Vulnerabilities > CVE-2016-1286

047910
CVSS 8.6 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH

Summary

named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted signature record for a DNAME record, related to db.c and resolver.c.

Vulnerable Configurations

Part Description Count
Application
Isc
1083
Application
Suse
6
Application
Juniper
1
OS
Suse
11
OS
Opensuse
4
OS
Fedoraproject
3
OS
Canonical
3
OS
Debian
3
OS
Juniper
153
Hardware
Juniper
32

Nessus

  • NASL familyAIX Local Security Checks
    NASL idAIX_IV85298.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91686
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91686
    titleAIX 5.3 TL 12 : bind (IV85298) (deprecated)
    code
    #%NASL_MIN_LEVEL 999999
    
    #
    # (C) Tenable Network Security, Inc.
    #
    # The text in the description was extracted from AIX Security
    # Advisory bind_advisory12.asc.
    #
    # @DEPRECATED@
    #
    # Disabled on 2017/07/20. Deprecated by aix_bind_advisory12.nasl.
    
    include("compat.inc");
    
    if (description)
    {
      script_id(91686);
      script_version("2.6");
      script_cvs_date("Date: 2018/07/20  0:18:51");
    
      script_cve_id("CVE-2016-1285", "CVE-2016-1286");
    
      script_name(english:"AIX 5.3 TL 12 : bind (IV85298) (deprecated)");
      script_summary(english:"Check for APAR IV85298");
    
      script_set_attribute(
        attribute:"synopsis", 
        value:"This plugin has been deprecated."
      );
      script_set_attribute(
        attribute:"description", 
        value:
    "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND
    is vulnerable to a denial of service, caused by the improper handling
    of control channel input. By sending a specially crafted packet, a
    remote attacker could exploit this vulnerability to trigger an
    assertion failure in sexpr.c or alist.c and cause the named process to
    crash. ISC BIND is vulnerable to a denial of service, caused by an
    error when parsing signature records for DNAME resource records. A
    remote attacker could exploit this vulnerability to trigger an
    assertion failure in resolver.c or db.c and cause the named process to
    crash.
    
    This plugin has been deprecated to better accommodate iFix
    supersedence with replacement plugin aix_bind_advisory12.nasl (plugin
    id 102124)."
      );
      script_set_attribute(
        attribute:"see_also",
        value:"http://aix.software.ibm.com/aix/efixes/security/bind_advisory12.asc"
      );
      script_set_attribute(
        attribute:"solution", 
        value:"n/a"
      );
      script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
      script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:5.3");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2016/06/17");
      script_set_attribute(attribute:"patch_publication_date", value:"2016/06/17");
      script_set_attribute(attribute:"plugin_publication_date", value:"2016/06/20");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_copyright(english:"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc.");
      script_family(english:"AIX Local Security Checks");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version");
    
      exit(0);
    }
    
    exit(0, "This plugin has been deprecated. Use aix_bind_advisory12.nasl (plugin ID 102124) instead.");
    
    include("audit.inc");
    include("global_settings.inc");
    include("aix.inc");
    include("misc_func.inc");
    
    if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
    if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX");
    if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);
    
    if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") );
    
    flag = 0;
    
    if (aix_check_ifix(release:"5.3", ml:"12", sp:"09", patch:"IV85298m9a", package:"bos.net.tcp.client", minfilesetver:"5.3.12.0", maxfilesetver:"5.3.12.10") < 0) flag++;
    if (aix_check_ifix(release:"5.3", ml:"12", sp:"09", patch:"IV85298m9a", package:"bos.net.tcp.server", minfilesetver:"5.3.12.0", maxfilesetver:"5.3.12.6") < 0) flag++;
    
    if (flag)
    {
      if (report_verbosity > 0) security_warning(port:0, extra:aix_report_get());
      else security_warning(0);
      exit(0);
    }
    else audit(AUDIT_HOST_NOT, "affected");
    
  • NASL familyFreeBSD Local Security Checks
    NASL idFREEBSD_PKG_CBA246D2F48311E592CE002590263BF5.NASL
    descriptionISC reports : A problem parsing resource record signatures for DNAME resource records can lead to an assertion failure in resolver.c or db.c
    last seen2020-06-01
    modified2020-06-02
    plugin id90238
    published2016-03-28
    reporterThis script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/90238
    titleFreeBSD : bind -- denial of service vulnerability (cba246d2-f483-11e5-92ce-002590263bf5)
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2016-161B73FC2C.NASL
    descriptionNew version fixing CVE-2016-1285 CVE-2016-1286 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2016-04-05
    plugin id90326
    published2016-04-05
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/90326
    titleFedora 22 : bind99-9.9.8-4.P4.fc22 (2016-161b73fc2c)
  • NASL familyOracle Linux Local Security Checks
    NASL idORACLELINUX_ELSA-2016-0458.NASL
    descriptionFrom Red Hat Security Advisory 2016:0458 : Updated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
    last seen2020-06-01
    modified2020-06-02
    plugin id89979
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89979
    titleOracle Linux 5 : bind97 (ELSA-2016-0458)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV84984.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91683
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91683
    titleAIX 6.1 TL 9 : bind (IV84984) (deprecated)
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2016-75F31FBB0A.NASL
    descriptionNew version fixing CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2016-03-28
    plugin id90215
    published2016-03-28
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/90215
    titleFedora 24 : bind-9.10.3-12.P4.fc24 (2016-75f31fbb0a)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV84458.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91680
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91680
    titleAIX 7.1 TL 4 : bind (IV84458) (deprecated)
  • NASL familyOracleVM Local Security Checks
    NASL idORACLEVM_OVMSA-2016-0055.NASL
    descriptionThe remote OracleVM system is missing necessary patches to address critical security updates : - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix (CVE-2016-1285, CVE-2016-1286) - Fix (CVE-2015-8704) - Fix (CVE-2015-8000) - Fix (CVE-2015-5722) - Fix (CVE-2015-5477) - Remove files backup after patching (Related: #1171971) - Fix CVE-2014-8500 (#1171971) - fix race condition in socket module - fix (CVE-2012-5166) - bind-chroot-admin: set correct permissions on /etc/named.conf during update - fix (CVE-2012-4244) - fix (CVE-2012-3817) - fix (CVE-2012-1667) - fix (CVE-2012-1033)
    last seen2020-06-01
    modified2020-06-02
    plugin id91739
    published2016-06-22
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/91739
    titleOracleVM 3.2 : bind (OVMSA-2016-0055)
  • NASL familyCentOS Local Security Checks
    NASL idCENTOS_RHSA-2016-0458.NASL
    descriptionUpdated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
    last seen2020-06-01
    modified2020-06-02
    plugin id89969
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89969
    titleCentOS 5 : bind97 (CESA-2016:0458)
  • NASL familyDNS
    NASL idBIND9_CVE-2016-1286.NASL
    descriptionAccording to its self-reported version number, the instance of ISC BIND running on the remote name server is affected by multiple denial of service vulnerabilities : - A denial of service vulnerability exists in files resolver.c and db.c when handling DNAME resource signatures. An unauthenticated, remote attacker can exploit this, via a crafted query that generates a response containing a signature record, to cause an assertion failure and daemon exit. (CVE-2016-1286) - A denial of service vulnerability exists in resolver.c when DNS cookies are enabled. An unauthenticated, remote attacker can exploit this, via a malformed cookie with more than one cookie option, to cause an INSIST assertion failure and daemon exit. (CVE-2016-2088) Note that Nessus has not tested for these issues but has instead relied only on the application
    last seen2020-06-01
    modified2020-06-02
    plugin id89999
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89999
    titleISC BIND 9 Multiple DoS
  • NASL familyRed Hat Local Security Checks
    NASL idREDHAT-RHSA-2016-0601.NASL
    descriptionAn update for bind is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es) : * A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) * A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id90391
    published2016-04-07
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/90391
    titleRHEL 6 : bind (RHSA-2016:0601)
  • NASL familySuSE Local Security Checks
    NASL idOPENSUSE-2016-368.NASL
    descriptionThis update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073)
    last seen2020-06-05
    modified2016-03-21
    plugin id90060
    published2016-03-21
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/90060
    titleopenSUSE Security Update : bind (openSUSE-2016-368)
  • NASL familyUbuntu Local Security Checks
    NASL idUBUNTU_USN-2925-1.NASL
    descriptionIt was discovered that Bind incorrectly handled input received by the rndc control channel. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. (CVE-2016-1285) It was discovered that Bind incorrectly parsed resource record signatures for DNAME resource records. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. (CVE-2016-1286). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id89828
    published2016-03-10
    reporterUbuntu Security Notice (C) 2016-2019 Canonical, Inc. / NASL script (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89828
    titleUbuntu 12.04 LTS / 14.04 LTS / 15.10 : bind9 vulnerabilities (USN-2925-1)
  • NASL familySuSE Local Security Checks
    NASL idOPENSUSE-2016-382.NASL
    descriptionThis update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) This update was imported from the SUSE:SLE-12-SP1:Update update project.
    last seen2020-06-05
    modified2016-03-23
    plugin id90106
    published2016-03-23
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/90106
    titleopenSUSE Security Update : bind (openSUSE-2016-382)
  • NASL familyOracleVM Local Security Checks
    NASL idORACLEVM_OVMSA-2016-0036.NASL
    descriptionThe remote OracleVM system is missing necessary patches to address critical security updates : - Fix (CVE-2016-1285, CVE-2016-1286)
    last seen2020-06-01
    modified2020-06-02
    plugin id89982
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89982
    titleOracleVM 3.3 / 3.4 : bind (OVMSA-2016-0036)
  • NASL familySuSE Local Security Checks
    NASL idSUSE_SU-2016-0759-1.NASL
    descriptionThis update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id89960
    published2016-03-16
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89960
    titleSUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2016:0759-1)
  • NASL familySuSE Local Security Checks
    NASL idSUSE_SU-2016-0780-1.NASL
    descriptionThis update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id89992
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89992
    titleSUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2016:0780-1)
  • NASL familyGentoo Local Security Checks
    NASL idGENTOO_GLSA-201610-07.NASL
    descriptionThe remote host is affected by the vulnerability described in GLSA-201610-07 (BIND: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could cause a Denial of Service condition through multiple attack vectors. Workaround : There is no known workaround at this time.
    last seen2020-06-01
    modified2020-06-02
    plugin id93994
    published2016-10-12
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/93994
    titleGLSA-201610-07 : BIND: Multiple vulnerabilities
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2016-B593E84223.NASL
    descriptionNew version fixing CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2016-03-14
    plugin id89885
    published2016-03-14
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/89885
    titleFedora 23 : bind-9.10.3-12.P4.fc23 (2016-b593e84223)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV84457.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91679
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91679
    titleAIX 7.1 TL 3 : bind (IV84457) (deprecated)
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2016-DCE6DBE6A8.NASL
    descriptionNew version fixing CVE-2016-1285 CVE-2016-1286 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2016-03-28
    plugin id90227
    published2016-03-28
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/90227
    titleFedora 24 : bind99-9.9.8-4.P4.fc24 (2016-dce6dbe6a8)
  • NASL familyAIX Local Security Checks
    NASL idAIX_BIND_ADVISORY12.NASL
    descriptionThe version of bind installed on the remote AIX host is affected by the following vulnerabilities : - A denial of service vulnerability exists in files sexpr.c and alist.c when handling control channel packets. An unauthenticated, remote attacker can exploit this, via crafted packets sent to the control channel (rndc) interface, to cause an assertion failure and daemon exit. (CVE-2016-1285) - A denial of service vulnerability exists in files resolver.c and db.c when handling DNAME resource signatures. An unauthenticated, remote attacker can exploit this, via a crafted query that generates a response containing a signature record, to cause an assertion failure and daemon exit. (CVE-2016-1286)
    last seen2020-06-01
    modified2020-06-02
    plugin id102124
    published2017-08-03
    reporterThis script is Copyright (C) 2017-2018 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/102124
    titleAIX bind Advisory : bind_advisory12.asc (IV84456) (IV84457) (IV84458) (IV84459) (IV84947) (IV84984) (IV85296) (IV85297) (IV85298)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV84947.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91682
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91682
    titleAIX 7.1 TL 4 : bind (IV84947) (deprecated)
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2016-364C0A9DF4.NASL
    descriptionNew version fixing CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2016-04-05
    plugin id90329
    published2016-04-05
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/90329
    titleFedora 22 : bind-9.10.3-9.P4.fc22 (2016-364c0a9df4)
  • NASL familyOracleVM Local Security Checks
    NASL idORACLEVM_OVMSA-2020-0021.NASL
    descriptionThe remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2020-0021 for details.
    last seen2020-06-10
    modified2020-06-05
    plugin id137170
    published2020-06-05
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/137170
    titleOracleVM 3.3 / 3.4 : bind (OVMSA-2020-0021)
  • NASL familyOracle Linux Local Security Checks
    NASL idORACLELINUX_ELSA-2016-0459.NASL
    descriptionFrom Red Hat Security Advisory 2016:0459 : Updated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
    last seen2020-06-01
    modified2020-06-02
    plugin id89980
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89980
    titleOracle Linux 5 / 6 / 7 : bind (ELSA-2016-0459)
  • NASL familyRed Hat Local Security Checks
    NASL idREDHAT-RHSA-2016-0459.NASL
    descriptionUpdated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
    last seen2020-06-01
    modified2020-06-02
    plugin id89985
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89985
    titleRHEL 5 / 6 / 7 : bind (RHSA-2016:0459)
  • NASL familyScientific Linux Local Security Checks
    NASL idSL_20160316_BIND_ON_SL5_X.NASL
    descriptionA denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) After installing the update, the BIND daemon (named) will be restarted automatically.
    last seen2020-03-18
    modified2016-03-17
    plugin id89987
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89987
    titleScientific Linux Security Update : bind on SL5.x, SL6.x, SL7.x i386/x86_64 (20160316)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV84459.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91681
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91681
    titleAIX 7.2 TL 0 : bind (IV84459) (deprecated)
  • NASL familyRed Hat Local Security Checks
    NASL idREDHAT-RHSA-2016-0458.NASL
    descriptionUpdated bind97 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind97 users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
    last seen2020-06-01
    modified2020-06-02
    plugin id89984
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89984
    titleRHEL 5 : bind97 (RHSA-2016:0458)
  • NASL familySuSE Local Security Checks
    NASL idSUSE_SU-2016-0825-1.NASL
    descriptionThis update for bind fixes the following issues : Fix two assertion failures that can lead to a remote denial of service attack : - CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) - CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id90092
    published2016-03-22
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/90092
    titleSUSE SLED11 / SLES11 Security Update : bind (SUSE-SU-2016:0825-1)
  • NASL familyF5 Networks Local Security Checks
    NASL idF5_BIGIP_SOL62012529.NASL
    descriptionnamed in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted signature record for a DNAME record, related to db.c and resolver.c. (CVE-2016-1286) Impact An attacker may force the system to look up a malicious server that is serving bad RRSIGs and may cause the BIND service to restart. Note : Typically, a BIND service restart does not cause the affected system to fail over. BIG-IP Although BIG-IP software contains the vulnerable code, the BIG-IP system does not use the vulnerable code in a way that exposes the vulnerability in the default configuration. The BIG-IP system must meet both of the following conditions to be considered vulnerable : A listener object is configured to use the local BIND service. For example : A virtual server with a DNS profile is configured with the Use BIND Server on BIG-IP option (this option is enabled by default for the DNS profile). A DNS/GTM pool uses the Return to DNS load balancing method, or its Alternate and Fallback load balancing methods are set to None, and all pools associated with the wide IP are unavailable. The local BIND configuration is enabled with the non-default recursion yes; option. BIG-IQ and Enterprise Manager BIG-IQ and Enterprise Manager systems are not vulnerable in the default standard configurations. This vulnerability can be exposed only when the BIG-IQ or Enterprise Manager system is manually configured to enable recursion explicitly and act as a DNS server to query against a server that is providing malicious responses. F5 recommends that you do not configure the system so that you use the BIG-IQ or Enterprise Manager system as a DNS server. ARX, FirePass, LineRate, F5 WebSafe, and Traffix SDC There is no impact. These F5 products are not vulnerable to these vulnerabilities.
    last seen2020-06-01
    modified2020-06-02
    plugin id92986
    published2016-08-17
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/92986
    titleF5 Networks BIG-IP : BIND vulnerability (K62012529)
  • NASL familySuSE Local Security Checks
    NASL idOPENSUSE-2016-365.NASL
    descriptionThis update for bind fixes the following issues : - CVE-2016-1285: remote DoS caused by malformed data on control channel - CVE-2016-1286: remote DoS via assertion failure in parsing of signature records for DNAME records
    last seen2020-06-05
    modified2016-03-21
    plugin id90057
    published2016-03-21
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/90057
    titleopenSUSE Security Update : bind (openSUSE-2016-365)
  • NASL familyAmazon Linux Local Security Checks
    NASL idALA_ALAS-2016-665.NASL
    descriptionA defect in control channel input handling was discovered which can cause named to exit due to an assertion failure in sexpr.c or alist.c when a malformed packet is sent to named
    last seen2020-06-01
    modified2020-06-02
    plugin id89846
    published2016-03-11
    reporterThis script is Copyright (C) 2016-2018 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/89846
    titleAmazon Linux AMI : bind (ALAS-2016-665)
  • NASL familyOracleVM Local Security Checks
    NASL idORACLEVM_OVMSA-2017-0066.NASL
    descriptionThe remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2017-3136 (ISC change 4575) - Fix CVE-2017-3137 (ISC change 4578) - Fix and test caching CNAME before DNAME (ISC change 4558) - Fix CVE-2016-9147 (ISC change 4510) - Fix regression introduced by CVE-2016-8864 (ISC change 4530) - Restore SELinux contexts before named restart - Use /lib or /lib64 only if directory in chroot already exists - Tighten NSS library pattern, escape chroot mount path - Fix (CVE-2016-8864) - Do not change lib permissions in chroot (#1321239) - Support WKS records in chroot (#1297562) - Do not include patch backup in docs (fixes #1325081 patch) - Backported relevant parts of [RT #39567] (#1259923) - Increase ISC_SOCKET_MAXEVENTS to 2048 (#1326283) - Fix multiple realms in nsupdate script like upstream (#1313286) - Fix multiple realm in nsupdate script (#1313286) - Use resolver-query-timeout high enough to recover all forwarders (#1325081) - Fix (CVE-2016-2848) - Fix infinite loop in start_lookup (#1306504) - Fix (CVE-2016-2776)
    last seen2020-06-01
    modified2020-06-02
    plugin id99569
    published2017-04-21
    reporterThis script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/99569
    titleOracleVM 3.3 / 3.4 : bind (OVMSA-2017-0066)
  • NASL familySlackware Local Security Checks
    NASL idSLACKWARE_SSA_2016-069-01.NASL
    descriptionNew bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id89789
    published2016-03-10
    reporterThis script is Copyright (C) 2016 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/89789
    titleSlackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : bind (SSA:2016-069-01)
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2016-5047ABE4A9.NASL
    descriptionNew version fixing CVE-2016-1285 CVE-2016-1286 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2016-03-16
    plugin id89946
    published2016-03-16
    reporterThis script is Copyright (C) 2016-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/89946
    titleFedora 23 : bind99-9.9.8-4.P4.fc23 (2016-5047abe4a9)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV85297.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91685
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91685
    titleAIX 7.2 TL 0 : bind (IV85297) (deprecated)
  • NASL familyCentOS Local Security Checks
    NASL idCENTOS_RHSA-2016-0459.NASL
    descriptionUpdated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues. All bind users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
    last seen2020-06-01
    modified2020-06-02
    plugin id89970
    published2016-03-17
    reporterThis script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89970
    titleCentOS 5 / 6 / 7 : bind (CESA-2016:0459)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV84456.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91678
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91678
    titleAIX 6.1 TL 9 : bind (IV84456) (deprecated)
  • NASL familyHuawei Local Security Checks
    NASL idEULEROS_SA-2019-1433.NASL
    descriptionAccording to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A denial of service flaw was found in the way BIND constructed a response to a query that met certain criteria. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS request packet.(CVE-2016-2776) - A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash.(CVE-2016-1285) - A flaw was found in the way BIND performed DNSSEC validation. An attacker able to make BIND (functioning as a DNS resolver with DNSSEC validation enabled) resolve a name in an attacker-controlled domain could cause named to exit unexpectedly with an assertion failure.(CVE-2015-4620) - A flaw was found in the way BIND handled requests for TKEY DNS resource records. A remote attacker could use this flaw to make named (functioning as an authoritative DNS server or a DNS resolver) exit unexpectedly with an assertion failure via a specially crafted DNS request packet.(CVE-2015-5477) - A denial of service flaw was found in the way BIND handled queries for NSEC3-signed zones. A remote attacker could use this flaw against an authoritative name server that served NCES3-signed zones by sending a specially crafted query, which, when processed, would cause named to crash.(CVE-2014-0591) - A denial of service flaw was found in the way BIND parsed certain malformed DNSSEC keys. A remote attacker could use this flaw to send a specially crafted DNS query (for example, a query requiring a response from a zone containing a deliberately malformed key) that would cause named functioning as a validating resolver to crash.(CVE-2015-5722) - It was found that the lightweight resolver protocol implementation in BIND could enter an infinite recursion and crash when asked to resolve a query name which, when combined with a search list entry, exceeds the maximum allowable length. A remote attacker could use this flaw to crash lwresd or named when using the
    last seen2020-06-01
    modified2020-06-02
    plugin id124936
    published2019-05-14
    reporterThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/124936
    titleEulerOS Virtualization 3.0.1.0 : bind (EulerOS-SA-2019-1433)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV85296.NASL
    descriptionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285 ISC BIND is vulnerable to a denial of service, caused by the improper handling of control channel input. By sending a specially crafted packet, a remote attacker could exploit this vulnerability to trigger an assertion failure in sexpr.c or alist.c and cause the named process to crash. ISC BIND is vulnerable to a denial of service, caused by an error when parsing signature records for DNAME resource records. A remote attacker could exploit this vulnerability to trigger an assertion failure in resolver.c or db.c and cause the named process to crash. This plugin has been deprecated to better accommodate iFix supersedence with replacement plugin aix_bind_advisory12.nasl (plugin id 102124).
    last seen2017-10-29
    modified2017-08-03
    plugin id91684
    published2016-06-20
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=91684
    titleAIX 7.1 TL 3 : bind (IV85296) (deprecated)
  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DSA-3511.NASL
    descriptionTwo vulnerabilites have been discovered in ISC
    last seen2020-06-01
    modified2020-06-02
    plugin id89793
    published2016-03-10
    reporterThis script is Copyright (C) 2016-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/89793
    titleDebian DSA-3511-1 : bind9 - security update
  • NASL familyRed Hat Local Security Checks
    NASL idREDHAT-RHSA-2016-0562.NASL
    descriptionAn update for bind is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support, Red Hat Enterprise Linux 6.5 Advanced Update Support, and Red Hat Enterprise Linux 6.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es) : * A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286) * A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285) Red Hat would like to thank ISC for reporting these issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id90301
    published2016-04-01
    reporterThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/90301
    titleRHEL 6 : bind (RHSA-2016:0562)

Redhat

advisories
  • bugzilla
    id1315680
    titleCVE-2016-1286 bind: malformed signature records for DNAME records can trigger assertion failure
    oval
    OR
    • commentRed Hat Enterprise Linux must be installed
      ovaloval:com.redhat.rhba:tst:20070304026
    • AND
      • commentRed Hat Enterprise Linux 5 is installed
        ovaloval:com.redhat.rhba:tst:20070331005
      • OR
        • AND
          • commentbind97 is earlier than 32:9.7.0-21.P2.el5_11.6
            ovaloval:com.redhat.rhsa:tst:20160458001
          • commentbind97 is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20110845002
        • AND
          • commentbind97-devel is earlier than 32:9.7.0-21.P2.el5_11.6
            ovaloval:com.redhat.rhsa:tst:20160458003
          • commentbind97-devel is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20110845006
        • AND
          • commentbind97-libs is earlier than 32:9.7.0-21.P2.el5_11.6
            ovaloval:com.redhat.rhsa:tst:20160458005
          • commentbind97-libs is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20110845008
        • AND
          • commentbind97-utils is earlier than 32:9.7.0-21.P2.el5_11.6
            ovaloval:com.redhat.rhsa:tst:20160458007
          • commentbind97-utils is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20110845004
        • AND
          • commentbind97-chroot is earlier than 32:9.7.0-21.P2.el5_11.6
            ovaloval:com.redhat.rhsa:tst:20160458009
          • commentbind97-chroot is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20110845010
    rhsa
    idRHSA-2016:0458
    released2016-03-16
    severityImportant
    titleRHSA-2016:0458: bind97 security update (Important)
  • bugzilla
    id1315680
    titleCVE-2016-1286 bind: malformed signature records for DNAME records can trigger assertion failure
    oval
    OR
    • commentRed Hat Enterprise Linux must be installed
      ovaloval:com.redhat.rhba:tst:20070304026
    • AND
      • commentRed Hat Enterprise Linux 5 is installed
        ovaloval:com.redhat.rhba:tst:20070331005
      • OR
        • AND
          • commentcaching-nameserver is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459001
          • commentcaching-nameserver is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057004
        • AND
          • commentbind-libs is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459003
          • commentbind-libs is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057002
        • AND
          • commentbind-libbind-devel is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459005
          • commentbind-libbind-devel is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057006
        • AND
          • commentbind-utils is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459007
          • commentbind-utils is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057014
        • AND
          • commentbind-chroot is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459009
          • commentbind-chroot is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057008
        • AND
          • commentbind-sdb is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459011
          • commentbind-sdb is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057010
        • AND
          • commentbind is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459013
          • commentbind is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057016
        • AND
          • commentbind-devel is earlier than 30:9.3.6-25.P1.el5_11.8
            ovaloval:com.redhat.rhsa:tst:20160459015
          • commentbind-devel is signed with Red Hat redhatrelease key
            ovaloval:com.redhat.rhsa:tst:20070057012
    • AND
      • commentRed Hat Enterprise Linux 6 is installed
        ovaloval:com.redhat.rhba:tst:20111656003
      • OR
        • AND
          • commentbind-chroot is earlier than 32:9.8.2-0.37.rc1.el6_7.7
            ovaloval:com.redhat.rhsa:tst:20160459018
          • commentbind-chroot is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651008
        • AND
          • commentbind is earlier than 32:9.8.2-0.37.rc1.el6_7.7
            ovaloval:com.redhat.rhsa:tst:20160459020
          • commentbind is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651006
        • AND
          • commentbind-devel is earlier than 32:9.8.2-0.37.rc1.el6_7.7
            ovaloval:com.redhat.rhsa:tst:20160459022
          • commentbind-devel is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651004
        • AND
          • commentbind-sdb is earlier than 32:9.8.2-0.37.rc1.el6_7.7
            ovaloval:com.redhat.rhsa:tst:20160459024
          • commentbind-sdb is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651002
        • AND
          • commentbind-utils is earlier than 32:9.8.2-0.37.rc1.el6_7.7
            ovaloval:com.redhat.rhsa:tst:20160459026
          • commentbind-utils is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651012
        • AND
          • commentbind-libs is earlier than 32:9.8.2-0.37.rc1.el6_7.7
            ovaloval:com.redhat.rhsa:tst:20160459028
          • commentbind-libs is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651010
    • AND
      • commentRed Hat Enterprise Linux 7 is installed
        ovaloval:com.redhat.rhba:tst:20150364027
      • OR
        • AND
          • commentbind-sdb-chroot is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459031
          • commentbind-sdb-chroot is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767018
        • AND
          • commentbind-lite-devel is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459033
          • commentbind-lite-devel is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767016
        • AND
          • commentbind-devel is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459035
          • commentbind-devel is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651004
        • AND
          • commentbind-pkcs11-devel is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459036
          • commentbind-pkcs11-devel is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767004
        • AND
          • commentbind-sdb is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459038
          • commentbind-sdb is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651002
        • AND
          • commentbind-license is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459039
          • commentbind-license is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767022
        • AND
          • commentbind-chroot is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459041
          • commentbind-chroot is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651008
        • AND
          • commentbind-libs is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459042
          • commentbind-libs is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651010
        • AND
          • commentbind-libs-lite is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459043
          • commentbind-libs-lite is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767024
        • AND
          • commentbind is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459045
          • commentbind is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651006
        • AND
          • commentbind-utils is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459046
          • commentbind-utils is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20170651012
        • AND
          • commentbind-pkcs11 is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459047
          • commentbind-pkcs11 is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767020
        • AND
          • commentbind-pkcs11-libs is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459049
          • commentbind-pkcs11-libs is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767006
        • AND
          • commentbind-pkcs11-utils is earlier than 32:9.9.4-29.el7_2.3
            ovaloval:com.redhat.rhsa:tst:20160459051
          • commentbind-pkcs11-utils is signed with Red Hat redhatrelease2 key
            ovaloval:com.redhat.rhba:tst:20171767014
    rhsa
    idRHSA-2016:0459
    released2016-03-16
    severityImportant
    titleRHSA-2016:0459: bind security update (Important)
  • rhsa
    idRHSA-2016:0562
  • rhsa
    idRHSA-2016:0601
rpms
  • bind97-32:9.7.0-21.P2.el5_11.6
  • bind97-chroot-32:9.7.0-21.P2.el5_11.6
  • bind97-debuginfo-32:9.7.0-21.P2.el5_11.6
  • bind97-devel-32:9.7.0-21.P2.el5_11.6
  • bind97-libs-32:9.7.0-21.P2.el5_11.6
  • bind97-utils-32:9.7.0-21.P2.el5_11.6
  • bind-30:9.3.6-25.P1.el5_11.8
  • bind-32:9.8.2-0.37.rc1.el6_7.7
  • bind-32:9.9.4-29.el7_2.3
  • bind-chroot-30:9.3.6-25.P1.el5_11.8
  • bind-chroot-32:9.8.2-0.37.rc1.el6_7.7
  • bind-chroot-32:9.9.4-29.el7_2.3
  • bind-debuginfo-30:9.3.6-25.P1.el5_11.8
  • bind-debuginfo-32:9.8.2-0.37.rc1.el6_7.7
  • bind-debuginfo-32:9.9.4-29.el7_2.3
  • bind-devel-30:9.3.6-25.P1.el5_11.8
  • bind-devel-32:9.8.2-0.37.rc1.el6_7.7
  • bind-devel-32:9.9.4-29.el7_2.3
  • bind-libbind-devel-30:9.3.6-25.P1.el5_11.8
  • bind-libs-30:9.3.6-25.P1.el5_11.8
  • bind-libs-32:9.8.2-0.37.rc1.el6_7.7
  • bind-libs-32:9.9.4-29.el7_2.3
  • bind-libs-lite-32:9.9.4-29.el7_2.3
  • bind-license-32:9.9.4-29.el7_2.3
  • bind-lite-devel-32:9.9.4-29.el7_2.3
  • bind-pkcs11-32:9.9.4-29.el7_2.3
  • bind-pkcs11-devel-32:9.9.4-29.el7_2.3
  • bind-pkcs11-libs-32:9.9.4-29.el7_2.3
  • bind-pkcs11-utils-32:9.9.4-29.el7_2.3
  • bind-sdb-30:9.3.6-25.P1.el5_11.8
  • bind-sdb-32:9.8.2-0.37.rc1.el6_7.7
  • bind-sdb-32:9.9.4-29.el7_2.3
  • bind-sdb-chroot-32:9.9.4-29.el7_2.3
  • bind-utils-30:9.3.6-25.P1.el5_11.8
  • bind-utils-32:9.8.2-0.37.rc1.el6_7.7
  • bind-utils-32:9.9.4-29.el7_2.3
  • caching-nameserver-30:9.3.6-25.P1.el5_11.8
  • bind-32:9.8.2-0.17.rc1.el6_4.8
  • bind-32:9.8.2-0.23.rc1.el6_5.3
  • bind-32:9.8.2-0.30.rc1.el6_6.5
  • bind-chroot-32:9.8.2-0.17.rc1.el6_4.8
  • bind-chroot-32:9.8.2-0.23.rc1.el6_5.3
  • bind-chroot-32:9.8.2-0.30.rc1.el6_6.5
  • bind-debuginfo-32:9.8.2-0.17.rc1.el6_4.8
  • bind-debuginfo-32:9.8.2-0.23.rc1.el6_5.3
  • bind-debuginfo-32:9.8.2-0.30.rc1.el6_6.5
  • bind-devel-32:9.8.2-0.17.rc1.el6_4.8
  • bind-devel-32:9.8.2-0.23.rc1.el6_5.3
  • bind-devel-32:9.8.2-0.30.rc1.el6_6.5
  • bind-libs-32:9.8.2-0.17.rc1.el6_4.8
  • bind-libs-32:9.8.2-0.23.rc1.el6_5.3
  • bind-libs-32:9.8.2-0.30.rc1.el6_6.5
  • bind-sdb-32:9.8.2-0.17.rc1.el6_4.8
  • bind-sdb-32:9.8.2-0.23.rc1.el6_5.3
  • bind-sdb-32:9.8.2-0.30.rc1.el6_6.5
  • bind-utils-32:9.8.2-0.17.rc1.el6_4.8
  • bind-utils-32:9.8.2-0.23.rc1.el6_5.3
  • bind-utils-32:9.8.2-0.30.rc1.el6_6.5
  • bind-32:9.7.3-8.P3.el6_2.4
  • bind-chroot-32:9.7.3-8.P3.el6_2.4
  • bind-debuginfo-32:9.7.3-8.P3.el6_2.4
  • bind-devel-32:9.7.3-8.P3.el6_2.4
  • bind-libs-32:9.7.3-8.P3.el6_2.4
  • bind-sdb-32:9.7.3-8.P3.el6_2.4
  • bind-utils-32:9.7.3-8.P3.el6_2.4

References