vulnerability

Amazon Linux AMI: Security patch for bind (ALAS-2016-641) (CVE-2015-8704)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:N/I:N/A:C)	Jan 20, 2016	Jan 21, 2016	Oct 30, 2017

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:C)

Published

Jan 20, 2016

Added

Jan 21, 2016

Modified

Oct 30, 2017

Description

apl_42.c in ISC BIND 9.x before 9.9.8-P3 and 9.9.x and 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed Address Prefix List (APL) record.

Solutions

amazon-linux-upgrade-bindamazon-linux-upgrade-bind-chrootamazon-linux-upgrade-bind-debuginfoamazon-linux-upgrade-bind-develamazon-linux-upgrade-bind-libsamazon-linux-upgrade-bind-sdbamazon-linux-upgrade-bind-utils

References

AMAZON-ALAS-2016-641
CVE-2015-8704
https://attackerkb.com/topics/CVE-2015-8704

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today