GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Tue Oct 11, 2016 7:26 pm Post subject: [ glsa 201610-07 ] bind |
|
|
Gentoo Linux Security Advisory
Title: BIND: Multiple vulnerabilities (GLSA 201610-07)
Severity: normal
Exploitable: remote
Date: October 11, 2016
Bug(s): #572414, #576902, #588652, #589132, #595340
ID: 201610-07
Synopsis
Multiple vulnerabilities have been found in BIND, the worst of
which could cause a Denial of Service condition.
Background
BIND (Berkeley Internet Name Domain) is a Name Server.
Affected Packages
Package: net-dns/bind
Vulnerable: < 9.10.4_p3
Unaffected: >= 9.10.4_p3
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in BIND. Please review the
CVE identifiers referenced below for details.
Impact
A remote attacker could cause a Denial of Service condition through
multiple attack vectors.
Workaround
There is no known workaround at this time.
Resolution
All BIND users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=net-dns/bind-9.10.4_p3"
|
References
CVE-2015-8704
CVE-2015-8705
CVE-2016-1285
CVE-2016-1286
CVE-2016-2088
CVE-2016-2775
CVE-2016-2776
CVE-2016-6170 |
|