Test ID:	1.3.6.1.4.1.25623.1.0.831497
Category:	Mandrake Local Security Checks
Title:	Mandriva Update for bind MDVSA-2011:176-2 (bind)
Summary:	The remote host is missing an update for the 'bind'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'bind' package(s) announced via the referenced advisory. Vulnerability Insight: A vulnerability was discovered and corrected in bind Cache lookup could return RRSIG data associated with nonexistent records, leading to an assertion failure. [ISC RT #26590] (CVE-2011-4313). The updated packages have been upgraded to bind 9.7.4-P1 and 9.8.1-P1 which is not vulnerable to this issue. Update: Packages provided for Mandriva Enterprise Server 5.2 and Mandriva Linux 2010.2 with the MDVSA-2011:176 and MDVSA-2011:176-1 advisory had wrong release numbers effectively preventing installation without excessive force due previous packaging mistakes. This advisory provides corrected packages to address the problem. Affected Software/OS: bind on Mandriva Linux 2010.1, Mandriva Linux 2010.1/X86_64, Mandriva Enterprise Server 5, Mandriva Enterprise Server 5/X86_64 Solution: Please Install the Updated Packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4313 1026335 http://www.securitytracker.com/id?1026335 46536 http://secunia.com/advisories/46536 46829 http://secunia.com/advisories/46829 46887 http://secunia.com/advisories/46887 46890 http://secunia.com/advisories/46890 46905 http://secunia.com/advisories/46905 46906 http://secunia.com/advisories/46906 46943 http://secunia.com/advisories/46943 46984 http://secunia.com/advisories/46984 47043 http://secunia.com/advisories/47043 47075 http://secunia.com/advisories/47075 48308 http://secunia.com/advisories/48308 50690 http://www.securityfocus.com/bid/50690 77159 http://osvdb.org/77159 APPLE-SA-2012-09-19-2 http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html DSA-2347 http://www.debian.org/security/2011/dsa-2347 FEDORA-2011-16002 http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069970.html FEDORA-2011-16036 http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069975.html FEDORA-2011-16057 http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069463.html FreeBSD-SA-11:06 http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc HPSBOV02774 http://marc.info/?l=bugtraq&m=133978480208466&w=2 HPSBOV03226 http://marc.info/?l=bugtraq&m=141879471518471&w=2 HPSBUX02729 http://marc.info/?l=bugtraq&m=132310123002302&w=2 IV11106 http://www-01.ibm.com/support/docview.wss?uid=isg1IV11106 IV11248 http://www.ibm.com/support/docview.wss?uid=isg1IV11248 MDVSA-2011:176 http://www.mandriva.com/security/advisories?name=MDVSA-2011:176 RHSA-2011:1458 http://www.redhat.com/support/errata/RHSA-2011-1458.html RHSA-2011:1459 http://www.redhat.com/support/errata/RHSA-2011-1459.html RHSA-2011:1496 http://www.redhat.com/support/errata/RHSA-2011-1496.html SSRT100684 SSRT100687 SSRT101004 SUSE-SU-2011:1268 http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00027.html SUSE-SU-2011:1270 http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00028.html USN-1264-1 http://www.ubuntu.com/usn/USN-1264-1 VU#606539 http://www.kb.cert.org/vuls/id/606539 http://blogs.oracle.com/sunsecurity/entry/cve_2011_4313_denial_of http://support.apple.com/kb/HT5501 http://www.isc.org/software/bind/advisories/cve-2011-4313 isc-bind-recursive-dos(71332) https://exchange.xforce.ibmcloud.com/vulnerabilities/71332 openSUSE-SU-2011:1272 http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00029.html oval:org.mitre.oval:def:14343 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14343
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.