[SECURITY] [DLA 308-1] bind9 security update

2015-09-0923:55:46

lists.debian.org

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

7.6

Confidence

High

EPSS

0.966

Percentile

99.6%

JSON

Package : bind9
Version : 1:9.7.3.dfsg-1~squeeze17
CVE ID : CVE-2015-5722

Hanno Böck from the Fuzzing Project discovered that incorrect validation of
DNSSEC-signed records in the Bind DNS server could result in denial of service.

For Debian 6 “Squeeze”, this issue has been fixed in bind9 version
1:9.7.3.dfsg-1~squeeze17. We recomend you to upgrade your bind9 packages.

Learn more about the Debian Long Term Support (LTS) Project and how to
apply these updates at: https://wiki.debian.org/LTS/

Attachment:
signature.asc
Description: Digital signature

OSVersionArchitecturePackageVersionFilename
Debian7kfreebsd-amd64lwresd< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7lwresd_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_kfreebsd-amd64.deb
Debian7powerpcbind9-host< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7bind9-host_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_powerpc.deb
Debian8allhost< 1:9.9.5.dfsg-9+deb8u3host_1:9.9.5.dfsg-9+deb8u3_all.deb
Debian7ia64bind9< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7bind9_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_ia64.deb
Debian8mipselbind9< 1:9.9.5.dfsg-9+deb8u3bind9_1:9.9.5.dfsg-9+deb8u3_mipsel.deb
Debian7powerpclibisccc80< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7libisccc80_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_powerpc.deb
Debian8allbind9-doc< 1:9.9.5.dfsg-9+deb8u3bind9-doc_1:9.9.5.dfsg-9+deb8u3_all.deb
Debian8powerpclibisccfg-export90-udeb< 1:9.9.5.dfsg-9+deb8u3libisccfg-export90-udeb_1:9.9.5.dfsg-9+deb8u3_powerpc.deb
Debian7amd64libisccc80< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7libisccc80_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_amd64.deb
Debian8armellibbind9-90< 1:9.9.5.dfsg-9+deb8u3libbind9-90_1:9.9.5.dfsg-9+deb8u3_armel.deb

OS	Version	Architecture	Package	Version	Filename
Debian	7	kfreebsd-amd64	lwresd	< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7	lwresd_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_kfreebsd-amd64.deb
Debian	7	powerpc	bind9-host	< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7	bind9-host_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_powerpc.deb
Debian	8	all	host	< 1:9.9.5.dfsg-9+deb8u3	host_1:9.9.5.dfsg-9+deb8u3_all.deb
Debian	7	ia64	bind9	< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7	bind9_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_ia64.deb
Debian	8	mipsel	bind9	< 1:9.9.5.dfsg-9+deb8u3	bind9_1:9.9.5.dfsg-9+deb8u3_mipsel.deb
Debian	7	powerpc	libisccc80	< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7	libisccc80_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_powerpc.deb
Debian	8	all	bind9-doc	< 1:9.9.5.dfsg-9+deb8u3	bind9-doc_1:9.9.5.dfsg-9+deb8u3_all.deb
Debian	8	powerpc	libisccfg-export90-udeb	< 1:9.9.5.dfsg-9+deb8u3	libisccfg-export90-udeb_1:9.9.5.dfsg-9+deb8u3_powerpc.deb
Debian	7	amd64	libisccc80	< 1:9.8.4.dfsg.P1-6+nmu2+deb7u7	libisccc80_1:9.8.4.dfsg.P1-6+nmu2+deb7u7_amd64.deb
Debian	8	armel	libbind9-90	< 1:9.9.5.dfsg-9+deb8u3	libbind9-90_1:9.9.5.dfsg-9+deb8u3_armel.deb