oval:org.mitre.oval:def:22841

Definition Id: oval:org.mitre.oval:def:22841

Oval ID:	oval:org.mitre.oval:def:22841
Title:	ELSA-2009:1620: bind security update (Moderate)
Description:	Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1620-01 CVE-2009-4022	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	bind
Definition Synopsis:
Oracle Linux 5.x rpm test bind-libbind-devel is earlier than 30:9.3.6-4.P1.el5_4.1 AND bind-devel is earlier than 30:9.3.6-4.P1.el5_4.1 AND bind-chroot is earlier than 30:9.3.6-4.P1.el5_4.1 AND bind-utils is earlier than 30:9.3.6-4.P1.el5_4.1 AND bind-sdb is earlier than 30:9.3.6-4.P1.el5_4.1 AND bind is earlier than 30:9.3.6-4.P1.el5_4.1 AND bind-libs is earlier than 30:9.3.6-4.P1.el5_4.1 AND caching-nameserver is earlier than 30:9.3.6-4.P1.el5_4.1

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:22841