SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   BIND Vendors:   ISC (Internet Software Consortium)
(CentOS Issues Fix) BIND Multiple Flaws Let Remote Users Cause the Target named Service to Stop Processing
SecurityTracker Alert ID:  1037605
SecurityTracker URL:  http://securitytracker.com/id/1037605
CVE Reference:   CVE-2016-9131, CVE-2016-9147, CVE-2016-9444   (Links to External Site)
Date:  Jan 17 2017
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 9.4.0 - 9.6-ESV-R11-W1, 9.8.5 - 9.8.8, 9.9.3 - 9.9.9-P4, 9.9.9-S1 - 9.9.9-S6, 9.10.0 - 9.10.4-P4, 9.11.0 - 9.11.0-P1
Description:   Several vulnerabilities were reported in BIND. A remote user can cause the target service to crash.

A remote user can return a specially crafted query response to the target recursive server in response to an RTYPE ANY query to cause the target 'named' service to stop processing [CVE-2016-9131].

A remote user can return a specially crafted query response that contains DNSSEC-related RRsets that are inconsistent with other RRsets in the same query response to trigger an assertion failure and cause target 'named' service to stop processing [CVE-2016-9147]. Versions 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 are affected.

A remote user can return a specially crafted query response that contains a DS resource record to trigger an assertion failure and cause target 'named' service to stop processing [CVE-2016-9444].

A remote user can send a specially crafted query to the target system that uses the nxdomain-redirect feature to cover a zone for which it provides authoritative service to cause the target 'named' service to stop processing [CVE-2016-9778].

Impact:   A remote user can cause the target 'named' service to stop processing.
Solution:   CentOS has issued a fix for CVE-2016-9131, CVE-2016-9147, and CVE-2016-9444.

x86_64:
922e6d7db809f86fb353cf2635724692c169f81b8f306372400e810dfcc7dd21 bind-9.9.4-38.el7_3.1.x86_64.rpm
d7521bfd2279313d0ca6d92c2ca9f724c25a343cc3f7bf104d6bafdfe6c1baea bind-chroot-9.9.4-38.el7_3.1.x86_64.rpm
6745e01a27f6f2b0ee43040254f4737b455d6ed66ae161bf9c6b116572b3962f bind-devel-9.9.4-38.el7_3.1.i686.rpm
35898e81da63115180e390304796010f06b175f99598461efe2937e6b05dd17b bind-devel-9.9.4-38.el7_3.1.x86_64.rpm
8ba46f89c530972d8f7e60e25864437f265e76516bc3d51c949c3c85a65c6e75 bind-libs-9.9.4-38.el7_3.1.i686.rpm
5cfe528a1c12d5e97949cc56e89817c9156f5d46a674c2d1de2e21df5d441fe9 bind-libs-9.9.4-38.el7_3.1.x86_64.rpm
3e92363d65aa194ace31e76814279e88f64ed59921da6098189bb4e577c2a220 bind-libs-lite-9.9.4-38.el7_3.1.i686.rpm
fcccb3dbd7846be233881a8c525d4515210c9d431921333ce4fc94697dd314c5 bind-libs-lite-9.9.4-38.el7_3.1.x86_64.rpm
07549f43dac929ba85a7e1123e4d8c3149a75947e8e88716588cd07f02cc7a2d bind-license-9.9.4-38.el7_3.1.noarch.rpm
85adc57e21acf71af69b06b17f236c3f8cdbfb2db660e97ef62d2332fbcbb41c bind-lite-devel-9.9.4-38.el7_3.1.i686.rpm
7c7bb26f5860bceacdb4884172daf16f04aee1e45bd61b1369448c6d9a08c6bd bind-lite-devel-9.9.4-38.el7_3.1.x86_64.rpm
533e77ad5b75b00ff4dc30640cb597f4d9471fbe8dec20ae0c537bb27c1f27a5 bind-pkcs11-9.9.4-38.el7_3.1.x86_64.rpm
e81e12e30f217e052c830be848978e6aaf1792d49b5b790bfb740e66b9dc180f bind-pkcs11-devel-9.9.4-38.el7_3.1.i686.rpm
623b00adb0a66786faf9b7e7afe603534092cd4e0674eec44132b555af0c9077 bind-pkcs11-devel-9.9.4-38.el7_3.1.x86_64.rpm
6fee761a9ffde4503bb94a45b4480630801c30c8815c0b7153f9c2665ba4ab2d bind-pkcs11-libs-9.9.4-38.el7_3.1.i686.rpm
1c9cbe6497dcaa0fc9a54021a43f29df8648083e16934258f6c0fe68a32908de bind-pkcs11-libs-9.9.4-38.el7_3.1.x86_64.rpm
5e5b779edaa5ba9d19149ea28cb31a491ab14e2298c8b3fbc206c8133799d336 bind-pkcs11-utils-9.9.4-38.el7_3.1.x86_64.rpm
4678bbf2437150632e574f371e0719ceb36a8f5e3d8998c54a5a3ac64e414d9e bind-sdb-9.9.4-38.el7_3.1.x86_64.rpm
3c23783b1a42f0af013f38a698c25275425fe2fc0bd5483a104b3c0415fc28d4 bind-sdb-chroot-9.9.4-38.el7_3.1.x86_64.rpm
356da572ddae5297282284bae84be7df83daf6f28239d5f3768e72d7f24427ec bind-utils-9.9.4-38.el7_3.1.x86_64.rpm

Source:
878bbd8d211b55b559f825892c3f2b57f2188fd5377e69e6bd36d861c068caae bind-9.9.4-38.el7_3.1.src.rpm

Cause:   State error
Underlying OS:  Linux (CentOS)
Underlying OS Comments:  7

Message History:   This archive entry is a follow-up to the message listed below.
Jan 12 2017 BIND Multiple Flaws Let Remote Users Cause the Target named Service to Stop Processing



 Source Message Contents

Subject:  [CentOS-announce] CESA-2017:0062 Important CentOS 7 bind Security Update


CentOS Errata and Security Advisory 2017:0062 Important

Upstream details at : https://rhn.redhat.com/errata/RHSA-2017-0062.html

The following updated files have been uploaded and are currently 
syncing to the mirrors: ( sha256sum Filename ) 

x86_64:
922e6d7db809f86fb353cf2635724692c169f81b8f306372400e810dfcc7dd21  bind-9.9.4-38.el7_3.1.x86_64.rpm
d7521bfd2279313d0ca6d92c2ca9f724c25a343cc3f7bf104d6bafdfe6c1baea  bind-chroot-9.9.4-38.el7_3.1.x86_64.rpm
6745e01a27f6f2b0ee43040254f4737b455d6ed66ae161bf9c6b116572b3962f  bind-devel-9.9.4-38.el7_3.1.i686.rpm
35898e81da63115180e390304796010f06b175f99598461efe2937e6b05dd17b  bind-devel-9.9.4-38.el7_3.1.x86_64.rpm
8ba46f89c530972d8f7e60e25864437f265e76516bc3d51c949c3c85a65c6e75  bind-libs-9.9.4-38.el7_3.1.i686.rpm
5cfe528a1c12d5e97949cc56e89817c9156f5d46a674c2d1de2e21df5d441fe9  bind-libs-9.9.4-38.el7_3.1.x86_64.rpm
3e92363d65aa194ace31e76814279e88f64ed59921da6098189bb4e577c2a220  bind-libs-lite-9.9.4-38.el7_3.1.i686.rpm
fcccb3dbd7846be233881a8c525d4515210c9d431921333ce4fc94697dd314c5  bind-libs-lite-9.9.4-38.el7_3.1.x86_64.rpm
07549f43dac929ba85a7e1123e4d8c3149a75947e8e88716588cd07f02cc7a2d  bind-license-9.9.4-38.el7_3.1.noarch.rpm
85adc57e21acf71af69b06b17f236c3f8cdbfb2db660e97ef62d2332fbcbb41c  bind-lite-devel-9.9.4-38.el7_3.1.i686.rpm
7c7bb26f5860bceacdb4884172daf16f04aee1e45bd61b1369448c6d9a08c6bd  bind-lite-devel-9.9.4-38.el7_3.1.x86_64.rpm
533e77ad5b75b00ff4dc30640cb597f4d9471fbe8dec20ae0c537bb27c1f27a5  bind-pkcs11-9.9.4-38.el7_3.1.x86_64.rpm
e81e12e30f217e052c830be848978e6aaf1792d49b5b790bfb740e66b9dc180f  bind-pkcs11-devel-9.9.4-38.el7_3.1.i686.rpm
623b00adb0a66786faf9b7e7afe603534092cd4e0674eec44132b555af0c9077  bind-pkcs11-devel-9.9.4-38.el7_3.1.x86_64.rpm
6fee761a9ffde4503bb94a45b4480630801c30c8815c0b7153f9c2665ba4ab2d  bind-pkcs11-libs-9.9.4-38.el7_3.1.i686.rpm
1c9cbe6497dcaa0fc9a54021a43f29df8648083e16934258f6c0fe68a32908de  bind-pkcs11-libs-9.9.4-38.el7_3.1.x86_64.rpm
5e5b779edaa5ba9d19149ea28cb31a491ab14e2298c8b3fbc206c8133799d336  bind-pkcs11-utils-9.9.4-38.el7_3.1.x86_64.rpm
4678bbf2437150632e574f371e0719ceb36a8f5e3d8998c54a5a3ac64e414d9e  bind-sdb-9.9.4-38.el7_3.1.x86_64.rpm
3c23783b1a42f0af013f38a698c25275425fe2fc0bd5483a104b3c0415fc28d4  bind-sdb-chroot-9.9.4-38.el7_3.1.x86_64.rpm
356da572ddae5297282284bae84be7df83daf6f28239d5f3768e72d7f24427ec  bind-utils-9.9.4-38.el7_3.1.x86_64.rpm

Source:
878bbd8d211b55b559f825892c3f2b57f2188fd5377e69e6bd36d861c068caae  bind-9.9.4-38.el7_3.1.src.rpm



-- 
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #centos@irc.freenode.net
Twitter: @JohnnyCentOS

_______________________________________________
CentOS-announce mailing list
CentOS-announce@centos.org
https://lists.centos.org/mailman/listinfo/centos-announce
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC