Lucene search
UbuntuUSN-1657-1HistoryDec 06, 2012 - 12:00 a.m.
Bind vulnerability
2012-12-0600:00:00
ubuntu.com
40
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.3
Confidence
Low
EPSS
0.035
Percentile
91.6%
Releases
- Ubuntu 12.10
- Ubuntu 12.04
Packages
- bind9 - Internet Domain Name Server
Details
It was discovered that Bind incorrectly handled certain crafted queries
when DNS64 was enabled. A remote attacker could use this flaw to cause Bind
to crash, resulting in a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.10 | noarch | bind9 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | bind9-host | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | bind9utils | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | dnsutils | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libbind-dev | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libbind9-80 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libdns81 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libisc83 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libisccc80 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libisccfg82 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.1 | UNKNOWN |
References
Related
openvas
openvas
CentOS Update for bind CESA-2012:1549 centos6
2012-12-10 00:00:00
RedHat Update for bind RHSA-2012:1549-01
2012-12-10 00:00:00
ISC BIND DNS64 Remote Denial of Service Vulnerability (Jan 2016)
2016-01-28 00:00:00
freebsd
freebsd
dns/bind9* -- servers using DNS64 can be crashed by a crafted query
2012-11-27 00:00:00
FreeBSD -- BIND remote DoS with deliberately crafted DNS64 query
2013-02-19 00:00:00
amazon
amazon
Important: bind
2012-12-07 09:28:00
nessus
nessus
ISC BIND 9 DNS64 Handling DoS
2012-12-06 00:00:00
openSUSE Security Update : bind (openSUSE-SU-2012:1649-1)
2014-06-13 00:00:00
Fedora 17 : bind-9.9.2-3.P1.fc17 (2012-19830)
2012-12-13 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package bind version 9.9.2-alt3
2012-12-11 00:00:00
Security fix for the ALT Linux 9 package bind version 9.9.2-alt3
2012-12-11 00:00:00
Security fix for the ALT Linux 8 package bind version 9.9.2-alt3
2012-12-11 00:00:00
debiancve
debiancve
CVE-2012-5688
2012-12-06 11:45:48
redhat
redhat
(RHSA-2012:1549) Important: bind security update
2012-12-06 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:01.bind
2013-02-19 00:00:00
securityvulns
securityvulns
ISC bind DoS
2012-12-06 00:00:00
prion
prion
Design/Logic Flaw
2012-12-06 11:45:00
seebug
seebug
ISC BIND 9 DNS64 REQUIREζθ¨ε€±θ΄₯ζη»ζε‘ζΌζ΄
2012-12-11 00:00:00
cvelist
cvelist
CVE-2012-5688
2012-12-06 11:00:00
centos
centos
bind security update
2012-12-06 22:45:49
cve
cve
CVE-2012-5688
2012-12-06 11:45:48
fedora
fedora
[SECURITY] Fedora 18 Update: bind-9.9.2-5.P1.fc18
2012-12-10 07:10:53
[SECURITY] Fedora 17 Update: bind-9.9.2-3.P1.fc17
2012-12-13 05:50:23
[SECURITY] Fedora 16 Update: bind-9.8.4-3.P1.fc16
2012-12-29 06:29:14
nvd
nvd
CVE-2012-5688
2012-12-06 11:45:48
oraclelinux
oraclelinux
bind security update
2012-12-06 00:00:00
bind security and enhancement update
2013-02-28 00:00:00
ubuntucve
ubuntucve
CVE-2012-5688
2012-12-05 00:00:00
slackware
slackware
[slackware-security] bind
2012-12-07 03:50:45
threatpost
threatpost
Six Security Flaws Fixed in BIND 9.9.2
2012-12-05 16:15:32
gentoo
gentoo
BIND: Denial of service
2014-01-29 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.3
Confidence
Low
EPSS
0.035
Percentile
91.6%
Related for USN-1657-1