ID de Prueba:	1.3.6.1.4.1.25623.1.0.72485
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2012:1365
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2012:1365. The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named) a resolver library (routines for applications to use when interfacing with DNS) and tools for verifying that the DNS server is operating correctly. A flaw was found in the way BIND handled resource records with a large RDATA value. A malicious owner of a DNS domain could use this flaw to create specially-crafted DNS resource records, that would cause a recursive resolver or secondary server to exit unexpectedly with an assertion failure. (CVE-2012-4244) A flaw was found in the way BIND handled certain combinations of resource records. A remote attacker could use this flaw to cause a recursive resolver, or an authoritative server in certain configurations, to lockup. (CVE-2012-5166) Users of bind are advised to upgrade to these updated packages, which correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2012-1365.html http://www.isc.org/software/bind/advisories/cve-2012-4244 http://www.isc.org/software/bind/advisories/cve-2012-5166 Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-4244 http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html BugTraq ID: 55522 http://www.securityfocus.com/bid/55522 Debian Security Information: DSA-2547 (Google Search) http://www.debian.org/security/2012/dsa-2547 http://lists.fedoraproject.org/pipermail/package-announce/2012-September/087703.html http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088381.html http://lists.fedoraproject.org/pipermail/package-announce/2012-September/087697.html HPdes Security Advisory: HPSBOV03226 http://marc.info/?l=bugtraq&m=141879471518471&w=2 HPdes Security Advisory: SSRT101004 http://www.mandriva.com/security/advisories?name=MDVSA-2012:152 RedHat Security Advisories: RHSA-2012:1266 http://rhn.redhat.com/errata/RHSA-2012-1266.html RedHat Security Advisories: RHSA-2012:1267 http://rhn.redhat.com/errata/RHSA-2012-1267.html RedHat Security Advisories: RHSA-2012:1268 http://rhn.redhat.com/errata/RHSA-2012-1268.html RedHat Security Advisories: RHSA-2012:1365 http://rhn.redhat.com/errata/RHSA-2012-1365.html http://secunia.com/advisories/50560 http://secunia.com/advisories/50579 http://secunia.com/advisories/50582 http://secunia.com/advisories/50645 http://secunia.com/advisories/50673 http://secunia.com/advisories/51096 SuSE Security Announcement: SUSE-SU-2012:1199 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00022.html SuSE Security Announcement: SUSE-SU-2012:1333 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00007.html SuSE Security Announcement: openSUSE-SU-2012:1192 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00021.html http://www.ubuntu.com/usn/USN-1566-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-5166 AIX APAR: IV30185 http://www.ibm.com/support/docview.wss?uid=isg1IV30185 AIX APAR: IV30247 http://www.ibm.com/support/docview.wss?uid=isg1IV30247 AIX APAR: IV30364 http://www.ibm.com/support/docview.wss?uid=isg1IV30364 AIX APAR: IV30365 http://www.ibm.com/support/docview.wss?uid=isg1IV30365 AIX APAR: IV30366 http://www.ibm.com/support/docview.wss?uid=isg1IV30366 AIX APAR: IV30367 http://www.ibm.com/support/docview.wss?uid=isg1IV30367 AIX APAR: IV30368 http://www.ibm.com/support/docview.wss?uid=isg1IV30368 BugTraq ID: 55852 http://www.securityfocus.com/bid/55852 Debian Security Information: DSA-2560 (Google Search) http://www.debian.org/security/2012/dsa-2560 http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090346.html http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090586.html http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090491.html http://www.mandriva.com/security/advisories?name=MDVSA-2012:162 http://osvdb.org/86118 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19706 RedHat Security Advisories: RHSA-2012:1363 http://rhn.redhat.com/errata/RHSA-2012-1363.html RedHat Security Advisories: RHSA-2012:1364 http://rhn.redhat.com/errata/RHSA-2012-1364.html http://secunia.com/advisories/50903 http://secunia.com/advisories/50909 http://secunia.com/advisories/50956 http://secunia.com/advisories/51054 http://secunia.com/advisories/51078 http://secunia.com/advisories/51106 http://secunia.com/advisories/51178 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004 SuSE Security Announcement: SUSE-SU-2012:1390 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00013.html SuSE Security Announcement: openSUSE-SU-2012:1372 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00011.html
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.