Lucene search
RedHatRHSA-2016:0459HistoryMar 16, 2016 - 12:00 a.m.
(RHSA-2016:0459) Important: bind security update
2016-03-1600:00:00
access.redhat.com
40
0.733 High
EPSS
Percentile
98.1%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.
A denial of service flaw was found in the way BIND parsed signature records
for DNAME records. By sending a specially crafted query, a remote attacker
could use this flaw to cause named to crash. (CVE-2016-1286)
A denial of service flaw was found in the way BIND processed certain
control channel input. A remote attacker able to send a malformed packet to
the control channel could use this flaw to cause named to crash.
(CVE-2016-1285)
Red Hat would like to thank ISC for reporting these issues.
All bind users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. After installing the
update, the BIND daemon (named) will be restarted automatically.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | s390x | bind-debuginfo | < 9.9.4-29.el7_2.3 | bind-debuginfo-9.9.4-29.el7_2.3.s390x.rpm |
| RedHat | 7 | s390 | bind-debuginfo | < 9.9.4-29.el7_2.3 | bind-debuginfo-9.9.4-29.el7_2.3.s390.rpm |
| RedHat | 5 | ppc | caching-nameserver | < 9.3.6-25.P1.el5_11.8 | caching-nameserver-9.3.6-25.P1.el5_11.8.ppc.rpm |
| RedHat | 6 | s390 | bind-debuginfo | < 9.8.2-0.37.rc1.el6_7.7 | bind-debuginfo-9.8.2-0.37.rc1.el6_7.7.s390.rpm |
| RedHat | 7 | x86_64 | bind-sdb | < 9.9.4-29.el7_2.3 | bind-sdb-9.9.4-29.el7_2.3.x86_64.rpm |
| RedHat | 5 | ppc64 | bind-libs | < 9.3.6-25.P1.el5_11.8 | bind-libs-9.3.6-25.P1.el5_11.8.ppc64.rpm |
| RedHat | 5 | s390x | bind-chroot | < 9.3.6-25.P1.el5_11.8 | bind-chroot-9.3.6-25.P1.el5_11.8.s390x.rpm |
| RedHat | 7 | x86_64 | bind-pkcs11-devel | < 9.9.4-29.el7_2.3 | bind-pkcs11-devel-9.9.4-29.el7_2.3.x86_64.rpm |
| RedHat | 5 | ia64 | bind-sdb | < 9.3.6-25.P1.el5_11.8 | bind-sdb-9.3.6-25.P1.el5_11.8.ia64.rpm |
| RedHat | 7 | ppc | bind-lite-devel | < 9.9.4-29.el7_2.3 | bind-lite-devel-9.9.4-29.el7_2.3.ppc.rpm |
Related
nessus
nessus
Oracle Linux 5 : bind97 (ELSA-2016-0458)
2016-03-17 00:00:00
RHEL 5 / 6 / 7 : bind (RHSA-2016:0459)
2016-03-17 00:00:00
oraclelinux
oraclelinux
bind97 security update
2016-03-16 00:00:00
bind security update
2016-03-16 00:00:00
bind security update
2016-11-09 00:00:00
suse
suse
Security update for bind (important)
2016-03-14 19:12:16
Security update for bind (important)
2016-03-19 16:12:36
Security update for bind (important)
2016-06-10 15:08:04
ibm
ibm
Security Bulletin: Vulnerabilities in bind affect Power Hardware Management Console (CVE-2016-1285, CVE-2016-1286)
2021-09-23 01:31:39
Security Bulletin: Vulnerabilities in ISC Bind affect PowerKVM (CVE-2016-1285, CVE-2016-1286)
2018-06-18 01:30:51
Security Bulletin: IBM i is affected by networking BIND vulnerabilities
2019-12-18 14:26:38
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:13.bind
2016-03-10 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:0825-1)
2021-06-09 00:00:00
CentOS Update for bind97 CESA-2016:0458 centos5
2016-03-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:0780-1)
2021-04-19 00:00:00
centos
centos
bind, caching security update
2016-03-16 13:43:49
bind97 security update
2016-03-16 14:18:59
fedora
fedora
[SECURITY] Fedora 23 Update: bind99-9.9.8-4.P4.fc23
2016-03-16 01:25:16
[SECURITY] Fedora 24 Update: bind99-9.9.8-4.P4.fc24
2016-03-27 00:52:48
[SECURITY] Fedora 22 Update: bind99-9.9.8-4.P4.fc22
2016-04-02 04:18:26
archlinux
archlinux
bind: denial of service
2016-03-09 00:00:00
bind: denial of service
2016-03-12 00:00:00
amazon
amazon
Important: bind
2016-03-10 16:30:00
redhat
redhat
(RHSA-2016:0562) Important: bind security update
2016-03-31 00:00:00
(RHSA-2016:0601) Important: bind security update
2016-04-06 00:00:00
(RHSA-2016:0458) Important: bind97 security update
2016-03-16 00:00:00
cloudfoundry
cloudfoundry
USN-2925-1 Bind9 vulnerabilities | Cloud Foundry
2016-03-24 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:27:43
Denial Of Service (DoS)
2019-01-15 09:10:30
aix
aix
debian
debian
[SECURITY] [DSA 3511-1] bind9 security update
2016-03-09 20:33:07
[SECURITY] [DSA 3511-1] bind9 security update
2016-03-09 20:33:07
osv
osv
bind9 - security update
2016-03-09 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2016-03-09 00:00:00
slackware
slackware
[slackware-security] bind
2016-03-10 03:24:19
mageia
mageia
Updated bind packages fix security vulnerability
2016-03-11 02:37:43
f5
f5
SOL62012529 - BIND vulnerability CVE-2016-1286
2016-03-09 00:00:00
K62012529 : BIND vulnerability CVE-2016-1286
2016-03-09 00:00:00
K46264120 : BIND vulnerability CVE-2016-1285
2016-03-09 00:00:00
checkpoint_advisories
checkpoint_advisories
cvelist
cvelist
CVE-2016-1286
2016-03-09 23:00:00
CVE-2016-1285
2016-03-09 23:00:00
debiancve
debiancve
CVE-2016-1286
2016-03-09 23:59:03
CVE-2016-1285
2016-03-09 23:59:02
cve
cve
CVE-2016-1285
2016-03-09 23:59:02
CVE-2016-1286
2016-03-09 23:59:03
prion
prion
Design/Logic Flaw
2016-03-09 23:59:00
Design/Logic Flaw
2016-03-09 23:59:00
nvd
nvd
CVE-2016-1286
2016-03-09 23:59:03
CVE-2016-1285
2016-03-09 23:59:02
freebsd
freebsd
bind -- denial of service vulnerability
2016-03-09 00:00:00
bind -- denial of service vulnerability
2016-03-09 00:00:00
ubuntucve
ubuntucve
CVE-2016-1286
2016-03-09 00:00:00
CVE-2016-1285
2016-03-09 00:00:00
gentoo
gentoo
BIND: Multiple vulnerabilities
2016-10-11 00:00:00