ID de Prueba:	1.3.6.1.4.1.25623.1.0.882658
Categoría:	CentOS Local Security Checks
Título:	CentOS Update for bind CESA-2017:0276 centos7
Resumen:	Check the version of bind
Descripción:	Summary: Check the version of bind Vulnerability Insight: The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named) a resolver library (routines for applications to use when interfacing with DNS) and tools for verifying that the DNS server is operating correctly. Security Fix(es): * A denial of service flaw was found in the way BIND handled query responses when both DNS64 and RPZ were used. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure or a null pointer dereference via a specially crafted DNS response. (CVE-2017-3135) Red Hat would like to thank ISC for reporting this issue. Upstream acknowledges Ramesh Damodaran (Infoblox) and Aliaksandr Shubnik (Infoblox) as the original reporter. Affected Software/OS: bind on CentOS 7 Solution: Please Install the Updated Packages. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3135 BugTraq ID: 96150 http://www.securityfocus.com/bid/96150 Debian Security Information: DSA-3795 (Google Search) https://www.debian.org/security/2017/dsa-3795 https://security.gentoo.org/glsa/201708-01 RedHat Security Advisories: RHSA-2017:0276 http://rhn.redhat.com/errata/RHSA-2017-0276.html http://www.securitytracker.com/id/1037801
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.