Lucene search
RedHatRHSA-2015:1706HistorySep 03, 2015 - 12:00 a.m.
(RHSA-2015:1706) Important: bind security update
2015-09-0300:00:00
access.redhat.com
15
EPSS
0.966
Percentile
99.6%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.
A denial of service flaw was found in the way BIND parsed certain malformed
DNSSEC keys. A remote attacker could use this flaw to send a specially
crafted DNS query (for example, a query requiring a response from a zone
containing a deliberately malformed key) that would cause named functioning
as a validating resolver to crash. (CVE-2015-5722)
Red Hat would like to thank ISC for reporting this issue. Upstream
acknowledges Hanno Bock as the original reporter.
All bind users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
update, the BIND daemon (named) will be restarted automatically.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | s390 | bind-devel | < 9.3.6-25.P1.el5_11.4 | bind-devel-9.3.6-25.P1.el5_11.4.s390.rpm |
| RedHat | 5 | ia64 | bind-libs | < 9.3.6-25.P1.el5_11.4 | bind-libs-9.3.6-25.P1.el5_11.4.ia64.rpm |
| RedHat | 5 | s390 | bind-libbind-devel | < 9.3.6-25.P1.el5_11.4 | bind-libbind-devel-9.3.6-25.P1.el5_11.4.s390.rpm |
| RedHat | 5 | i386 | caching-nameserver | < 9.3.6-25.P1.el5_11.4 | caching-nameserver-9.3.6-25.P1.el5_11.4.i386.rpm |
| RedHat | 5 | i386 | bind | < 9.3.6-25.P1.el5_11.4 | bind-9.3.6-25.P1.el5_11.4.i386.rpm |
| RedHat | 5 | ppc64 | bind-libs | < 9.3.6-25.P1.el5_11.4 | bind-libs-9.3.6-25.P1.el5_11.4.ppc64.rpm |
| RedHat | 5 | ppc | bind-libbind-devel | < 9.3.6-25.P1.el5_11.4 | bind-libbind-devel-9.3.6-25.P1.el5_11.4.ppc.rpm |
| RedHat | 5 | ppc | caching-nameserver | < 9.3.6-25.P1.el5_11.4 | caching-nameserver-9.3.6-25.P1.el5_11.4.ppc.rpm |
| RedHat | 5 | ppc | bind | < 9.3.6-25.P1.el5_11.4 | bind-9.3.6-25.P1.el5_11.4.ppc.rpm |
| RedHat | 5 | ia64 | bind-libbind-devel | < 9.3.6-25.P1.el5_11.4 | bind-libbind-devel-9.3.6-25.P1.el5_11.4.ia64.rpm |
Related
openvas
openvas
CentOS Update for bind CESA-2015:1705 centos6
2015-09-04 00:00:00
Debian: Security Advisory (DLA-308-1)
2023-03-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1480-1)
2021-06-09 00:00:00
nessus
nessus
CentOS 6 / 7 : bind (CESA-2015:1705)
2015-10-22 00:00:00
AIX 7.1 TL 2 : bind (IV78094)
2015-11-06 00:00:00
Debian DSA-3350-1 : bind9 - security update
2015-09-03 00:00:00
aix
aix
Vulnerability in BIND affects AIX,Vulnerability in BIND affects VIOS
2015-11-03 09:00:00
debiancve
debiancve
CVE-2015-5722
2015-09-05 02:59:03
fedora
fedora
[SECURITY] Fedora 23 Update: bind-dyndb-ldap-8.0-3.fc23
2015-09-06 17:10:22
[SECURITY] Fedora 22 Update: bind-9.10.2-5.P4.fc22
2015-09-09 23:22:35
[SECURITY] Fedora 23 Update: bind-9.10.3-0.1.rc1.fc23
2015-09-06 17:10:22
suse
suse
Security update for bind (important)
2015-10-01 22:09:50
Security update for bind (important)
2015-09-04 18:09:48
Security update for bind (important)
2015-09-02 23:09:49
freebsd
freebsd
bind -- denial of service vulnerability
2015-08-19 00:00:00
nvd
nvd
CVE-2015-5722
2015-09-05 02:59:03
centos
centos
bind security update
2015-09-03 10:17:26
bind, caching security update
2015-09-03 10:22:24
bind97 security update
2015-09-03 10:20:47
osv
osv
bind9 - security update
2015-09-02 00:00:00
bind9 - security update
2015-09-10 00:00:00
debian
debian
[SECURITY] [DLA 308-1] bind9 security update
2015-09-09 23:55:46
[SECURITY] [DSA 3350-1] bind9 security update
2015-09-02 21:47:12
cvelist
cvelist
CVE-2015-5722
2015-09-05 01:00:00
ibm
ibm
ubuntucve
ubuntucve
CVE-2015-5722
2015-09-02 00:00:00
f5
f5
K17181 : BIND vulnerability CVE-2015-5722
2015-09-03 00:00:00
SOL17181 - BIND vulnerability CVE-2015-5722
2015-09-09 00:00:00
securityvulns
securityvulns
ISC bind named DoS
2015-09-03 00:00:00
[USN-2728-1] Bind vulnerability
2015-09-03 00:00:00
APPLE-SA-2015-10-21-8 OS X Server 5.0.15
2015-10-25 00:00:00
redhat
redhat
(RHSA-2015:1707) Important: bind97 security update
2015-09-03 00:00:00
(RHSA-2015:1705) Important: bind security update
2015-09-03 00:00:00
(RHSA-2016:0079) Important: bind security update
2016-01-28 00:00:00
prion
prion
Design/Logic Flaw
2015-09-05 02:59:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:07:32
oraclelinux
oraclelinux
bind security update
2015-09-03 00:00:00
bind97 security update
2015-09-03 00:00:00
bind security update
2015-09-03 00:00:00
cve
cve
CVE-2015-5722
2015-09-05 02:59:03
checkpoint_advisories
checkpoint_advisories
ISC BIND DNSSEC Key Parsing buffer.c Denial of Service (CVE-2015-5722)
2015-10-07 00:00:00
ubuntu
ubuntu
Bind vulnerability
2015-09-02 00:00:00
amazon
amazon
Critical: bind
2015-09-02 12:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:23.bind
2015-09-02 00:00:00
archlinux
archlinux
bind: denial of service
2015-09-03 00:00:00
mageia
mageia
Updated bind packages fix security vulnerabilities
2015-09-08 10:20:40
slackware
slackware
[slackware-security] bind
2015-09-02 19:40:43
gentoo
gentoo
BIND: Denial of service
2015-10-18 00:00:00