Lucene search
Ubuntu Security Notice (C) 2017-2024 Canonical, Inc. / NASL script (C) 2017-2024 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-3201-1.NASLHistoryFeb 17, 2017 - 12:00 a.m.
Ubuntu 14.04 LTS / 16.04 LTS : Bind vulnerabilities (USN-3201-1)
2017-02-1700:00:00
Ubuntu Security Notice (C) 2017-2024 Canonical, Inc. / NASL script (C) 2017-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
37
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.9
Confidence
High
EPSS
0.07
Percentile
94.0%
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3201-1 advisory.
It was discovered that Bind incorrectly handled rewriting certain query responses when using both DNS64 and RPZ. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service.
Tenable has extracted the preceding description block directly from the Ubuntu security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-3201-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('compat.inc');
if (description)
{
script_id(97223);
script_version("3.12");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/27");
script_cve_id("CVE-2017-3135");
script_xref(name:"USN", value:"3201-1");
script_name(english:"Ubuntu 14.04 LTS / 16.04 LTS : Bind vulnerabilities (USN-3201-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced
in the USN-3201-1 advisory.
It was discovered that Bind incorrectly handled rewriting certain query responses when using both DNS64
and RPZ. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of
service.
Tenable has extracted the preceding description block directly from the Ubuntu security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-3201-1");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-3135");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/01/16");
script_set_attribute(attribute:"patch_publication_date", value:"2017/02/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/02/17");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:bind9");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:bind9-host");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:bind9utils");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsutils");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:host");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind-export-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind9-140");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libbind9-90");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdns-export162");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdns-export162-udeb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdns100");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdns162");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libirs-export141");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libirs-export141-udeb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libirs141");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisc-export160");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisc-export160-udeb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisc160");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisc95");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc-export140");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc-export140-udeb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc140");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccc90");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccfg-export140");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccfg-export140-udeb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccfg140");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libisccfg90");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:liblwres141");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:liblwres90");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:lwresd");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2017-2024 Canonical, Inc. / NASL script (C) 2017-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release || '16.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04 / 16.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var pkgs = [
{'osver': '14.04', 'pkgname': 'bind9', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'bind9-host', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'bind9utils', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'dnsutils', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'host', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'libbind-dev', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'libbind9-90', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'libdns100', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'libisc95', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'libisccc90', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'libisccfg90', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'liblwres90', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '14.04', 'pkgname': 'lwresd', 'pkgver': '1:9.9.5.dfsg-3ubuntu0.13'},
{'osver': '16.04', 'pkgname': 'bind9', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'bind9-host', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'bind9utils', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'dnsutils', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'host', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libbind-dev', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libbind-export-dev', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libbind9-140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libdns-export162', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libdns-export162-udeb', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libdns162', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libirs-export141', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libirs-export141-udeb', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libirs141', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisc-export160', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisc-export160-udeb', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisc160', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisccc-export140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisccc-export140-udeb', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisccc140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisccfg-export140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisccfg-export140-udeb', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'libisccfg140', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'liblwres141', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'},
{'osver': '16.04', 'pkgname': 'lwresd', 'pkgver': '1:9.10.3.dfsg.P4-8ubuntu1.5'}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var osver = NULL;
var pkgname = NULL;
var pkgver = NULL;
if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
if (osver && pkgname && pkgver) {
if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
}
}
if (flag)
{
var extra = '';
extra += ubuntu_report_get();
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : extra
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bind9 / bind9-host / bind9utils / dnsutils / host / libbind-dev / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | libdns162 | p-cpe:/a:canonical:ubuntu_linux:libdns162 |
| canonical | ubuntu_linux | libisccc-export140-udeb | p-cpe:/a:canonical:ubuntu_linux:libisccc-export140-udeb |
| canonical | ubuntu_linux | libdns100 | p-cpe:/a:canonical:ubuntu_linux:libdns100 |
| canonical | ubuntu_linux | liblwres141 | p-cpe:/a:canonical:ubuntu_linux:liblwres141 |
| canonical | ubuntu_linux | libbind-export-dev | p-cpe:/a:canonical:ubuntu_linux:libbind-export-dev |
| canonical | ubuntu_linux | libbind9-140 | p-cpe:/a:canonical:ubuntu_linux:libbind9-140 |
| canonical | ubuntu_linux | libisccc-export140 | p-cpe:/a:canonical:ubuntu_linux:libisccc-export140 |
| canonical | ubuntu_linux | libdns-export162-udeb | p-cpe:/a:canonical:ubuntu_linux:libdns-export162-udeb |
| canonical | ubuntu_linux | libisccfg-export140-udeb | p-cpe:/a:canonical:ubuntu_linux:libisccfg-export140-udeb |
| canonical | ubuntu_linux | libisc-export160-udeb | p-cpe:/a:canonical:ubuntu_linux:libisc-export160-udeb |
Related
debian
debian
[SECURITY] [DLA 843-1] bind9 security update
2017-02-28 21:18:57
[SECURITY] [DSA 3795-1] bind9 security update
2017-02-26 02:45:32
[SECURITY] [DSA 3795-1] bind9 security update
2017-02-26 02:45:32
threatpost
threatpost
High Severity BIND Vulnerability Can Lead to A Crash
2017-02-09 13:13:41
altlinux
altlinux
Security fix for the ALT Linux 9 package bind version 9.10.4-alt2
2017-02-08 00:00:00
Security fix for the ALT Linux 8 package bind version 9.10.4-alt2
2017-02-08 00:00:00
nessus
nessus
RHEL 7 : bind (RHSA-2017:0276)
2017-02-16 00:00:00
SUSE SLES11 Security Update : bind (SUSE-SU-2017:0595-1)
2017-03-03 00:00:00
Juniper Junos SRX, vSRX, and J-Series ISC BIND DoS (JSA10799)
2017-07-31 00:00:00
openvas
openvas
RedHat Update for bind RHSA-2017:0276-01
2017-02-16 00:00:00
Fedora Update for bind FEDORA-2017-2b46c8b6c2
2017-02-20 00:00:00
Fedora Update for bind FEDORA-2017-27099c270a
2017-02-20 00:00:00
ubuntucve
ubuntucve
CVE-2017-3135
2017-02-09 00:00:00
oraclelinux
oraclelinux
bind security update
2017-02-15 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: bind-9.10.4-3.P6.fc24
2017-02-19 22:48:18
[SECURITY] Fedora 25 Update: bind-9.10.4-4.P6.fc25
2017-02-14 15:52:13
[SECURITY] Fedora 25 Update: bind99-9.9.9-4.P6.fc25
2017-03-05 02:52:48
cve
cve
CVE-2017-3135
2019-01-16 20:29:00
centos
centos
bind security update
2017-02-15 14:49:31
redhatcve
redhatcve
CVE-2017-3135
2017-02-09 04:48:07
nvd
nvd
CVE-2017-3135
2019-01-16 20:29:00
alpinelinux
alpinelinux
CVE-2017-3135
2019-01-16 20:29:00
cvelist
cvelist
CVE-2017-3135 Combination of DNS64 and RPZ Can Lead to Crash
2017-02-08 00:00:00
redhat
redhat
(RHSA-2017:0276) Moderate: bind security update
2017-02-15 12:15:37
slackware
slackware
[slackware-security] bind
2017-02-10 20:40:38
ibm
ibm
prion
prion
Design/Logic Flaw
2019-01-16 20:29:00
cloudfoundry
cloudfoundry
USN-3201-1: Bind vulnerabilities | Cloud Foundry
2017-03-31 00:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND DNS64 and RPZ Query Processing Denial of Service (CVE-2017-3135)
2017-05-28 00:00:00
archlinux
archlinux
[ASA-201702-8] bind: denial of service
2017-02-09 00:00:00
osv
osv
CVE-2017-3135
2019-01-16 20:29:00
bind9 - security update
2017-02-26 00:00:00
bind9 - security update
2017-02-28 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2017-02-16 00:00:00
debiancve
debiancve
CVE-2017-3135
2019-01-16 20:29:00
f5
f5
K80533167 : BIND vulnerability CVE-2017-3135
2017-02-23 00:00:00
gentoo
gentoo
BIND: Multiple vulnerabilities
2017-08-17 00:00:00
mageia
mageia
Updated bind packages fix security vulnerability
2017-12-31 15:00:06
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.9
Confidence
High
EPSS
0.07
Percentile
94.0%
Related for UBUNTU_USN-3201-1.NASL