Lucene search
HistoryDec 16, 2015 - 3:59 p.m.
CVE-2015-8461
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
7.3
Confidence
High
EPSS
0.123
Percentile
95.4%
Race condition in resolver.c in named in ISC BIND 9.9.8 before 9.9.8-P2 and 9.10.3 before 9.10.3-P2 allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via unspecified vectors.
Affected configurations
Node
iscbindMatch8.4.7
ORiscbindMatch9.0
ORiscbindMatch9.0.1
ORiscbindMatch9.1
ORiscbindMatch9.1.1
ORiscbindMatch9.1.2
ORiscbindMatch9.1.3
ORiscbindMatch9.2
ORiscbindMatch9.2.0
ORiscbindMatch9.2.1
ORiscbindMatch9.2.2
ORiscbindMatch9.2.2p3
ORiscbindMatch9.2.3
ORiscbindMatch9.2.4
ORiscbindMatch9.2.5
ORiscbindMatch9.2.6
ORiscbindMatch9.2.7
ORiscbindMatch9.3
ORiscbindMatch9.3.0
ORiscbindMatch9.3.1
ORiscbindMatch9.3.2
ORiscbindMatch9.3.3
ORiscbindMatch9.4
ORiscbindMatch9.4.0
ORiscbindMatch9.4.0rc1
ORiscbindMatch9.4.1
ORiscbindMatch9.4.2
ORiscbindMatch9.4.3
ORiscbindMatch9.4.3rc1
ORiscbindMatch9.5
ORiscbindMatch9.5.0
ORiscbindMatch9.5.0rc1
ORiscbindMatch9.5.1
ORiscbindMatch9.5.1rc1
ORiscbindMatch9.5.1rc2
ORiscbindMatch9.5.2
ORiscbindMatch9.5.2rc1
ORiscbindMatch9.5.3
ORiscbindMatch9.5.3rc1
ORiscbindMatch9.6
ORiscbindMatch9.6r5_p1
ORiscbindMatch9.6r6_b1
ORiscbindMatch9.6r6_rc1
ORiscbindMatch9.6r6_rc2
ORiscbindMatch9.6r7_p1
ORiscbindMatch9.6r7_p2
ORiscbindMatch9.6r9_p1
ORiscbindMatch9.6.0
ORiscbindMatch9.6.0p1
ORiscbindMatch9.6.0rc1
ORiscbindMatch9.6.0rc2
ORiscbindMatch9.6.1
ORiscbindMatch9.6.1p1
ORiscbindMatch9.6.1p2
ORiscbindMatch9.6.1p3
ORiscbindMatch9.6.1rc1
ORiscbindMatch9.6.2
ORiscbindMatch9.6.2rc1
ORiscbindMatch9.6.3
ORiscbindMatch9.6.3rc1
ORiscbindMatch9.7.0
ORiscbindMatch9.7.0b1
ORiscbindMatch9.7.0p1
ORiscbindMatch9.7.0p2
ORiscbindMatch9.7.0rc1
ORiscbindMatch9.7.0rc2
ORiscbindMatch9.7.1
ORiscbindMatch9.7.1p1
ORiscbindMatch9.7.1p2
ORiscbindMatch9.7.1rc1
ORiscbindMatch9.7.2
ORiscbindMatch9.7.2p1
ORiscbindMatch9.7.2p2
ORiscbindMatch9.7.2p3
ORiscbindMatch9.7.2rc1
ORiscbindMatch9.7.3
ORiscbindMatch9.7.3b1
ORiscbindMatch9.7.3p1
ORiscbindMatch9.7.3rc1
ORiscbindMatch9.7.4
ORiscbindMatch9.7.4b1
ORiscbindMatch9.7.4p1
ORiscbindMatch9.7.4rc1
ORiscbindMatch9.7.5
ORiscbindMatch9.7.5b1
ORiscbindMatch9.7.5rc1
ORiscbindMatch9.7.5rc2
ORiscbindMatch9.7.6
ORiscbindMatch9.7.6p1
ORiscbindMatch9.7.6p2
ORiscbindMatch9.7.7
ORiscbindMatch9.8.0
ORiscbindMatch9.8.0a1
ORiscbindMatch9.8.0b1
ORiscbindMatch9.8.0p1
ORiscbindMatch9.8.0p2
ORiscbindMatch9.8.0p4
ORiscbindMatch9.8.0rc1
ORiscbindMatch9.8.1
ORiscbindMatch9.8.1b1
ORiscbindMatch9.8.1b2
ORiscbindMatch9.8.1b3
ORiscbindMatch9.8.1p1
ORiscbindMatch9.8.1rc1
ORiscbindMatch9.8.2b1
ORiscbindMatch9.8.2rc1
ORiscbindMatch9.8.2rc2
ORiscbindMatch9.8.3
ORiscbindMatch9.8.3p1
ORiscbindMatch9.8.3p2
ORiscbindMatch9.8.4
ORiscbindMatch9.8.5
ORiscbindMatch9.8.5b1
ORiscbindMatch9.8.5b2
ORiscbindMatch9.8.5p1
ORiscbindMatch9.8.5p2
ORiscbindMatch9.8.5rc1
ORiscbindMatch9.8.5rc2
ORiscbindMatch9.8.6b1
ORiscbindMatch9.8.6rc1
ORiscbindMatch9.8.6rc2
ORiscbindMatch9.9.0
ORiscbindMatch9.9.0a1
ORiscbindMatch9.9.0a2
ORiscbindMatch9.9.0a3
ORiscbindMatch9.9.0b1
ORiscbindMatch9.9.0b2
ORiscbindMatch9.9.0rc1
ORiscbindMatch9.9.0rc2
ORiscbindMatch9.9.0rc3
ORiscbindMatch9.9.0rc4
ORiscbindMatch9.9.1
ORiscbindMatch9.9.1p1
ORiscbindMatch9.9.1p2
ORiscbindMatch9.9.2
ORiscbindMatch9.9.3
ORiscbindMatch9.9.3b1
ORiscbindMatch9.9.3b2
ORiscbindMatch9.9.3p1
ORiscbindMatch9.9.3p2
ORiscbindMatch9.9.3rc1
ORiscbindMatch9.9.3rc2
ORiscbindMatch9.9.4b1
ORiscbindMatch9.9.5
ORiscbindMatch9.9.6
ORiscbindMatch9.9.6p1
ORiscbindMatch9.9.7b1
ORiscbindMatch9.9.7p1
ORiscbindMatch9.9.7rc1
ORiscbindMatch9.9.7rc2
ORiscbindMatch9.9.8
ORiscbindMatch9.9.8rc1
ORiscbindMatch9.9.8s1
ORiscbindMatch9.10.0
ORiscbindMatch9.10.1
ORiscbindMatch9.10.1p1
ORiscbindMatch9.10.2b1
ORiscbindMatch9.10.2p1
ORiscbindMatch9.10.2p2
ORiscbindMatch9.10.2p3
ORiscbindMatch9.10.2p4
ORiscbindMatch9.10.2rc1
ORiscbindMatch9.10.3
ORiscbindMatch9.10.3rc1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| isc | bind | 8.4.7 | cpe:2.3:a:isc:bind:8.4.7:*:*:*:*:*:*:* |
| isc | bind | 9.0 | cpe:2.3:a:isc:bind:9.0:*:*:*:*:*:*:* |
| isc | bind | 9.0.1 | cpe:2.3:a:isc:bind:9.0.1:*:*:*:*:*:*:* |
| isc | bind | 9.1 | cpe:2.3:a:isc:bind:9.1:*:*:*:*:*:*:* |
| isc | bind | 9.1.1 | cpe:2.3:a:isc:bind:9.1.1:*:*:*:*:*:*:* |
| isc | bind | 9.1.2 | cpe:2.3:a:isc:bind:9.1.2:*:*:*:*:*:*:* |
| isc | bind | 9.1.3 | cpe:2.3:a:isc:bind:9.1.3:*:*:*:*:*:*:* |
| isc | bind | 9.2 | cpe:2.3:a:isc:bind:9.2:*:*:*:*:*:*:* |
| isc | bind | 9.2.0 | cpe:2.3:a:isc:bind:9.2.0:*:*:*:*:*:*:* |
| isc | bind | 9.2.1 | cpe:2.3:a:isc:bind:9.2.1:*:*:*:*:*:*:* |
References
lists.fedoraproject.org/pipermail/package-announce/2015-December/174145.html
lists.fedoraproject.org/pipermail/package-announce/2015-December/174252.html
www.securityfocus.com/bid/79347
www.securitytracker.com/id/1034419
www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.539966
kb.isc.org/article/AA-01319
kb.isc.org/article/AA-01380
kb.isc.org/article/AA-01438
Related
ubuntucve
ubuntucve
CVE-2015-8461
2015-12-15 00:00:00
openvas
openvas
ISC BIND Denial of Service Vulnerability (CVE-2015-8461)
2016-01-27 00:00:00
Fedora Update for bind FEDORA-2015-2
2015-12-23 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-631)
2015-12-16 00:00:00
f5
f5
SOL30673534 - BIND vulnerability CVE-2015-8461
2015-12-16 00:00:00
K30673534 : BIND vulnerability CVE-2015-8461
2015-12-16 00:00:00
cve
cve
CVE-2015-8461
2015-12-16 15:59:02
prion
prion
Race condition
2015-12-16 15:59:00
nessus
nessus
ISC BIND 9.9.8 < 9.9.8-P2 / 9.10.3 < 9.10.3-P2 Socket Error Handling DoS
2015-12-18 00:00:00
Amazon Linux AMI : bind (ALAS-2015-631)
2015-12-16 00:00:00
cvelist
cvelist
CVE-2015-8461
2015-12-16 15:00:00
debiancve
debiancve
CVE-2015-8461
2015-12-16 15:59:02
ibm
ibm
Security Bulletin: IBM i is affected by networking BIND vulnerabilities.
2019-12-18 14:26:38
fedora
fedora
[SECURITY] Fedora 23 Update: bind-9.10.3-7.P2.fc23
2015-12-19 18:29:22
[SECURITY] Fedora 23 Update: dnsperf-2.0.0.0-19.fc23
2015-12-19 18:29:22
[SECURITY] Fedora 22 Update: bind-dyndb-ldap-7.0-6.fc22
2015-12-22 07:25:05
amazon
amazon
Critical: bind
2015-12-15 13:00:00
freebsd
freebsd
bind -- multiple vulnerabilities
2015-11-24 00:00:00
slackware
slackware
[slackware-security] bind
2015-12-16 06:24:47
openwrt
openwrt
bind: Security update (4 CVEs)
2016-01-24 13:33:41
osv
osv
bind-9.16.20-1.4 on GA media
2024-06-15 00:00:00
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
7.3
Confidence
High
EPSS
0.123
Percentile
95.4%
Related for NVD:CVE-2015-8461