Red Hat Local Security Checks : RedHat Security Advisory RHSA-2012:1123

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.71438

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2012:1123

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing updates announced in
advisory RHSA-2012:1123.

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named)
a resolver
library (routines for applications to use when interfacing with DNS)
and
tools for verifying that the DNS server is operating correctly.

An uninitialized data structure use flaw was found in BIND when DNSSEC
validation was enabled. A remote attacker able to send a large number of
queries to a DNSSEC validating BIND resolver could use this flaw to cause
it to exit unexpectedly with an assertion failure. (CVE-2012-3817)

Users of bind are advised to upgrade to these updated packages, which
correct this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2012-1123.html
http://www.isc.org/software/bind/advisories/cve-2012-3817

Risk factor : High

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-3817
http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
Debian Security Information: DSA-2517 (Google Search)
http://www.debian.org/security/2012/dsa-2517
RedHat Security Advisories: RHSA-2012:1122
http://rhn.redhat.com/errata/RHSA-2012-1122.html
RedHat Security Advisories: RHSA-2012:1123
http://rhn.redhat.com/errata/RHSA-2012-1123.html
http://www.securitytracker.com/id?1027296
http://secunia.com/advisories/51096
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004
SuSE Security Announcement: openSUSE-SU-2012:0969 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-08/msg00013.html
SuSE Security Announcement: openSUSE-SU-2012:0971 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-08/msg00015.html
http://www.ubuntu.com/usn/USN-1518-1

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.71438
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2012:1123
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2012:1123. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named) a resolver library (routines for applications to use when interfacing with DNS) and tools for verifying that the DNS server is operating correctly. An uninitialized data structure use flaw was found in BIND when DNSSEC validation was enabled. A remote attacker able to send a large number of queries to a DNSSEC validating BIND resolver could use this flaw to cause it to exit unexpectedly with an assertion failure. (CVE-2012-3817) Users of bind are advised to upgrade to these updated packages, which correct this issue. After installing the update, the BIND daemon (named) will be restarted automatically. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2012-1123.html http://www.isc.org/software/bind/advisories/cve-2012-3817 Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3817 http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html Debian Security Information: DSA-2517 (Google Search) http://www.debian.org/security/2012/dsa-2517 RedHat Security Advisories: RHSA-2012:1122 http://rhn.redhat.com/errata/RHSA-2012-1122.html RedHat Security Advisories: RHSA-2012:1123 http://rhn.redhat.com/errata/RHSA-2012-1123.html http://www.securitytracker.com/id?1027296 http://secunia.com/advisories/51096 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004 SuSE Security Announcement: openSUSE-SU-2012:0969 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-08/msg00013.html SuSE Security Announcement: openSUSE-SU-2012:0971 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-08/msg00015.html http://www.ubuntu.com/usn/USN-1518-1
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com