Test ID:	1.3.6.1.4.1.25623.1.0.882381
Category:	CentOS Local Security Checks
Title:	CentOS Update for bind CESA-2016:0073 centos7
Summary:	Check the version of bind
Description:	Summary: Check the version of bind Vulnerability Insight: The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named) a resolver library (routines for applications to use when interfacing with DNS) and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND processed certain malformed Address Prefix List (APL) records. A remote, authenticated attacker could use this flaw to cause named to crash. (CVE-2015-8704) Red Hat would like to thank ISC for reporting this issue. All bind users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the update, the BIND daemon (named) will be restarted automatically. Affected Software/OS: bind on CentOS 7 Solution: Please Install the Updated Packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-8704 BugTraq ID: 81329 http://www.securityfocus.com/bid/81329 Debian Security Information: DSA-3449 (Google Search) http://www.debian.org/security/2016/dsa-3449 http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178045.html http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176564.html http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175977.html http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175973.html FreeBSD Security Advisory: FreeBSD-SA-16:08 https://www.freebsd.org/security/advisories/FreeBSD-SA-16:08.bind.asc https://security.gentoo.org/glsa/201610-07 HPdes Security Advisory: HPSBUX03552 http://marc.info/?l=bugtraq&m=145680832702035&w=2 HPdes Security Advisory: SSRT102983 RedHat Security Advisories: RHSA-2016:0073 http://rhn.redhat.com/errata/RHSA-2016-0073.html RedHat Security Advisories: RHSA-2016:0074 http://rhn.redhat.com/errata/RHSA-2016-0074.html http://www.securitytracker.com/id/1034739 SuSE Security Announcement: SUSE-SU-2016:0174 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00019.html SuSE Security Announcement: SUSE-SU-2016:0180 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00020.html SuSE Security Announcement: SUSE-SU-2016:0200 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00024.html SuSE Security Announcement: SUSE-SU-2016:0227 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00033.html SuSE Security Announcement: openSUSE-SU-2016:0197 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00022.html SuSE Security Announcement: openSUSE-SU-2016:0199 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00023.html SuSE Security Announcement: openSUSE-SU-2016:0204 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00025.html http://www.ubuntu.com/usn/USN-2874-1
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.