Mandrake Local Security Checks : Mandriva Update for bind MDVSA-2012:119 (bind)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.831707

Categoría: Mandrake Local Security Checks

Título: Mandriva Update for bind MDVSA-2012:119 (bind)

Resumen: The remote host is missing an update for the 'bind'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'bind'
package(s) announced via the referenced advisory.

Vulnerability Insight:
A vulnerability was discovered and corrected in bind:

High numbers of queries with DNSSEC validation enabled can cause an
assertion failure in named, caused by using a bad cache data structure
before it has been initialized (CVE-2012-3817).

The updated packages have been upgraded to bind 9.7.6-P2 and 9.8.3-P2
which is not vulnerable to this issue.

Affected Software/OS:
bind on Mandriva Linux 2011.0,
Mandriva Enterprise Server 5.2

Solution:
Please Install the Updated Packages.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-3817
http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
Debian Security Information: DSA-2517 (Google Search)
http://www.debian.org/security/2012/dsa-2517
RedHat Security Advisories: RHSA-2012:1122
http://rhn.redhat.com/errata/RHSA-2012-1122.html
RedHat Security Advisories: RHSA-2012:1123
http://rhn.redhat.com/errata/RHSA-2012-1123.html
http://www.securitytracker.com/id?1027296
http://secunia.com/advisories/51096
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004
SuSE Security Announcement: openSUSE-SU-2012:0969 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-08/msg00013.html
SuSE Security Announcement: openSUSE-SU-2012:0971 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-08/msg00015.html
http://www.ubuntu.com/usn/USN-1518-1

Copyright Copyright (C) 2012 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.831707
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Update for bind MDVSA-2012:119 (bind)
Resumen:	The remote host is missing an update for the 'bind'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'bind' package(s) announced via the referenced advisory. Vulnerability Insight: A vulnerability was discovered and corrected in bind: High numbers of queries with DNSSEC validation enabled can cause an assertion failure in named, caused by using a bad cache data structure before it has been initialized (CVE-2012-3817). The updated packages have been upgraded to bind 9.7.6-P2 and 9.8.3-P2 which is not vulnerable to this issue. Affected Software/OS: bind on Mandriva Linux 2011.0, Mandriva Enterprise Server 5.2 Solution: Please Install the Updated Packages. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3817 http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html Debian Security Information: DSA-2517 (Google Search) http://www.debian.org/security/2012/dsa-2517 RedHat Security Advisories: RHSA-2012:1122 http://rhn.redhat.com/errata/RHSA-2012-1122.html RedHat Security Advisories: RHSA-2012:1123 http://rhn.redhat.com/errata/RHSA-2012-1123.html http://www.securitytracker.com/id?1027296 http://secunia.com/advisories/51096 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004 SuSE Security Announcement: openSUSE-SU-2012:0969 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-08/msg00013.html SuSE Security Announcement: openSUSE-SU-2012:0971 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-08/msg00015.html http://www.ubuntu.com/usn/USN-1518-1
Copyright	Copyright (C) 2012 Greenbone AG