Lucene search
UbuntuUSN-1783-1HistoryMar 29, 2013 - 12:00 a.m.
Bind vulnerability
2013-03-2900:00:00
ubuntu.com
35
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
7.6
Confidence
High
EPSS
0.943
Percentile
99.2%
Releases
- Ubuntu 12.10
- Ubuntu 12.04
- Ubuntu 11.10
- Ubuntu 10.04
Packages
- bind9 - Internet Domain Name Server
Details
Matthew Horsfall discovered that Bind incorrectly handled regular
expression checking. A remote attacker could use this flaw to cause Bind to
consume an excessive amount of memory, possibly resulting in a denial of
service. This issue was corrected by disabling RDATA regular expression
syntax checking.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.10 | noarch | bind9 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | bind9-host | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | bind9utils | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | dnsutils | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libbind-dev | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libbind9-80 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libdns81 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libisc83 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libisccc80 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libisccfg82 | <Β 1:9.8.1.dfsg.P1-4.2ubuntu3.2 | UNKNOWN |
References
Related
nessus
nessus
SuSE 11.2 Security Update : dhcp (SAT Patch Number 7571)
2013-04-18 00:00:00
Fedora 17 : bind-9.9.2-7.P2.fc17 (2013-4533)
2013-04-08 00:00:00
Oracle Linux 5 : bind97 (ELSA-2013-0690)
2013-07-12 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2013-176)
2015-09-08 00:00:00
Ubuntu Update for bind9 USN-1783-1
2013-04-02 00:00:00
CentOS Update for bind97 CESA-2013:0690 centos5
2013-04-02 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: bind-9.9.2-10.P2.fc18
2013-04-05 23:08:28
[SECURITY] Fedora 17 Update: bind-9.9.2-7.P2.fc17
2013-04-07 00:25:01
[SECURITY] Fedora 18 Update: bind-9.9.3-4.P2.fc18
2013-08-04 00:13:45
prion
prion
Code injection
2013-03-28 16:55:00
Design/Logic Flaw
2013-03-28 16:55:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:51:10
redhat
redhat
(RHSA-2013:0690) Important: bind97 security update
2013-03-28 00:00:00
(RHSA-2013:0689) Important: bind security and bug fix update
2013-03-28 00:00:00
(RHSA-2013:0746) Important: rhev-hypervisor6 security and bug fix update
2013-04-23 00:00:00
oraclelinux
oraclelinux
bind security and bug fix update
2013-03-28 00:00:00
bind97 security update
2013-03-28 00:00:00
bind97 security and bug fix update
2014-09-17 00:00:00
nvd
nvd
CVE-2013-2266
2013-03-28 16:55:01
CVE-2013-2494
2013-03-28 16:55:01
cvelist
cvelist
CVE-2013-2266
2013-03-28 16:00:00
CVE-2013-2494
2022-10-03 16:14:59
freebsd
freebsd
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
2013-03-11 00:00:00
FreeBSD -- BIND remote denial of service
2013-04-02 00:00:00
amazon
amazon
Important: bind
2013-04-04 11:09:00
securityvulns
securityvulns
bind / dhcp DoS
2013-04-01 00:00:00
[USN-1783-1] Bind vulnerability
2013-04-01 00:00:00
[slackware-security] dhcp (SSA:2013-086-02)
2013-04-01 00:00:00
ubuntucve
ubuntucve
CVE-2013-2266
2013-03-26 00:00:00
CVE-2013-2494
2013-03-28 00:00:00
debiancve
debiancve
CVE-2013-2266
2013-03-28 16:55:01
CVE-2013-2494
2022-10-03 16:14:59
seebug
seebug
ISC BIND 9 'libdns' θΏη¨ζη»ζε‘ζΌζ΄(CVE-2013-2266)
2013-03-29 00:00:00
f5
f5
SOL14386 - BIND vulnerability CVE-2013-2266
2013-05-01 00:00:00
K14386 : BIND vulnerability CVE-2013-2266
2014-08-26 00:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND Regular Expression Handling Denial of Service (CVE-2013-2266)
2013-06-30 00:00:00
debian
debian
[SECURITY] [DSA 2656-1] bind9 security update
2013-03-30 15:42:49
centos
centos
bind security update
2013-03-29 00:19:00
bind97 security update
2013-03-28 23:25:41
cve
cve
CVE-2013-2266
2013-03-28 16:55:01
CVE-2013-2494
2022-10-03 16:14:59
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:04.bind
2013-04-02 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1822
2021-07-02 16:37:55
gentoo
gentoo
BIND: Denial of service
2014-01-29 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
7.6
Confidence
High
EPSS
0.943
Percentile
99.2%
Related for USN-1783-1