named in ISC BIND 9.x prior to 9.9.9-P5, 9.10.x prior to 9.10.4-P5, and 9.11.x prior to 9.11.0-P2 allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via a malformed response to an RTYPE ANY query.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
isc bind |
||
isc bind 9.9.9 |
||
isc bind 9.10.4 |
||
isc bind 9.11.0 |
||
debian debian linux 8.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux eus 7.2 |
||
redhat enterprise linux eus 7.3 |
||
redhat enterprise linux eus 7.4 |
||
redhat enterprise linux eus 7.5 |
||
redhat enterprise linux eus 7.6 |
||
redhat enterprise linux eus 7.7 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server aus 7.2 |
||
redhat enterprise linux server aus 7.3 |
||
redhat enterprise linux server aus 7.4 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux server aus 7.7 |
||
redhat enterprise linux server tus 7.2 |
||
redhat enterprise linux server tus 7.3 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server tus 7.7 |
||
redhat enterprise linux server workstation 7.0 |
||
netapp data ontap edge - |
||
netapp hci management node - |
||
netapp solidfire - |
||
netapp steelstore cloud integrated storage - |
Nine advisories landed today
Clear the diaries, Juniper sysadmins, a van-load of patches landed today. I suggest you join me in getting a coffee and settling in while we go through the list. The security fixes cover six fixes to Junos, one for the company’s EX Series switches, BIND fixes for SRX, vSRX and J-Series units, and multiple fixes for the NorthStar controller. Ready? Let’s go. BIND: Junos OS on SRX, vSRX and J-Series has been upgraded to tick the boxes on five vulnerabilities. All four CVEs (CVE-2016-2776, CVE-...
DNS servers are crashable until they're patched
BIND administrators, get patching: there are three irritating flaws you need to splat. The denial-of-service vulnerabilities in question are CVE-2016-9131, CVE-2016-9147, and CVE-2016-9444. Common to all three is that they're exploitable denial-of-service bugs that predominantly affect BIND-based DNS servers running in recursive mode (that is, if the DNS server doesn't have an answer locally, it passes the query upstream). In CVE-2016-9131, if a BIND recursive server can be crashed by a malforme...