Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2016-0332)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2016.0332

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2016-0332)

Resumen: The remote host is missing an update for the 'bind' package(s) announced via the MGASA-2016-0332 advisory.

Descripción: Summary:
The remote host is missing an update for the 'bind' package(s) announced via the MGASA-2016-0332 advisory.

Vulnerability Insight:
The lwresd component in BIND (which is not enabled by default) could crash
while processing an overlong request name. This could lead to a denial of
service (CVE-2016-2775).

A crafted query could crash the BIND name server daemon, leading to a
denial of service. All server roles (authoritative, recursive and
forwarding) in default configurations are affected (CVE-2016-2776).

A conflict between the bind and bind-doc packages has also been fixed
(mga#10880).

Affected Software/OS:
'bind' package(s) on Mageia 5.

Solution:
Please install the updated package(s).

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-2775
BugTraq ID: 92037
http://www.securityfocus.com/bid/92037
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7T2WJP5ELO4ZRSBXSETIZ3GAO6KOEFTA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZUCSMEOZIZ2R2SKA4FPLTOVZHJBAOWC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TT754KDUJTKOASJODJX7FKHCOQ6EC7UX/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NJ5STNEUHBNEPUHJT7CYEVSMATFYMIX7/
https://security.gentoo.org/glsa/201610-07
RedHat Security Advisories: RHBA-2017:0651
https://access.redhat.com/errata/RHBA-2017:0651
RedHat Security Advisories: RHBA-2017:1767
https://access.redhat.com/errata/RHBA-2017:1767
RedHat Security Advisories: RHSA-2017:2533
https://access.redhat.com/errata/RHSA-2017:2533
http://www.securitytracker.com/id/1036360
Common Vulnerability Exposure (CVE) ID: CVE-2016-2776
BugTraq ID: 93188
http://www.securityfocus.com/bid/93188
https://www.exploit-db.com/exploits/40453/
FreeBSD Security Advisory: FreeBSD-SA-16:28
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:28.bind.asc
RedHat Security Advisories: RHSA-2016:1944
http://rhn.redhat.com/errata/RHSA-2016-1944.html
RedHat Security Advisories: RHSA-2016:1945
http://rhn.redhat.com/errata/RHSA-2016-1945.html
RedHat Security Advisories: RHSA-2016:2099
http://rhn.redhat.com/errata/RHSA-2016-2099.html
http://www.securitytracker.com/id/1036903

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2016.0332
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2016-0332)
Resumen:	The remote host is missing an update for the 'bind' package(s) announced via the MGASA-2016-0332 advisory.
Descripción:	Summary: The remote host is missing an update for the 'bind' package(s) announced via the MGASA-2016-0332 advisory. Vulnerability Insight: The lwresd component in BIND (which is not enabled by default) could crash while processing an overlong request name. This could lead to a denial of service (CVE-2016-2775). A crafted query could crash the BIND name server daemon, leading to a denial of service. All server roles (authoritative, recursive and forwarding) in default configurations are affected (CVE-2016-2776). A conflict between the bind and bind-doc packages has also been fixed (mga#10880). Affected Software/OS: 'bind' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-2775 BugTraq ID: 92037 http://www.securityfocus.com/bid/92037 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7T2WJP5ELO4ZRSBXSETIZ3GAO6KOEFTA/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZUCSMEOZIZ2R2SKA4FPLTOVZHJBAOWC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TT754KDUJTKOASJODJX7FKHCOQ6EC7UX/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NJ5STNEUHBNEPUHJT7CYEVSMATFYMIX7/ https://security.gentoo.org/glsa/201610-07 RedHat Security Advisories: RHBA-2017:0651 https://access.redhat.com/errata/RHBA-2017:0651 RedHat Security Advisories: RHBA-2017:1767 https://access.redhat.com/errata/RHBA-2017:1767 RedHat Security Advisories: RHSA-2017:2533 https://access.redhat.com/errata/RHSA-2017:2533 http://www.securitytracker.com/id/1036360 Common Vulnerability Exposure (CVE) ID: CVE-2016-2776 BugTraq ID: 93188 http://www.securityfocus.com/bid/93188 https://www.exploit-db.com/exploits/40453/ FreeBSD Security Advisory: FreeBSD-SA-16:28 https://security.FreeBSD.org/advisories/FreeBSD-SA-16:28.bind.asc RedHat Security Advisories: RHSA-2016:1944 http://rhn.redhat.com/errata/RHSA-2016-1944.html RedHat Security Advisories: RHSA-2016:1945 http://rhn.redhat.com/errata/RHSA-2016-1945.html RedHat Security Advisories: RHSA-2016:2099 http://rhn.redhat.com/errata/RHSA-2016-2099.html http://www.securitytracker.com/id/1036903
Copyright	Copyright (C) 2022 Greenbone AG