Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Summary
Title BIND: Multiple vulnerabilities
Informations
Name GLSA-201206-01 First vendor Publication 2012-06-02
Vendor Gentoo Last vendor Modification 2012-06-02
Severity (Vendor) Normal Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:C)
Cvss Base Score 7.1 Attack Range Network
Cvss Impact Score 6.9 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Synopsis

Multiple vulnerabilities have been found in BIND, the worst of which allowing to cause remote Denial of Service.

Background

BIND is the Berkeley Internet Name Domain Server.

Description

Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details.

Impact

The vulnerabilities allow remote attackers to cause a Denial of Service
(daemon crash) via a DNS query, to bypass intended access restrictions, to incorrectly cache a ncache entry and a rrsig for the same type and to incorrectly mark zone data as insecure.

Workaround

There is no known workaround at this time.

Resolution

All bind users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-dns/bind-9.7.4_p1"

NOTE: This is a legacy GLSA. Updates for all affected architectures are available since December 22, 2011. It is likely that your system is already no longer affected by this issue.

References

[ 1 ] CVE-2010-3613 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3613
[ 2 ] CVE-2010-3614 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3614
[ 3 ] CVE-2010-3615 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3615
[ 4 ] CVE-2010-3762 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3762
[ 5 ] CVE-2011-0414 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0414
[ 6 ] CVE-2011-1910 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1910
[ 7 ] CVE-2011-2464 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2464
[ 8 ] CVE-2011-2465 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2465
[ 9 ] CVE-2011-4313 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4313

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-201206-01.xml

Original Source

Url : http://security.gentoo.org/glsa/glsa-201206-01.xml

CWE : Common Weakness Enumeration

% Id Name
33 % CWE-264 Permissions, Privileges, and Access Controls
33 % CWE-20 Improper Input Validation
17 % CWE-399 Resource Management Errors
17 % CWE-189 Numeric Errors (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12601
 
Oval ID: oval:org.mitre.oval:def:12601
Title: HP-UX Running BIND, Remote Denial of Service (DoS)
Description: named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data.
Family: unix Class: vulnerability
Reference(s): CVE-2010-3613
Version: 12
Platform(s): HP-UX 11
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:12628
 
Oval ID: oval:org.mitre.oval:def:12628
Title: DSA-2208-2 bind9 -- denial of service
Description: The BIND, a DNS server, contains a defect related to the processing of new DNSSEC DS records by the caching resolver, which may lead to name resolution failures in the delegated zone. If DNSSEC validation is enabled, this issue can make domains ending in .COM unavailable when the DS record for .COM is added to the DNS root zone on March 31st, 2011. An unpatched server which is affected by this issue can be restarted, thus re-enabling resolution of .COM domains. Configurations not using DNSSEC validations are not affected by this usse.
Family: unix Class: patch
Reference(s): DSA-2208-2
CVE-2011-0414
Version: 5
Platform(s): Debian GNU/Linux 5.0
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:12722
 
Oval ID: oval:org.mitre.oval:def:12722
Title: DSA-2130-1 bind9 -- several
Description: Several remote vulnerabilities have been discovered in BIND, an implementation of the DNS protocol suite. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2010-3762 When DNSSEC validation is enabled, BIND does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, which allows remote attackers to cause a denial of service via a DNS query. CVE-2010-3614 BIND does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which may lead to zone unavailability during rollovers. CVE-2010-3613 BIND does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service via a query for cached data. In addition, this security update improves compatibility with previously installed versions of the bind9 package. As a result, it is necessary to initiate the update with "apt-get dist-upgrade" instead of "apt-get update". For the stable distribution, these problems have been fixed in version 1:9.6.ESV.R3+dfsg-0+lenny1. For the upcoming stable distribution and the unstable distribution, these problems have been fixed in version 1:9.7.2.dfsg.P3-1. We recommend that you upgrade your bind9 packages.
Family: unix Class: patch
Reference(s): DSA-2130-1
CVE-2010-3762
CVE-2010-3614
CVE-2010-3613
Version: 7
Platform(s): Debian GNU/Linux 5.0
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:12791
 
Oval ID: oval:org.mitre.oval:def:12791
Title: DSA-2244-1 bind9 -- incorrect boundary condition
Description: It was discovered that BIND, an implementation of the DNS protocol, does not correctly process certain large RRSIG record sets in DNSSEC responses. The resulting assertion failure causes the name server process to crash, making name resolution unavailable. In addition, this update fixes handling of certain signed/unsigned zone combinations when a DLV service is used. Previously, data from certain affected zones could become unavailable from the resolver.
Family: unix Class: patch
Reference(s): DSA-2244-1
CVE-2011-1910
Version: 5
Platform(s): Debian GNU/Linux 5.0
Debian GNU/Linux 6.0
Debian GNU/kFreeBSD 6.0
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:12924
 
Oval ID: oval:org.mitre.oval:def:12924
Title: DSA-2208-1 bind9 -- denial of service
Description: It was discovered that BIND, a DNS server, contains a race condition when processing zones updates in an authoritative server, either through dynamic DNS updates or incremental zone transfer. Such an update while processing a query could result in deadlock and denial of service. In addition, this security update addresses a defect related to the processing of new DNSSEC DS records by the caching resolver, which may lead to name resolution failures in the delegated zone. If DNSSEC validation is enabled, this issue can make domains ending in .COM unavailable when the DS record for .COM is added to the DNS root zone on March 31st, 2011. An unpatched server which is affected by this issue can be restarted, thus re-enabling resolution of .COM domains. This workaround applies to the version in oldstable, too. Configurations not using DNSSEC validations are not affected by this second issue.
Family: unix Class: patch
Reference(s): DSA-2208-1
CVE-2011-0414
Version: 5
Platform(s): Debian GNU/Linux 6.0
Debian GNU/kFreeBSD 6.0
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13028
 
Oval ID: oval:org.mitre.oval:def:13028
Title: DSA-2272-1 bind9 -- denial of service
Description: It was discovered that BIND, a DNS server, does not correctly process certain UPDATE requests, resulting in a server crash and a denial of service. This vulnerability affects BIND installations even if they do not actually use dynamic DNS updates.
Family: unix Class: patch
Reference(s): DSA-2272-1
CVE-2011-2464
Version: 5
Platform(s): Debian GNU/Linux 5.0
Debian GNU/Linux 6.0
Debian GNU/kFreeBSD 6.0
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13154
 
Oval ID: oval:org.mitre.oval:def:13154
Title: USN-1139-1 -- bind9 vulnerabilities
Description: bind9: Internet Domain Name Server An attacker could send crafted input to Bind and cause it to crash.
Family: unix Class: patch
Reference(s): USN-1139-1
CVE-2010-3762
CVE-2011-1910
Version: 5
Platform(s): Ubuntu 10.10
Ubuntu 8.04
Ubuntu 10.04
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13160
 
Oval ID: oval:org.mitre.oval:def:13160
Title: USN-1025-1 -- bind9 vulnerabilities
Description: It was discovered that Bind would incorrectly allow a ncache entry and a rrsig for the same type. A remote attacker could exploit this to cause Bind to crash, resulting in a denial of service. It was discovered that Bind would incorrectly mark zone data as insecure when the zone is undergoing a key algorithm rollover
Family: unix Class: patch
Reference(s): USN-1025-1
CVE-2010-3613
CVE-2010-3614
Version: 5
Platform(s): Ubuntu 8.04
Ubuntu 10.10
Ubuntu 10.04
Ubuntu 9.10
Ubuntu 6.06
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13186
 
Oval ID: oval:org.mitre.oval:def:13186
Title: USN-1070-1 -- bind9 vulnerability
Description: It was discovered that Bind incorrectly handled IXFR transfers and dynamic updates while under heavy load when used as an authoritative server. A remote attacker could use this flaw to cause Bind to stop responding, resulting in a denial of service.
Family: unix Class: patch
Reference(s): USN-1070-1
CVE-2011-0414
Version: 5
Platform(s): Ubuntu 10.10
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13997
 
Oval ID: oval:org.mitre.oval:def:13997
Title: HP-UX Running BIND, Remote Denial of Service (DoS)
Description: Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request.
Family: unix Class: vulnerability
Reference(s): CVE-2011-2464
Version: 12
Platform(s): HP-UX 11
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:14181
 
Oval ID: oval:org.mitre.oval:def:14181
Title: USN-1163-1 -- bind9 vulnerability
Description: bind9: Internet Domain Name Server An attacker could send crafted input to Bind and cause it to crash.
Family: unix Class: patch
Reference(s): USN-1163-1
CVE-2011-2464
Version: 5
Platform(s): Ubuntu 11.04
Ubuntu 8.04
Ubuntu 10.04
Ubuntu 10.10
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:14343
 
Oval ID: oval:org.mitre.oval:def:14343
Title: HP-UX Running BIND, Remote Denial of Service (DoS)
Description: query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Family: unix Class: vulnerability
Reference(s): CVE-2011-4313
Version: 12
Platform(s): HP-UX 11
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:15046
 
Oval ID: oval:org.mitre.oval:def:15046
Title: DSA-2347-1 bind9 -- improper assert
Description: It was discovered that BIND, a DNS server, crashes while processing certain sequences of recursive DNS queries, leading to a denial of service. Authoritative-only server configurations are not affected by this issue.
Family: unix Class: patch
Reference(s): DSA-2347-1
CVE-2011-4313
Version: 7
Platform(s): Debian GNU/Linux 5.0
Debian GNU/Linux 6.0
Debian GNU/kFreeBSD 6.0
Product(s): bind9
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:15365
 
Oval ID: oval:org.mitre.oval:def:15365
Title: USN-1264-1 -- Bind vulnerability
Description: bind9: Internet Domain Name Server Bind could be made to crash if it received specially crafted network traffic.
Family: unix Class: patch
Reference(s): USN-1264-1
CVE-2011-4313
Version: 7
Platform(s): Ubuntu 11.04
Ubuntu 11.10
Ubuntu 8.04
Ubuntu 10.04
Ubuntu 10.10
Product(s): Bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19985
 
Oval ID: oval:org.mitre.oval:def:19985
Title: VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
Description: ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, which allows remote attackers to cause a denial of service (daemon crash) via a DNS query.
Family: unix Class: vulnerability
Reference(s): CVE-2010-3762
Version: 4
Platform(s): VMWare ESX Server 4.1
VMWare ESX Server 4.0
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20072
 
Oval ID: oval:org.mitre.oval:def:20072
Title: Multiple vulnerabilities in AIX BIND
Description: query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Family: unix Class: vulnerability
Reference(s): CVE-2011-4313
Version: 6
Platform(s): IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20346
 
Oval ID: oval:org.mitre.oval:def:20346
Title: VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
Description: named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3 does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which might allow remote attackers to cause a denial of service (DNSSEC validation error) by triggering a rollover.
Family: unix Class: vulnerability
Reference(s): CVE-2010-3614
Version: 4
Platform(s): VMWare ESX Server 4.1
VMWare ESX Server 4.0
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20446
 
Oval ID: oval:org.mitre.oval:def:20446
Title: VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm.
Description: named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data.
Family: unix Class: vulnerability
Reference(s): CVE-2010-3613
Version: 4
Platform(s): VMWare ESX Server 4.1
VMWare ESX Server 4.0
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20785
 
Oval ID: oval:org.mitre.oval:def:20785
Title: Denial of service vulnerability in BIND
Description: named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3 does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which might allow remote attackers to cause a denial of service (DNSSEC validation error) by triggering a rollover.
Family: unix Class: vulnerability
Reference(s): CVE-2010-3614
Version: 4
Platform(s): IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20922
 
Oval ID: oval:org.mitre.oval:def:20922
Title: Denial of service vulnerability in BIND
Description: named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data.
Family: unix Class: vulnerability
Reference(s): CVE-2010-3613
Version: 4
Platform(s): IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:21740
 
Oval ID: oval:org.mitre.oval:def:21740
Title: RHSA-2011:0845: bind security update (Important)
Description: Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service (assertion failure and daemon exit) via a negative response containing large RRSIG RRsets.
Family: unix Class: patch
Reference(s): RHSA-2011:0845-01
CVE-2011-1910
CESA-2011:0845-CentOS 5
Version: 6
Platform(s): Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 5
CentOS Linux 5
Product(s): bind97
bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:21944
 
Oval ID: oval:org.mitre.oval:def:21944
Title: RHSA-2011:1459: bind97 security update (Important)
Description: query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Family: unix Class: patch
Reference(s): RHSA-2011:1459-01
CESA-2011:1459
CVE-2011-4313
Version: 4
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
Product(s): bind97
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22006
 
Oval ID: oval:org.mitre.oval:def:22006
Title: RHSA-2011:0926: bind security update (Important)
Description: Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request.
Family: unix Class: patch
Reference(s): RHSA-2011:0926-02
CVE-2011-2464
CESA-2011:0926-CentOS 5
Version: 6
Platform(s): Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 5
CentOS Linux 5
Product(s): bind97
bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22113
 
Oval ID: oval:org.mitre.oval:def:22113
Title: RHSA-2011:1458: bind security update (Important)
Description: query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Family: unix Class: patch
Reference(s): RHSA-2011:1458-01
CESA-2011:1458
CVE-2011-4313
Version: 4
Platform(s): Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
CentOS Linux 5
CentOS Linux 6
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22234
 
Oval ID: oval:org.mitre.oval:def:22234
Title: RHSA-2010:0975: bind security update (Important)
Description: named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3 does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which might allow remote attackers to cause a denial of service (DNSSEC validation error) by triggering a rollover.
Family: unix Class: patch
Reference(s): RHSA-2010:0975-01
CVE-2010-3613
CVE-2010-3614
Version: 29
Platform(s): Red Hat Enterprise Linux 6
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22294
 
Oval ID: oval:org.mitre.oval:def:22294
Title: RHSA-2010:0976: bind security update (Important)
Description: ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, which allows remote attackers to cause a denial of service (daemon crash) via a DNS query.
Family: unix Class: patch
Reference(s): RHSA-2010:0976-01
CESA-2010:0976
CVE-2010-3613
CVE-2010-3614
CVE-2010-3762
Version: 42
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23144
 
Oval ID: oval:org.mitre.oval:def:23144
Title: ELSA-2010:0976: bind security update (Important)
Description: ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, which allows remote attackers to cause a denial of service (daemon crash) via a DNS query.
Family: unix Class: patch
Reference(s): ELSA-2010:0976-01
CVE-2010-3613
CVE-2010-3614
CVE-2010-3762
Version: 17
Platform(s): Oracle Linux 5
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23322
 
Oval ID: oval:org.mitre.oval:def:23322
Title: ELSA-2011:1459: bind97 security update (Important)
Description: query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Family: unix Class: patch
Reference(s): ELSA-2011:1459-01
CVE-2011-4313
Version: 6
Platform(s): Oracle Linux 5
Product(s): bind97
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23343
 
Oval ID: oval:org.mitre.oval:def:23343
Title: ELSA-2011:0926: bind security update (Important)
Description: Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request.
Family: unix Class: patch
Reference(s): ELSA-2011:0926-02
CVE-2011-2464
Version: 6
Platform(s): Oracle Linux 6
Product(s): bind97
bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23394
 
Oval ID: oval:org.mitre.oval:def:23394
Title: ELSA-2011:0845: bind security update (Important)
Description: Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service (assertion failure and daemon exit) via a negative response containing large RRSIG RRsets.
Family: unix Class: patch
Reference(s): ELSA-2011:0845-01
CVE-2011-1910
Version: 6
Platform(s): Oracle Linux 6
Product(s): bind97
bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23397
 
Oval ID: oval:org.mitre.oval:def:23397
Title: DEPRECATED: ELSA-2011:1458: bind security update (Important)
Description: query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Family: unix Class: patch
Reference(s): ELSA-2011:1458-01
CVE-2011-4313
Version: 7
Platform(s): Oracle Linux 5
Oracle Linux 6
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23440
 
Oval ID: oval:org.mitre.oval:def:23440
Title: ELSA-2010:0975: bind security update (Important)
Description: named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3 does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which might allow remote attackers to cause a denial of service (DNSSEC validation error) by triggering a rollover.
Family: unix Class: patch
Reference(s): ELSA-2010:0975-01
CVE-2010-3613
CVE-2010-3614
Version: 13
Platform(s): Oracle Linux 6
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23684
 
Oval ID: oval:org.mitre.oval:def:23684
Title: ELSA-2011:1458: bind security update (Important)
Description: query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Family: unix Class: patch
Reference(s): ELSA-2011:1458-01
CVE-2011-4313
Version: 6
Platform(s): Oracle Linux 5
Oracle Linux 6
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:27836
 
Oval ID: oval:org.mitre.oval:def:27836
Title: DEPRECATED: ELSA-2011-0845 -- bind security update (important)
Description: [32:9.7.3-2.1.P1] - update to 9.7.3-P1 (CVE-2011-1910)
Family: unix Class: patch
Reference(s): ELSA-2011-0845
CVE-2011-1910
Version: 4
Platform(s): Oracle Linux 5
Oracle Linux 6
Product(s): bind97
bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:27896
 
Oval ID: oval:org.mitre.oval:def:27896
Title: DEPRECATED: ELSA-2011-1459 -- bind97 security update (important)
Description: [32:9.7.0-6.P2.4] - fix DOS against recursive servers (#754398)
Family: unix Class: patch
Reference(s): ELSA-2011-1459
CVE-2011-4313
Version: 4
Platform(s): Oracle Linux 5
Product(s): bind97
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:27985
 
Oval ID: oval:org.mitre.oval:def:27985
Title: DEPRECATED: ELSA-2010-0975 -- bind security update (important)
Description: [32:9.7.0-5.P2.1] - fix CVE-2010-3613 and CVE-2010-3614
Family: unix Class: patch
Reference(s): ELSA-2010-0975
CVE-2010-3613
CVE-2010-3614
Version: 4
Platform(s): Oracle Linux 6
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:27999
 
Oval ID: oval:org.mitre.oval:def:27999
Title: DEPRECATED: ELSA-2011-0926 -- bind security update (important)
Description: [32:9.7.3-2.2.P3] - update to 9.7.3-P3 (CVE-2011-2464)
Family: unix Class: patch
Reference(s): ELSA-2011-0926
CVE-2011-2464
Version: 4
Platform(s): Oracle Linux 5
Oracle Linux 6
Product(s): bind97
bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:28078
 
Oval ID: oval:org.mitre.oval:def:28078
Title: DEPRECATED: ELSA-2011-1458 -- bind security update (important)
Description: [32:9.7.3-2.3.P3] - fix DOS against recursive servers (#754398) [32:9.7.3-2.2.P3] - update to 9.7.3-P3 (CVE-2011-2464) [32:9.7.3-2.1.P1] - update to 9.7.3-P1 (CVE-2011-1910)
Family: unix Class: patch
Reference(s): ELSA-2011-1458
CVE-2011-4313
Version: 4
Platform(s): Oracle Linux 5
Oracle Linux 6
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:28216
 
Oval ID: oval:org.mitre.oval:def:28216
Title: DEPRECATED: ELSA-2010-0976 -- bind security update (important)
Description: [30:9.3.6-4.P1.3] - fixes for CVE-2010-3762, CVE-2010-3613 and CVE-2010-3614
Family: unix Class: patch
Reference(s): ELSA-2010-0976
CVE-2010-3613
CVE-2010-3614
CVE-2010-3762
Version: 4
Platform(s): Oracle Linux 5
Product(s): bind
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:28361
 
Oval ID: oval:org.mitre.oval:def:28361
Title: HP-UX Running BIND Remote Denial of Service (DoS)
Description: Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service (assertion failure and daemon exit) via a negative response containing large RRSIG RRsets.
Family: unix Class: vulnerability
Reference(s): CVE-2011-1910
Version: 7
Platform(s): HP-UX 11
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 393

OpenVAS Exploits

Date Description
2012-12-31 Name : Fedora Update for bind FEDORA-2012-19822
File : nvt/gb_fedora_2012_19822_bind_fc16.nasl
2012-10-23 Name : Fedora Update for bind FEDORA-2012-15981
File : nvt/gb_fedora_2012_15981_bind_fc16.nasl
2012-10-03 Name : Fedora Update for bind FEDORA-2012-14030
File : nvt/gb_fedora_2012_14030_bind_fc16.nasl
2012-09-10 Name : Slackware Advisory SSA:2011-224-01 bind
File : nvt/esoft_slk_ssa_2011_224_01.nasl
2012-09-10 Name : Slackware Advisory SSA:2011-147-01 bind
File : nvt/esoft_slk_ssa_2011_147_01.nasl
2012-09-10 Name : Slackware Advisory SSA:2011-189-01 bind
File : nvt/esoft_slk_ssa_2011_189_01.nasl
2012-08-14 Name : Fedora Update for bind FEDORA-2012-11153
File : nvt/gb_fedora_2012_11153_bind_fc16.nasl
2012-08-10 Name : Gentoo Security Advisory GLSA 201206-01 (bind)
File : nvt/glsa_201206_01.nasl
2012-07-30 Name : CentOS Update for bind CESA-2011:1496 centos4 x86_64
File : nvt/gb_CESA-2011_1496_bind_centos4_x86_64.nasl
2012-07-30 Name : CentOS Update for bind97 CESA-2011:1459 centos5 x86_64
File : nvt/gb_CESA-2011_1459_bind97_centos5_x86_64.nasl
2012-07-30 Name : CentOS Update for bind CESA-2011:1458 centos5 x86_64
File : nvt/gb_CESA-2011_1458_bind_centos5_x86_64.nasl
2012-07-30 Name : CentOS Update for bind97 CESA-2011:0926 centos5 x86_64
File : nvt/gb_CESA-2011_0926_bind97_centos5_x86_64.nasl
2012-07-30 Name : CentOS Update for bind97 CESA-2011:0845 centos5 x86_64
File : nvt/gb_CESA-2011_0845_bind97_centos5_x86_64.nasl
2012-07-30 Name : CentOS Update for bind CESA-2010:1000 centos4 x86_64
File : nvt/gb_CESA-2010_1000_bind_centos4_x86_64.nasl
2012-06-19 Name : Fedora Update for bind FEDORA-2012-8962
File : nvt/gb_fedora_2012_8962_bind_fc15.nasl
2012-06-19 Name : Fedora Update for bind FEDORA-2012-8946
File : nvt/gb_fedora_2012_8946_bind_fc16.nasl
2012-04-02 Name : Fedora Update for bind FEDORA-2011-16057
File : nvt/gb_fedora_2011_16057_bind_fc16.nasl
2012-03-16 Name : VMSA-2011-0004.3 VMware ESX/ESXi SLPD denial of service vulnerability and ESX...
File : nvt/gb_VMSA-2011-0004.nasl
2012-02-11 Name : Debian Security Advisory DSA 2347-1 (bind9)
File : nvt/deb_2347_1.nasl
2011-12-02 Name : RedHat Update for bind RHSA-2011:1496-01
File : nvt/gb_RHSA-2011_1496-01_bind.nasl
2011-12-02 Name : CentOS Update for bind CESA-2011:1496 centos4 i386
File : nvt/gb_CESA-2011_1496_bind_centos4_i386.nasl
2011-11-28 Name : Fedora Update for bind FEDORA-2011-16002
File : nvt/gb_fedora_2011_16002_bind_fc14.nasl
2011-11-28 Name : Fedora Update for bind FEDORA-2011-16036
File : nvt/gb_fedora_2011_16036_bind_fc15.nasl
2011-11-21 Name : CentOS Update for bind CESA-2011:1458 centos5 i386
File : nvt/gb_CESA-2011_1458_bind_centos5_i386.nasl
2011-11-21 Name : CentOS Update for bind97 CESA-2011:1459 centos5 i386
File : nvt/gb_CESA-2011_1459_bind97_centos5_i386.nasl
2011-11-21 Name : Mandriva Update for bind MDVSA-2011:176-2 (bind)
File : nvt/gb_mandriva_MDVSA_2011_176_2.nasl
2011-11-18 Name : Mandriva Update for bind MDVSA-2011:176-1 (bind)
File : nvt/gb_mandriva_MDVSA_2011_176_1.nasl
2011-11-18 Name : RedHat Update for bind97 RHSA-2011:1459-01
File : nvt/gb_RHSA-2011_1459-01_bind97.nasl
2011-11-18 Name : Mandriva Update for bind MDVSA-2011:176 (bind)
File : nvt/gb_mandriva_MDVSA_2011_176.nasl
2011-11-18 Name : RedHat Update for bind RHSA-2011:1458-01
File : nvt/gb_RHSA-2011_1458-01_bind.nasl
2011-11-18 Name : Ubuntu Update for bind9 USN-1264-1
File : nvt/gb_ubuntu_USN_1264_1.nasl
2011-10-20 Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)
File : nvt/gb_macosx_su11-006.nasl
2011-08-18 Name : SuSE Update for bind SUSE-SA:2011:029
File : nvt/gb_suse_2011_029.nasl
2011-08-09 Name : CentOS Update for bind97 CESA-2011:0926 centos5 i386
File : nvt/gb_CESA-2011_0926_bind97_centos5_i386.nasl
2011-08-09 Name : CentOS Update for bind97 CESA-2011:0845 centos5 i386
File : nvt/gb_CESA-2011_0845_bind97_centos5_i386.nasl
2011-08-09 Name : CentOS Update for bind CESA-2010:0976 centos5 i386
File : nvt/gb_CESA-2010_0976_bind_centos5_i386.nasl
2011-08-03 Name : Debian Security Advisory DSA 2272-1 (bind9)
File : nvt/deb_2272_1.nasl
2011-08-03 Name : Debian Security Advisory DSA 2244-1 (bind9)
File : nvt/deb_2244_1.nasl
2011-08-03 Name : FreeBSD Ports: bind9-sdb-ldap, bind9-sdb-postgresql
File : nvt/freebsd_bind9-sdb-ldap.nasl
2011-08-03 Name : FreeBSD Security Advisory (FreeBSD-SA-11:02.bind.asc)
File : nvt/freebsdsa_bind10.nasl
2011-08-03 Name : FreeBSD Ports: bind98
File : nvt/freebsd_bind98.nasl
2011-08-03 Name : FreeBSD Ports: bind96
File : nvt/freebsd_bind96.nasl
2011-07-27 Name : Fedora Update for bind FEDORA-2011-9127
File : nvt/gb_fedora_2011_9127_bind_fc14.nasl
2011-07-22 Name : Mandriva Update for bind MDVSA-2011:115 (bind)
File : nvt/gb_mandriva_MDVSA_2011_115.nasl
2011-07-18 Name : Fedora Update for bind FEDORA-2011-9146
File : nvt/gb_fedora_2011_9146_bind_fc15.nasl
2011-07-12 Name : Fedora Update for bind FEDORA-2011-7617
File : nvt/gb_fedora_2011_7617_bind_fc15.nasl
2011-07-08 Name : RedHat Update for bind RHSA-2011:0926-01
File : nvt/gb_RHSA-2011_0926-01_bind.nasl
2011-07-08 Name : Ubuntu Update for bind9 USN-1163-1
File : nvt/gb_ubuntu_USN_1163_1.nasl
2011-06-20 Name : Fedora Update for bind FEDORA-2011-7602
File : nvt/gb_fedora_2011_7602_bind_fc14.nasl
2011-06-20 Name : Fedora Update for bind FEDORA-2011-7621
File : nvt/gb_fedora_2011_7621_bind_fc13.nasl
2011-06-06 Name : Mandriva Update for bind MDVSA-2011:104 (bind)
File : nvt/gb_mandriva_MDVSA_2011_104.nasl
2011-06-06 Name : RedHat Update for bind RHSA-2011:0845-01
File : nvt/gb_RHSA-2011_0845-01_bind.nasl
2011-06-06 Name : Ubuntu Update for bind9 USN-1139-1
File : nvt/gb_ubuntu_USN_1139_1.nasl
2011-05-12 Name : Debian Security Advisory DSA 2208-2 (bind9)
File : nvt/deb_2208_2.nasl
2011-05-12 Name : Debian Security Advisory DSA 2208-1 (bind9)
File : nvt/deb_2208_1.nasl
2011-05-05 Name : HP-UX Update for BIND HPSBUX02655
File : nvt/gb_hp_ux_HPSBUX02655.nasl
2011-02-28 Name : Ubuntu Update for bind9 vulnerability USN-1070-1
File : nvt/gb_ubuntu_USN_1070_1.nasl
2011-02-23 Name : ISC BIND 9 IXFR Transfer/DDNS Update Remote Denial of Service Vulnerability
File : nvt/gb_bind_46491.nasl
2011-01-31 Name : CentOS Update for bind CESA-2010:1000 centos4 i386
File : nvt/gb_CESA-2010_1000_bind_centos4_i386.nasl
2011-01-14 Name : ISC BIND 9 'RRSIG' Record Type Negative Cache Remote Denial of Service Vulner...
File : nvt/gb_bind_multiple_vuln_01_11.nasl
2011-01-14 Name : ISC BIND 9 < 9.7.2-P2 Multiple Vulnerabilities
File : nvt/gb_bind_9_7_2_P2.nasl
2010-12-28 Name : Mandriva Update for bind MDVSA-2010:253 (bind)
File : nvt/gb_mandriva_MDVSA_2010_253.nasl
2010-12-28 Name : RedHat Update for bind RHSA-2010:0976-01
File : nvt/gb_RHSA-2010_0976-01_bind.nasl
2010-12-28 Name : RedHat Update for bind RHSA-2010:1000-01
File : nvt/gb_RHSA-2010_1000-01_bind.nasl
2010-12-23 Name : Fedora Update for bind FEDORA-2010-18521
File : nvt/gb_fedora_2010_18521_bind_fc13.nasl
2010-12-23 Name : Fedora Update for bind FEDORA-2010-18469
File : nvt/gb_fedora_2010_18469_bind_fc14.nasl
2010-12-23 Name : Fedora Update for bind-dyndb-ldap FEDORA-2010-18521
File : nvt/gb_fedora_2010_18521_bind-dyndb-ldap_fc13.nasl
2010-12-23 Name : Fedora Update for dnsperf FEDORA-2010-18521
File : nvt/gb_fedora_2010_18521_dnsperf_fc13.nasl
2010-12-09 Name : Ubuntu Update for bind9 vulnerabilities USN-1025-1
File : nvt/gb_ubuntu_USN_1025_1.nasl
2010-12-02 Name : ISC BIND 'allow-query' Zone ACL Security Bypass Vulnerability
File : nvt/gb_bind_45134.nasl
2010-09-30 Name : ISC BIND Denial Of Service and Security Bypass Vulnerability
File : nvt/gb_bind_43573.nasl
0000-00-00 Name : FreeBSD Ports: bind96
File : nvt/freebsd_bind960.nasl
0000-00-00 Name : Slackware Advisory SSA:2010-350-01 bind
File : nvt/esoft_slk_ssa_2010_350_01.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
77159 ISC BIND Recursive Query Parsing Remote DoS

ISC BIND 9 contains a flaw that may allow a remote denial of service. The issue is triggered when specially crafted recursive queries occur, and will result in loss of availability for the service.
73605 ISC BIND UPDATE Request Parsing Remote DoS

73604 ISC BIND Response Policy Zones (RPZ) DNAME / CNAME Parsing Remote DoS

72540 ISC BIND Caching Resolver Large RRSIG RRsets Negative Caching Remote DoS

72539 ISC BIND Authoritative Server Crafted IXFR / DDNS Query Update Deadlock DoS

69568 ISC BIND named allow-query ACL Restriction Bypass

ISC BIND named contains a flaw related to the allowing of queries. If the 'allow-query' ACL is not set properly in the zone statement, it does not check the 'view' or 'global' options before defaulting to allowing queries. This issue may allow a remote attacker to bypass query restrictions.
69559 ISC BIND named Key Algorithm Rollover Weakness

ISC BIND named contains a flaw when acting as a DNSSEC validating resolver. The issue is triggered when querying a zone undergoing a key algorithm rollover. This may allow a remote attacker to mark certain zone data as insecure.
69558 ISC BIND named RRSIG Negative Caching DoS

ISC BIND contains a flaw that may allow a remote denial of service. The issue is triggered when the named program does not properly clear matching RRSIG records from the cache when negatively caching a 'NO DATA'. This can be exploited to result in loss of availability.
68271 ISC BIND DNSSEC Query Validation Response Signature Handling Remote DoS

Information Assurance Vulnerability Management (IAVM)

Date Description
2011-05-12 IAVM : 2011-A-0066 - Multiple Vulnerabilities in VMware Products
Severity : Category I - VMSKEY : V0027158

Snort® IPS/IDS

Date Description
2014-01-10 ISC BIND DNSSEC authority response record overflow attempt
RuleID : 21421 - Revision : 7 - Type : PROTOCOL-DNS
2014-01-10 ISC BIND DNSSEC authority response record overflow attempt
RuleID : 19125 - Revision : 5 - Type : PROTOCOL-DNS

Nessus® Vulnerability Scanner

Date Description
2017-04-21 Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2017-0066.nasl - Type : ACT_GATHER_INFO
2016-03-04 Name : The remote VMware ESX / ESXi host is missing a security-related patch.
File : vmware_VMSA-2011-0004_remote.nasl - Type : ACT_GATHER_INFO
2015-09-18 Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL15172.nasl - Type : ACT_GATHER_INFO
2015-01-19 Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_bind_20111202.nasl - Type : ACT_GATHER_INFO
2014-10-10 Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL12985.nasl - Type : ACT_GATHER_INFO
2014-10-10 Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL12986.nasl - Type : ACT_GATHER_INFO
2014-10-10 Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL14204.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : openSUSE-2011-13.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_3_bind-101207.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_3_bind-110224.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_3_bind-110531.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_3_bind-110706.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_3_bind-111117.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_4_bind-110531.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_4_bind-110706.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : suse_11_4_bind-111117.nasl - Type : ACT_GATHER_INFO
2013-09-04 Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2011-24.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0975.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0976.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-1000.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0845.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0926.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-1458.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-1459.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-1496.nasl - Type : ACT_GATHER_INFO
2013-06-29 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2011-0845.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV01118.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV01119.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV09491.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV09978.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV10049.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV11742.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV11743.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IV11744.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ99391.nasl - Type : ACT_GATHER_INFO
2012-09-20 Name : The remote host is missing a Mac OS X update that fixes multiple security vul...
File : macosx_10_7_5.nasl - Type : ACT_GATHER_INFO
2012-09-20 Name : The remote host is missing a Mac OS X update that fixes several security issues.
File : macosx_10_8_2.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20101213_bind_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20101220_bind_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110531_bind97_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110531_bind_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110707_bind_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20111117_bind97_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20111117_bind_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20111129_bind_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-06-21 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201206-01.nasl - Type : ACT_GATHER_INFO
2012-03-06 Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHNE_42727.nasl - Type : ACT_GATHER_INFO
2011-12-13 Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_bind-111121.nasl - Type : ACT_GATHER_INFO
2011-12-13 Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_bind-7551.nasl - Type : ACT_GATHER_INFO
2011-12-13 Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_bind-7851.nasl - Type : ACT_GATHER_INFO
2011-11-30 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2011-1496.nasl - Type : ACT_GATHER_INFO
2011-11-30 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-1496.nasl - Type : ACT_GATHER_INFO
2011-11-28 Name : The remote Fedora host is missing a security update.
File : fedora_2011-16002.nasl - Type : ACT_GATHER_INFO
2011-11-28 Name : The remote Fedora host is missing a security update.
File : fedora_2011-16036.nasl - Type : ACT_GATHER_INFO
2011-11-22 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2011-1458.nasl - Type : ACT_GATHER_INFO
2011-11-22 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2011-1459.nasl - Type : ACT_GATHER_INFO
2011-11-22 Name : The remote Fedora host is missing a security update.
File : fedora_2011-16057.nasl - Type : ACT_GATHER_INFO
2011-11-18 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-1458.nasl - Type : ACT_GATHER_INFO
2011-11-18 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-1459.nasl - Type : ACT_GATHER_INFO
2011-11-17 Name : The remote name server may be affected by a denial of service vulnerability.
File : bind9_981_p1.nasl - Type : ACT_GATHER_INFO
2011-11-17 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2347.nasl - Type : ACT_GATHER_INFO
2011-11-17 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_90cc149410ac11e1b3ec0024e830109b.nasl - Type : ACT_GATHER_INFO
2011-11-17 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2011-176.nasl - Type : ACT_GATHER_INFO
2011-11-17 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1264-1.nasl - Type : ACT_GATHER_INFO
2011-10-13 Name : The remote host is missing a Mac OS X update that fixes several security issues.
File : macosx_10_7_2.nasl - Type : ACT_GATHER_INFO
2011-10-13 Name : The remote host is missing a Mac OS X update that fixes several security issues.
File : macosx_SecUpd2011-006.nasl - Type : ACT_GATHER_INFO
2011-08-15 Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2011-224-01.nasl - Type : ACT_GATHER_INFO
2011-07-28 Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2011-189-01.nasl - Type : ACT_GATHER_INFO
2011-07-25 Name : The remote Fedora host is missing a security update.
File : fedora_2011-9127.nasl - Type : ACT_GATHER_INFO
2011-07-21 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2011-115.nasl - Type : ACT_GATHER_INFO
2011-07-12 Name : The remote Fedora host is missing a security update.
File : fedora_2011-9146.nasl - Type : ACT_GATHER_INFO
2011-07-11 Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_bind-110706.nasl - Type : ACT_GATHER_INFO
2011-07-08 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2011-0926.nasl - Type : ACT_GATHER_INFO
2011-07-08 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-0926.nasl - Type : ACT_GATHER_INFO
2011-07-07 Name : The remote name server may be affected by a denial of service vulnerability.
File : bind9_980_p3.nasl - Type : ACT_GATHER_INFO
2011-07-07 Name : The remote name server may be affected by a denial of service vulnerability.
File : bind9_980_p4.nasl - Type : ACT_GATHER_INFO
2011-07-06 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2272.nasl - Type : ACT_GATHER_INFO
2011-07-06 Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4ccee784a72111e089b4001ec9578670.nasl - Type : ACT_GATHER_INFO
2011-07-06 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_fd64188da71d11e089b4001ec9578670.nasl - Type : ACT_GATHER_INFO
2011-07-06 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1163-1.nasl - Type : ACT_GATHER_INFO
2011-06-13 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1139-1.nasl - Type : ACT_GATHER_INFO
2011-06-12 Name : The remote Fedora host is missing a security update.
File : fedora_2011-7602.nasl - Type : ACT_GATHER_INFO
2011-06-12 Name : The remote Fedora host is missing a security update.
File : fedora_2011-7621.nasl - Type : ACT_GATHER_INFO
2011-06-10 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2244.nasl - Type : ACT_GATHER_INFO
2011-06-07 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_1e1421f08d6f11e089b4001ec9578670.nasl - Type : ACT_GATHER_INFO
2011-06-03 Name : The remote Fedora host is missing a security update.
File : fedora_2011-7617.nasl - Type : ACT_GATHER_INFO
2011-06-02 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2011-104.nasl - Type : ACT_GATHER_INFO
2011-06-01 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2011-0845.nasl - Type : ACT_GATHER_INFO
2011-05-31 Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2011-147-01.nasl - Type : ACT_GATHER_INFO
2011-05-31 Name : The remote name server may be affected by a denial of service vulnerability.
File : bind9_980_p2.nasl - Type : ACT_GATHER_INFO
2011-05-28 Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2010-350-01.nasl - Type : ACT_GATHER_INFO
2011-05-05 Name : The remote openSUSE host is missing a security update.
File : suse_11_2_bind-101207.nasl - Type : ACT_GATHER_INFO
2011-03-31 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2208.nasl - Type : ACT_GATHER_INFO
2011-03-08 Name : The remote VMware ESXi / ESX host is missing one or more security-related pat...
File : vmware_VMSA-2011-0004.nasl - Type : ACT_GATHER_INFO
2011-02-24 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1070-1.nasl - Type : ACT_GATHER_INFO
2011-02-23 Name : The remote name server is affected by a denial of service vulnerability.
File : bind9_973.nasl - Type : ACT_GATHER_INFO
2011-01-28 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2010-1000.nasl - Type : ACT_GATHER_INFO
2010-12-21 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2010-1000.nasl - Type : ACT_GATHER_INFO
2010-12-15 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2010-253.nasl - Type : ACT_GATHER_INFO
2010-12-14 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2010-0976.nasl - Type : ACT_GATHER_INFO
2010-12-14 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2010-0975.nasl - Type : ACT_GATHER_INFO
2010-12-14 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2010-0976.nasl - Type : ACT_GATHER_INFO
2010-12-12 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2130.nasl - Type : ACT_GATHER_INFO
2010-12-09 Name : The remote Fedora host is missing a security update.
File : fedora_2010-18469.nasl - Type : ACT_GATHER_INFO
2010-12-08 Name : The remote Fedora host is missing one or more security updates.
File : fedora_2010-18521.nasl - Type : ACT_GATHER_INFO
2010-12-03 Name : The remote name server is affected by multiple vulnerabilities.
File : bind9_972_p3.nasl - Type : ACT_GATHER_INFO
2010-12-02 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1025-1.nasl - Type : ACT_GATHER_INFO
2010-10-06 Name : The remote name server is affected by multiple vulnerabilities.
File : bind9_972_p2.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2014-02-17 11:37:20
  • Multiple Updates