Test ID:	1.3.6.1.4.1.25623.1.1.13.2017.041.01
Category:	Slackware Local Security Checks
Title:	Slackware: Security Advisory (SSA:2017-041-01)
Summary:	The remote host is missing an update for the 'bind' package(s) announced via the SSA:2017-041-01 advisory.
Description:	Summary: The remote host is missing an update for the 'bind' package(s) announced via the SSA:2017-041-01 advisory. Vulnerability Insight: New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/bind-9.10.4_P6-i586-1_slack14.2.txz: Upgraded. This update fixes a denial-of-service vulnerability. Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer. For more information, see: [links moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'bind' package(s) on Slackware 13.0, Slackware 13.1, Slackware 13.37, Slackware 14.0, Slackware 14.1, Slackware 14.2, Slackware current. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3135 BugTraq ID: 96150 http://www.securityfocus.com/bid/96150 Debian Security Information: DSA-3795 (Google Search) https://www.debian.org/security/2017/dsa-3795 https://security.gentoo.org/glsa/201708-01 RedHat Security Advisories: RHSA-2017:0276 http://rhn.redhat.com/errata/RHSA-2017-0276.html http://www.securitytracker.com/id/1037801
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.