Test ID:	1.3.6.1.4.1.25623.1.0.70517
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2011:176-2 (bind)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to bind announced via advisory MDVSA-2011:176-2. A vulnerability was discovered and corrected in bind: Cache lookup could return RRSIG data associated with nonexistent records, leading to an assertion failure. [ISC RT #26590] (CVE-2011-4313). The updated packages have been upgraded to bind 9.7.4-P1 and 9.8.1-P1 which is not vulnerable to this issue. Update: Packages provided for Mandriva Enterprise Server 5.2 and Mandriva Linux 2010.2 with the MDVSA-2011:176 and MDVSA-2011:176-1 advisory had wrong release numbers effectively preventing installation without excessive force due previous packaging mistakes. This advisory provides corrected packages to address the problem. Affected: 2010.1, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:176-2 http://www.isc.org/software/bind/advisories/cve-2011-4313 Risk factor : High
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4313 AIX APAR: IV11106 http://www-01.ibm.com/support/docview.wss?uid=isg1IV11106 AIX APAR: IV11248 http://www.ibm.com/support/docview.wss?uid=isg1IV11248 http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html BugTraq ID: 50690 http://www.securityfocus.com/bid/50690 CERT/CC vulnerability note: VU#606539 http://www.kb.cert.org/vuls/id/606539 Debian Security Information: DSA-2347 (Google Search) http://www.debian.org/security/2011/dsa-2347 http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069970.html http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069975.html http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069463.html FreeBSD Security Advisory: FreeBSD-SA-11:06 http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc HPdes Security Advisory: HPSBOV02774 http://marc.info/?l=bugtraq&m=133978480208466&w=2 HPdes Security Advisory: HPSBOV03226 http://marc.info/?l=bugtraq&m=141879471518471&w=2 HPdes Security Advisory: HPSBUX02729 http://marc.info/?l=bugtraq&m=132310123002302&w=2 HPdes Security Advisory: SSRT100684 HPdes Security Advisory: SSRT100687 HPdes Security Advisory: SSRT101004 http://www.mandriva.com/security/advisories?name=MDVSA-2011:176 http://osvdb.org/77159 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14343 http://www.redhat.com/support/errata/RHSA-2011-1458.html http://www.redhat.com/support/errata/RHSA-2011-1459.html http://www.redhat.com/support/errata/RHSA-2011-1496.html http://www.securitytracker.com/id?1026335 http://secunia.com/advisories/46536 http://secunia.com/advisories/46829 http://secunia.com/advisories/46887 http://secunia.com/advisories/46890 http://secunia.com/advisories/46905 http://secunia.com/advisories/46906 http://secunia.com/advisories/46943 http://secunia.com/advisories/46984 http://secunia.com/advisories/47043 http://secunia.com/advisories/47075 http://secunia.com/advisories/48308 SuSE Security Announcement: SUSE-SU-2011:1268 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00027.html SuSE Security Announcement: SUSE-SU-2011:1270 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00028.html SuSE Security Announcement: openSUSE-SU-2011:1272 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00029.html http://www.ubuntu.com/usn/USN-1264-1 XForce ISS Database: isc-bind-recursive-dos(71332) https://exchange.xforce.ibmcloud.com/vulnerabilities/71332
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.