Red Hat: CVE-2016-8864: Important: bind security and bug fix update ((Multiple Advisories))
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | November 02, 2016 | November 04, 2016 | January 17, 2018 |
Description
named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c.
Free Nexpose Download
Discover, prioritize, and remediate security risks today!
References
Solution
redhat-upgrade-bindRelated Vulnerabilities
- Amazon Linux AMI: CVE-2016-8864: Security patch for bind (ALAS-2016-768)
- Juniper Junos OS: 2017-04 Security Bulletin: SRX, vSRX and J-Series: Multiple vulnerabilities in ISC BIND named. (JSA10785) (multiple CVEs)
- SUSE: CVE-2016-8864: SUSE Linux Security Advisory
- CentOS: (CVE-2016-8864) (Multiple Advisories): bind97
- Oracle Solaris 11: CVE-2016-8864: Vulnerability in Bind
- Debian: CVE-2016-8864: bind9 -- security update
- Huawei EulerOS: CVE-2016-8864: bind security update
- F5 Networks: K35322517 (CVE-2016-8864): BIND vulnerability CVE-2016-8864
- Alpine Linux: CVE-2016-8864: bind A problem handling responses containing a DNAME answer can lead to an assertion failure
- Gentoo Linux: CVE-2016-8864: BIND: Denial of Service
- IBM AIX: bind_advisory14 (CVE-2016-8864): Denial of service vulnerability in ISC BIND
- Ubuntu: USN-3119-1 (CVE-2016-8864): Bind vulnerability
- Oracle Linux: (CVE-2016-8864) (Multiple Advisories): bind security update
- ISC BIND: A problem handling responses containing a DNAME answer can lead to an assertion failure (CVE-2016-8864)
- FreeBSD: VID-0B8D01A4-A0D2-11E6-9CA2-D050996490D0 (CVE-2016-8864): BIND -- Remote Denial of Service vulnerability