Test ID:	1.3.6.1.4.1.25623.1.0.703795
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-3795-1)
Summary:	The remote host is missing an update for the Debian 'bind9' package(s) announced via the DSA-3795-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'bind9' package(s) announced via the DSA-3795-1 advisory. Vulnerability Insight: It was discovered that a maliciously crafted query can cause ISC's BIND DNS server (named) to crash if both Response Policy Zones (RPZ) and DNS64 (a bridge between IPv4 and IPv6 networks) are enabled. It is uncommon for both of these options to be used in combination, so very few systems will be affected by this problem in practice. This update also corrects an additional regression caused by the fix for CVE-2016-8864, which was applied in a previous security update. For the stable distribution (jessie), this problem has been fixed in version 1:9.9.5.dfsg-9+deb8u10. For the testing (stretch) and unstable (sid) distributions, this problem has been fixed in version 1:9.10.3.dfsg.P4-12. We recommend that you upgrade your bind9 packages. Affected Software/OS: 'bind9' package(s) on Debian 8. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3135 BugTraq ID: 96150 http://www.securityfocus.com/bid/96150 Debian Security Information: DSA-3795 (Google Search) https://www.debian.org/security/2017/dsa-3795 https://security.gentoo.org/glsa/201708-01 RedHat Security Advisories: RHSA-2017:0276 http://rhn.redhat.com/errata/RHSA-2017-0276.html http://www.securitytracker.com/id/1037801
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.