 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.892807 |
| Category: | Debian Local Security Checks |
| Title: | Debian: Security Advisory (DLA-2807-1) |
| Summary: | The remote host is missing an update for the Debian 'bind9' package(s) announced via the DLA-2807-1 advisory. |
| Description: | Summary: The remote host is missing an update for the Debian 'bind9' package(s) announced via the DLA-2807-1 advisory. Vulnerability Insight: CVE-2021-25219 Kishore Kumar Kothapalli discovered that the lame server cache in BIND, a DNS server implementation, can be abused by an attacker to significantly degrade resolver performance, resulting in denial of service (large delays for responses for client queries and DNS timeouts on client hosts). CVE-2018-5740 'deny-answer-aliases' is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an assertion failure in name.c. For Debian 9 stretch, these problems have been fixed in version 1:9.10.3.dfsg.P4-12.3+deb9u10. We recommend that you upgrade your bind9 packages. For the detailed security status of bind9 please refer to its security tracker page at: [link moved to references] Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: [link moved to references] Affected Software/OS: 'bind9' package(s) on Debian 9. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2018-5740 BugTraq ID: 105055 http://www.securityfocus.com/bid/105055 https://security.gentoo.org/glsa/201903-13 https://lists.debian.org/debian-lts-announce/2018/08/msg00033.html https://lists.debian.org/debian-lts-announce/2021/11/msg00001.html RedHat Security Advisories: RHSA-2018:2570 https://access.redhat.com/errata/RHSA-2018:2570 RedHat Security Advisories: RHSA-2018:2571 https://access.redhat.com/errata/RHSA-2018:2571 http://www.securitytracker.com/id/1041436 SuSE Security Announcement: openSUSE-SU-2019:1532 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00026.html SuSE Security Announcement: openSUSE-SU-2019:1533 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00027.html https://usn.ubuntu.com/3769-1/ https://usn.ubuntu.com/3769-2/ Common Vulnerability Exposure (CVE) ID: CVE-2021-25219 https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf https://kb.isc.org/v1/docs/cve-2021-25219 https://security.netapp.com/advisory/ntap-20211118-0002/ Debian Security Information: DSA-4994 (Google Search) https://www.debian.org/security/2021/dsa-4994 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YGV7SA27CTYLGFJSPUM3V36ZWK7WWDI4/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTKC4E3HUOLYN5IA4EBL4VAQSWG2ZVTX/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EF4NAVRV4H3W4GA3LGGZYUKD3HSJBAVW/ https://security.gentoo.org/glsa/202210-25 https://www.oracle.com/security-alerts/cpuapr2022.html |
| Copyright | Copyright (C) 2021 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |