Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201610-07
HistoryOct 11, 2016 - 12:00 a.m.

BIND: Multiple vulnerabilities

2016-10-1100:00:00
Gentoo Foundation
security.gentoo.org
31

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

0.972 High

EPSS

Percentile

99.8%

JSON

Background

BIND (Berkeley Internet Name Domain) is a Name Server.

Description

Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could cause a Denial of Service condition through multiple attack vectors.

Workaround

There is no known workaround at this time.

Resolution

All BIND users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-dns/bind-9.10.4_p3"
OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-dns/bind< 9.10.4_p3UNKNOWN

Related

nessus 68
ibm 6
fedora 8
openvas 47
mageia 3
archlinux 3
oraclelinux 9
amazon 2
slackware 2
osv 4
ubuntu 2
suse 10
centos 3
redhat 4
cloudfoundry 1
veracode 3
debian 5
aix 2
threatpost 1
freebsd_advisory 1
f5 3
freebsd 1
cve 1
prion 3
checkpoint_advisories 1
debiancve 2
ubuntucve 1
cvelist 2
nvd 1
nessus
nessus
GLSA-201610-07 : BIND: Multiple vulnerabilities
2016-10-12 00:00:00
Fedora 24 : bind-9.10.3-12.P4.fc24 (2016-75f31fbb0a)
2016-03-28 00:00:00
Fedora 22 : bind-9.10.3-9.P4.fc22 (2016-364c0a9df4)
2016-04-05 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in ISC Bind affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance (CVE-2016-1286, CVE-2016-2088, CVE-2016-1285)
2018-06-17 22:33:02
Security Bulletin: IBM i is affected by networking BIND vulnerabilities
2019-12-18 14:26:38
Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2016-2775, CVE-2016-2776, CVE-2016-8864 and CVE-2016-6170)
2019-12-18 14:26:38
fedora
fedora
[SECURITY] Fedora 22 Update: bind-9.10.3-9.P4.fc22
2016-04-02 04:18:18
[SECURITY] Fedora 24 Update: bind-9.10.3-12.P4.fc24
2016-03-27 00:52:00
[SECURITY] Fedora 23 Update: bind-9.10.3-12.P4.fc23
2016-03-13 23:56:28
openvas
openvas
Fedora Update for bind FEDORA-2016-75
2016-04-11 00:00:00
Fedora Update for bind FEDORA-2016-364
2016-04-11 00:00:00
Mageia: Security Advisory (MGASA-2016-0107)
2016-03-14 00:00:00
mageia
mageia
Updated bind packages fix security vulnerability
2016-03-11 02:37:43
Updated bind packages fix security vulnerability
2016-01-20 20:53:26
Updated bind packages fix security vulnerability
2016-10-04 15:20:54
archlinux
archlinux
bind: denial of service
2016-03-12 00:00:00
bind: denial of service
2016-01-21 00:00:00
bind: denial of service
2016-03-09 00:00:00
oraclelinux
oraclelinux
bind security update
2016-11-09 00:00:00
bind97 security update
2016-03-16 00:00:00
bind security update
2016-03-16 00:00:00
amazon
amazon
Medium: bind
2016-01-19 12:00:00
Important: bind
2016-03-10 16:30:00
slackware
slackware
[slackware-security] bind
2016-02-23 19:50:34
[slackware-security] bind
2016-03-10 03:24:19
osv
osv
bind9 vulnerabilities
2022-11-29 12:09:33
bind9 - security update
2016-09-27 00:00:00
bind9 - security update
2016-10-05 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2022-11-29 00:00:00
Bind vulnerabilities
2016-03-09 00:00:00
suse
suse
Security update for bind (important)
2016-03-18 20:20:12
Security update for bind (important)
2016-03-19 12:13:37
Security update for bind (important)
2016-03-15 21:12:58
centos
centos
bind, caching security update
2016-03-16 13:43:49
bind97 security update
2016-03-16 14:18:59
bind, caching security update
2016-01-27 13:24:33
redhat
redhat
(RHSA-2016:0562) Important: bind security update
2016-03-31 00:00:00
(RHSA-2016:0601) Important: bind security update
2016-04-06 00:00:00
(RHSA-2016:0458) Important: bind97 security update
2016-03-16 00:00:00
cloudfoundry
cloudfoundry
USN-2925-1 Bind9 vulnerabilities | Cloud Foundry
2016-03-24 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:27:43
Denial Of Service (DoS)
2023-08-15 15:53:05
Denial Of Service (DoS)
2019-01-15 09:10:03
debian
debian
[SECURITY] [DLA 645-1] bind9 security update
2016-10-05 17:44:33
[SECURITY] [DSA 3680-1] bind9 security update
2016-09-27 18:52:22
[SECURITY] [DSA 3511-1] bind9 security update
2016-03-09 20:33:07
aix
aix
Vulnerabilities in BIND impact AIX,Vulnerabilities in BIND impact VIOS
2016-11-18 08:19:36
Vulnerabilities in BIND affects AIX,Vulnerabilities in BIND affects VIOS,Vulnerability in BIND affects AIX
2016-06-17 08:19:25
threatpost
threatpost
ISC Patches Critical Error Condition in BIND
2016-09-28 16:29:53
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:13.bind
2016-03-10 00:00:00
f5
f5
SOL86533083 - BIND vulnerability CVE-2015-8705
2016-01-19 00:00:00
K86533083 : BIND vulnerability CVE-2015-8705
2016-01-20 00:00:00
K53445000 : BIND vulnerability CVE-2015-8704
2016-01-25 00:00:00
freebsd
freebsd
bind -- denial of service vulnerability
2016-01-19 00:00:00
cve
cve
CVE-2015-8705
2016-01-20 15:59:01
prion
prion
Code injection
2016-07-06 14:59:00
Authentication flaw
2016-01-20 15:59:00
Authentication flaw
2016-01-20 15:59:00
checkpoint_advisories
checkpoint_advisories
ISC BIND buffer.c REQUIRE Assertion Failure Denial of Service (CVE-2015-8705)
2016-04-12 00:00:00
debiancve
debiancve
CVE-2015-8705
2016-01-20 15:59:01
CVE-2015-8704
2016-01-20 15:59:00
ubuntucve
ubuntucve
CVE-2015-8705
2016-01-19 00:00:00
cvelist
cvelist
CVE-2015-8705
2016-01-20 15:00:00
CVE-2015-8704
2016-01-20 15:00:00
nvd
nvd
CVE-2015-8705
2016-01-20 15:59:01

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

0.972 High

EPSS

Percentile

99.8%

JSON
Related for GLSA-201610-07
nessus68ibm6fedora8openvas47mageia3archlinux3oraclelinux9amazon2slackware2osv4ubuntu2suse10centos3redhat4cloudfoundry1veracode3debian5aix2threatpost1freebsd_advisory1f53freebsd1cve1prion3checkpoint_advisories1debiancve2ubuntucve1cvelist2nvd1