-SP1-2016-444=1 SUSE Linux Enterprise Server 12-SP1 : zypper in -t patch SUSE-SLE-SERVER-12-SP1-2016-444=1 SUSE Linux Enterprise Desktop 12-SP1 : zypper in -t patch SUSE-SLE-DESKTOP-12-SP1-2016-444=1 To bring your system up-to-date, use 'zypper patch'." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-chrootenv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-libs-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-utils"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-utils-debuginfo"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/14"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/16"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) \|\| release !~ "^(SLED\|SLES)") audit(AUDIT_OS_NOT, "SUSE"); os_ver = pregmatch(pattern: "^(SLE(S\|D)\d+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE"); os_ver = os_ver[1]; if (! preg(pattern:"^(SLED12\|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu); sp = get_kb_item("Host/SuSE/patchlevel"); if (isnull(sp)) sp = "0"; if (os_ver == "SLES12" && (! preg(pattern:"^(1)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP1", os_ver + " SP" + sp); if (os_ver == "SLED12" && (! preg(pattern:"^(1)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP1", os_ver + " SP" + sp); flag = 0; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-chrootenv-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-debuginfo-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-debugsource-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-libs-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-libs-debuginfo-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-utils-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-utils-debuginfo-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-libs-32bit-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLES12", sp:"1", reference:"bind-libs-debuginfo-32bit-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-debuginfo-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-debugsource-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-libs-32bit-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-libs-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-libs-debuginfo-32bit-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-libs-debuginfo-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-utils-9.9.6P1-38.1")) flag++; if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"bind-utils-debuginfo-9.9.6P1-38.1")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind"); }

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2016-0780-1.NASL
description	This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	89992
published	2016-03-17
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89992
title	SUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2016:0780-1)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from SUSE update advisory SUSE-SU-2016:0780-1. # The text itself is copyright (C) SUSE. # include("compat.inc"); if (description) { script_id(89992); script_version("2.16"); script_cvs_date("Date: 2019/09/11 11:22:13"); script_cve_id("CVE-2016-1285", "CVE-2016-1286"); script_name(english:"SUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2016:0780-1)"); script_summary(english:"Checks rpm output for the updated packages."); script_set_attribute( attribute:"synopsis", value:"The remote SUSE host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=970072" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=970073" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2016-1285/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2016-1286/" ); # https://www.suse.com/support/update/announcement/2016/suse-su-20160780-1/ script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?bf10d6bf" ); script_set_attribute( attribute:"solution", value: "To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product : SUSE Linux Enterprise Software Development Kit 12 : zypper in -t patch SUSE-SLE-SDK-12-2016-458=1 SUSE Linux Enterprise Server 12 : zypper in -t patch SUSE-SLE-SERVER-12-2016-458=1 SUSE Linux Enterprise Desktop 12 : zypper in -t patch SUSE-SLE-DESKTOP-12-2016-458=1 To bring your system up-to-date, use 'zypper patch'." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-chrootenv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-libs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-libs-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-utils"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bind-utils-debuginfo"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12"); script_set_attribute(attribute:"vuln_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/15"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/17"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) \|\| release !~ "^(SLED\|SLES)") audit(AUDIT_OS_NOT, "SUSE"); os_ver = pregmatch(pattern: "^(SLE(S\|D)\d+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE"); os_ver = os_ver[1]; if (! preg(pattern:"^(SLED12\|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu); sp = get_kb_item("Host/SuSE/patchlevel"); if (isnull(sp)) sp = "0"; if (os_ver == "SLES12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP0", os_ver + " SP" + sp); if (os_ver == "SLED12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP0", os_ver + " SP" + sp); flag = 0; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-chrootenv-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-debuginfo-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-debugsource-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-libs-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-libs-debuginfo-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-utils-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-utils-debuginfo-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-libs-32bit-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"bind-libs-debuginfo-32bit-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-debuginfo-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-debugsource-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-libs-32bit-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-libs-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-libs-debuginfo-32bit-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-libs-debuginfo-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-utils-9.9.6P1-28.12.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"bind-utils-debuginfo-9.9.6P1-28.12.1")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind"); }

NASL family	Gentoo Local Security Checks
NASL id	GENTOO_GLSA-201610-07.NASL
description	The remote host is affected by the vulnerability described in GLSA-201610-07 (BIND: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could cause a Denial of Service condition through multiple attack vectors. Workaround : There is no known workaround at this time.
last seen	2020-06-01
modified	2020-06-02
plugin id	93994
published	2016-10-12
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/93994
title	GLSA-201610-07 : BIND: Multiple vulnerabilities

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2016-B593E84223.NASL
description	New version fixing CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2016-03-14
plugin id	89885
published	2016-03-14
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/89885
title	Fedora 23 : bind-9.10.3-12.P4.fc23 (2016-b593e84223)

NASL family	AIX Local Security Checks
NASL id	AIX_IV84457.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91679
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91679
title	AIX 7.1 TL 3 : bind (IV84457) (deprecated)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2016-DCE6DBE6A8.NASL
description	New version fixing CVE-2016-1285 CVE-2016-1286 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2016-03-28
plugin id	90227
published	2016-03-28
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/90227
title	Fedora 24 : bind99-9.9.8-4.P4.fc24 (2016-dce6dbe6a8)

NASL family	AIX Local Security Checks
NASL id	AIX_BIND_ADVISORY12.NASL
description	The version of bind installed on the remote AIX host is affected by the following vulnerabilities : - A denial of service vulnerability exists in files sexpr.c and alist.c when handling control channel packets. An unauthenticated, remote attacker can exploit this, via crafted packets sent to the control channel (rndc) interface, to cause an assertion failure and daemon exit. (CVE-2016-1285) - A denial of service vulnerability exists in files resolver.c and db.c when handling DNAME resource signatures. An unauthenticated, remote attacker can exploit this, via a crafted query that generates a response containing a signature record, to cause an assertion failure and daemon exit. (CVE-2016-1286)
last seen	2020-06-01
modified	2020-06-02
plugin id	102124
published	2017-08-03
reporter	This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/102124
title	AIX bind Advisory : bind_advisory12.asc (IV84456) (IV84457) (IV84458) (IV84459) (IV84947) (IV84984) (IV85296) (IV85297) (IV85298)

NASL family	AIX Local Security Checks
NASL id	AIX_IV84947.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91682
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91682
title	AIX 7.1 TL 4 : bind (IV84947) (deprecated)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2016-364C0A9DF4.NASL
description	New version fixing CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2016-04-05
plugin id	90329
published	2016-04-05
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/90329
title	Fedora 22 : bind-9.10.3-9.P4.fc22 (2016-364c0a9df4)

NASL family	OracleVM Local Security Checks
NASL id	ORACLEVM_OVMSA-2020-0021.NASL
description	The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2020-0021 for details.
last seen	2020-06-10
modified	2020-06-05
plugin id	137170
published	2020-06-05
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/137170
title	OracleVM 3.3 / 3.4 : bind (OVMSA-2020-0021)

NASL family	Oracle Linux Local Security Checks
NASL id	ORACLELINUX_ELSA-2016-0459.NASL
description	From Red Hat Security Advisory 2016:0459 : Updated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
last seen	2020-06-01
modified	2020-06-02
plugin id	89980
published	2016-03-17
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89980
title	Oracle Linux 5 / 6 / 7 : bind (ELSA-2016-0459)

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2016-0459.NASL
description	Updated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
last seen	2020-06-01
modified	2020-06-02
plugin id	89985
published	2016-03-17
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89985
title	RHEL 5 / 6 / 7 : bind (RHSA-2016:0459)

NASL family	Scientific Linux Local Security Checks
NASL id	SL_20160316_BIND_ON_SL5_X.NASL
description	A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) After installing the update, the BIND daemon (named) will be restarted automatically.
last seen	2020-03-18
modified	2016-03-17
plugin id	89987
published	2016-03-17
reporter	This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89987
title	Scientific Linux Security Update : bind on SL5.x, SL6.x, SL7.x i386/x86_64 (20160316)

NASL family	AIX Local Security Checks
NASL id	AIX_IV84459.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91681
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91681
title	AIX 7.2 TL 0 : bind (IV84459) (deprecated)

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2016-0458.NASL
description	Updated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
last seen	2020-06-01
modified	2020-06-02
plugin id	89984
published	2016-03-17
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89984
title	RHEL 5 : bind97 (RHSA-2016:0458)

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2016-0825-1.NASL
description	This update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	90092
published	2016-03-22
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/90092
title	SUSE SLED11 / SLES11 Security Update : bind (SUSE-SU-2016:0825-1)

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2016-365.NASL
description	This update for bind fixes the following issues : - CVE-2016-1285: remote DoS caused by malformed data on control channel - CVE-2016-1286: remote DoS via assertion failure in parsing of signature records for DNAME records
last seen	2020-06-05
modified	2016-03-21
plugin id	90057
published	2016-03-21
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/90057
title	openSUSE Security Update : bind (openSUSE-2016-365)

NASL family	Amazon Linux Local Security Checks
NASL id	ALA_ALAS-2016-665.NASL
description	A defect in control channel input handling was discovered which can cause named to exit due to an assertion failure in sexpr.c or alist.c when a malformed packet is sent to named
last seen	2020-06-01
modified	2020-06-02
plugin id	89846
published	2016-03-11
reporter	This script is Copyright (C) 2016-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/89846
title	Amazon Linux AMI : bind (ALAS-2016-665)

NASL family	OracleVM Local Security Checks
NASL id	ORACLEVM_OVMSA-2017-0066.NASL
description	The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2017-3136 (ISC change 4575) - Fix CVE-2017-3137 (ISC change 4578) - Fix and test caching CNAME before DNAME (ISC change 4558) - Fix CVE-2016-9147 (ISC change 4510) - Fix regression introduced by CVE-2016-8864 (ISC change 4530) - Restore SELinux contexts before named restart - Use /lib or /lib64 only if directory in chroot already exists - Tighten NSS library pattern, escape chroot mount path - Fix (CVE-2016-8864) - Do not change lib permissions in chroot (#1321239) - Support WKS records in chroot (#1297562) - Do not include patch backup in docs (fixes #1325081 patch) - Backported relevant parts of [RT #39567] (#1259923) - Increase ISC_SOCKET_MAXEVENTS to 2048 (#1326283) - Fix multiple realms in nsupdate script like upstream (#1313286) - Fix multiple realm in nsupdate script (#1313286) - Use resolver-query-timeout high enough to recover all forwarders (#1325081) - Fix (CVE-2016-2848) - Fix infinite loop in start_lookup (#1306504) - Fix (CVE-2016-2776)
last seen	2020-06-01
modified	2020-06-02
plugin id	99569
published	2017-04-21
reporter	This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/99569
title	OracleVM 3.3 / 3.4 : bind (OVMSA-2017-0066)

NASL family	Slackware Local Security Checks
NASL id	SLACKWARE_SSA_2016-069-01.NASL
description	New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	89789
published	2016-03-10
reporter	This script is Copyright (C) 2016 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/89789
title	Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : bind (SSA:2016-069-01)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2016-5047ABE4A9.NASL
description	New version fixing CVE-2016-1285 CVE-2016-1286 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2016-03-16
plugin id	89946
published	2016-03-16
reporter	This script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/89946
title	Fedora 23 : bind99-9.9.8-4.P4.fc23 (2016-5047abe4a9)

NASL family	AIX Local Security Checks
NASL id	AIX_IV85297.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91685
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91685
title	AIX 7.2 TL 0 : bind (IV85297) (deprecated)

NASL family	DNS
NASL id	BIND9_CVE-2016-1285.NASL
description	According to its self-reported version number, the instance of ISC BIND running on the remote name server is affected by multiple denial of service vulnerabilities : - A denial of service vulnerability exists in files sexpr.c and alist.c when handling control channel packets. An unauthenticated, remote attacker can exploit this, via crafted packets sent to the control channel (rndc) interface, to cause an assertion failure and daemon exit. (CVE-2016-1285) - A denial of service vulnerability exists in resolver.c when DNS cookies are enabled. An unauthenticated, remote attacker can exploit this, via a malformed cookie with more than one cookie option, to cause an INSIST assertion failure and daemon exit. (CVE-2016-2088) Note that Nessus has not tested for these issues but has instead relied only on the application
last seen	2020-06-01
modified	2020-06-02
plugin id	89998
published	2016-03-17
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89998
title	ISC BIND 9 Multiple DoS

NASL family	CentOS Local Security Checks
NASL id	CENTOS_RHSA-2016-0459.NASL
description	Updated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
last seen	2020-06-01
modified	2020-06-02
plugin id	89970
published	2016-03-17
reporter	This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89970
title	CentOS 5 / 6 / 7 : bind (CESA-2016:0459)

NASL family	AIX Local Security Checks
NASL id	AIX_IV84456.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91678
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91678
title	AIX 6.1 TL 9 : bind (IV84456) (deprecated)

NASL family	Huawei Local Security Checks
NASL id	EULEROS_SA-2019-1433.NASL
description	According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A denial of service flaw was found in the way BIND constructed a response to a query that met certain criteria. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS request packet.(CVE-2016-2776) - A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash.(CVE-2016-1285) - A flaw was found in the way BIND performed DNSSEC validation. An attacker able to make BIND (functioning as a DNS resolver with DNSSEC validation enabled) resolve a name in an attacker-controlled domain could cause named to exit unexpectedly with an assertion failure.(CVE-2015-4620) - A flaw was found in the way BIND handled requests for TKEY DNS resource records. A remote attacker could use this flaw to make named (functioning as an authoritative DNS server or a DNS resolver) exit unexpectedly with an assertion failure via a specially crafted DNS request packet.(CVE-2015-5477) - A denial of service flaw was found in the way BIND handled queries for NSEC3-signed zones. A remote attacker could use this flaw against an authoritative name server that served NCES3-signed zones by sending a specially crafted query, which, when processed, would cause named to crash.(CVE-2014-0591) - A denial of service flaw was found in the way BIND parsed certain malformed DNSSEC keys. A remote attacker could use this flaw to send a specially crafted DNS query (for example, a query requiring a response from a zone containing a deliberately malformed key) that would cause named functioning as a validating resolver to crash.(CVE-2015-5722) - It was found that the lightweight resolver protocol implementation in BIND could enter an infinite recursion and crash when asked to resolve a query name which, when combined with a search list entry, exceeds the maximum allowable length. A remote attacker could use this flaw to crash lwresd or named when using the
last seen	2020-06-01
modified	2020-06-02
plugin id	124936
published	2019-05-14
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/124936
title	EulerOS Virtualization 3.0.1.0 : bind (EulerOS-SA-2019-1433)

NASL family	AIX Local Security Checks
NASL id	AIX_IV85296.NASL
description	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
last seen	2017-10-29
modified	2017-08-03
plugin id	91684
published	2016-06-20
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=91684
title	AIX 7.1 TL 3 : bind (IV85296) (deprecated)

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-3511.NASL
description	Two vulnerabilites have been discovered in ISC
last seen	2020-06-01
modified	2020-06-02
plugin id	89793
published	2016-03-10
reporter	This script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/89793
title	Debian DSA-3511-1 : bind9 - security update

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2016-0562.NASL
description	An update for bind is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support, Red Hat Enterprise Linux 6.5 Advanced Update Support, and Red Hat Enterprise Linux 6.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es) : * A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) * A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	90301
published	2016-04-01
reporter	This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/90301
title	RHEL 6 : bind (RHSA-2016:0562)

Redhat

advisories

rhsa
id RHSA-2016:0562
rhsa
id RHSA-2016:0601

rpms

bind97-32:9.7.0-21.P2.el5_11.6
bind97-chroot-32:9.7.0-21.P2.el5_11.6
bind97-debuginfo-32:9.7.0-21.P2.el5_11.6
bind97-devel-32:9.7.0-21.P2.el5_11.6
bind97-libs-32:9.7.0-21.P2.el5_11.6
bind97-utils-32:9.7.0-21.P2.el5_11.6
bind-30:9.3.6-25.P1.el5_11.8
bind-32:9.8.2-0.37.rc1.el6_7.7
bind-32:9.9.4-29.el7_2.3
bind-chroot-30:9.3.6-25.P1.el5_11.8
bind-chroot-32:9.8.2-0.37.rc1.el6_7.7
bind-chroot-32:9.9.4-29.el7_2.3
bind-debuginfo-30:9.3.6-25.P1.el5_11.8
bind-debuginfo-32:9.8.2-0.37.rc1.el6_7.7
bind-debuginfo-32:9.9.4-29.el7_2.3
bind-devel-30:9.3.6-25.P1.el5_11.8
bind-devel-32:9.8.2-0.37.rc1.el6_7.7
bind-devel-32:9.9.4-29.el7_2.3
bind-libbind-devel-30:9.3.6-25.P1.el5_11.8
bind-libs-30:9.3.6-25.P1.el5_11.8
bind-libs-32:9.8.2-0.37.rc1.el6_7.7
bind-libs-32:9.9.4-29.el7_2.3
bind-libs-lite-32:9.9.4-29.el7_2.3
bind-license-32:9.9.4-29.el7_2.3
bind-lite-devel-32:9.9.4-29.el7_2.3
bind-pkcs11-32:9.9.4-29.el7_2.3
bind-pkcs11-devel-32:9.9.4-29.el7_2.3
bind-pkcs11-libs-32:9.9.4-29.el7_2.3
bind-pkcs11-utils-32:9.9.4-29.el7_2.3
bind-sdb-30:9.3.6-25.P1.el5_11.8
bind-sdb-32:9.8.2-0.37.rc1.el6_7.7
bind-sdb-32:9.9.4-29.el7_2.3
bind-sdb-chroot-32:9.9.4-29.el7_2.3
bind-utils-30:9.3.6-25.P1.el5_11.8
bind-utils-32:9.8.2-0.37.rc1.el6_7.7
bind-utils-32:9.9.4-29.el7_2.3
caching-nameserver-30:9.3.6-25.P1.el5_11.8
bind-32:9.8.2-0.17.rc1.el6_4.8
bind-32:9.8.2-0.23.rc1.el6_5.3
bind-32:9.8.2-0.30.rc1.el6_6.5
bind-chroot-32:9.8.2-0.17.rc1.el6_4.8
bind-chroot-32:9.8.2-0.23.rc1.el6_5.3
bind-chroot-32:9.8.2-0.30.rc1.el6_6.5
bind-debuginfo-32:9.8.2-0.17.rc1.el6_4.8
bind-debuginfo-32:9.8.2-0.23.rc1.el6_5.3
bind-debuginfo-32:9.8.2-0.30.rc1.el6_6.5
bind-devel-32:9.8.2-0.17.rc1.el6_4.8
bind-devel-32:9.8.2-0.23.rc1.el6_5.3
bind-devel-32:9.8.2-0.30.rc1.el6_6.5
bind-libs-32:9.8.2-0.17.rc1.el6_4.8
bind-libs-32:9.8.2-0.23.rc1.el6_5.3
bind-libs-32:9.8.2-0.30.rc1.el6_6.5
bind-sdb-32:9.8.2-0.17.rc1.el6_4.8
bind-sdb-32:9.8.2-0.23.rc1.el6_5.3
bind-sdb-32:9.8.2-0.30.rc1.el6_6.5
bind-utils-32:9.8.2-0.17.rc1.el6_4.8
bind-utils-32:9.8.2-0.23.rc1.el6_5.3
bind-utils-32:9.8.2-0.30.rc1.el6_6.5
bind-32:9.7.3-8.P3.el6_2.4
bind-chroot-32:9.7.3-8.P3.el6_2.4
bind-debuginfo-32:9.7.3-8.P3.el6_2.4
bind-devel-32:9.7.3-8.P3.el6_2.4
bind-libs-32:9.7.3-8.P3.el6_2.4
bind-sdb-32:9.7.3-8.P3.el6_2.4
bind-utils-32:9.7.3-8.P3.el6_2.4

Vulnerabilities > CVE-2016-1285 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2016-1285"}]}

Summary

Vulnerable Configurations

Nessus

Redhat

References

Vulnerabilities > CVE-2016-1285