You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa bind i bind99

Sigurnosni nedostaci programskog paketa bind i bind99

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2017-87992a0557
2017-01-14 00:22:37.172463
——————————————————————————–

Name : bind
Product : Fedora 25
Version : 9.10.4
Release : 3.P5.fc25
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

——————————————————————————–
Update Information:

Security fix for CVE-2016-9131, CVE-2016-9147, CVE-2016-9444
——————————————————————————–
References:

[ 1 ] Bug #1411348 – CVE-2016-9131 bind: assertion failure while processing response to an ANY query
https://bugzilla.redhat.com/show_bug.cgi?id=1411348
[ 2 ] Bug #1411367 – CVE-2016-9147 bind: assertion failure while handling a query response containing inconsistent DNSSEC information
https://bugzilla.redhat.com/show_bug.cgi?id=1411367
[ 3 ] Bug #1411377 – CVE-2016-9444 bind: assertion failure while handling an unusually-formed DS record response
https://bugzilla.redhat.com/show_bug.cgi?id=1411377
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade bind’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2017-f44f2f5a48
2017-01-14 00:22:37.172566
——————————————————————————–

Name : bind99
Product : Fedora 25
Version : 9.9.9
Release : 4.P5.fc25
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) libraries
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. This package set contains only export
version of BIND libraries, that are used for building ISC DHCP.

——————————————————————————–
Update Information:

Security fix for CVE-2016-9131, CVE-2016-9147, CVE-2016-9444
——————————————————————————–
References:

[ 1 ] Bug #1411348 – CVE-2016-9131 bind: assertion failure while processing response to an ANY query
https://bugzilla.redhat.com/show_bug.cgi?id=1411348
[ 2 ] Bug #1411367 – CVE-2016-9147 bind: assertion failure while handling a query response containing inconsistent DNSSEC information
https://bugzilla.redhat.com/show_bug.cgi?id=1411367
[ 3 ] Bug #1411377 – CVE-2016-9444 bind: assertion failure while handling an unusually-formed DS record response
https://bugzilla.redhat.com/show_bug.cgi?id=1411377
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade bind99’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

 

——————————————————————————–

Fedora Update Notification

FEDORA-2017-59ca54c94e

2017-01-16 15:59:40.608986

——————————————————————————–

 

Name        : bind

Product     : Fedora 24

Version     : 9.10.4

Release     : 3.P5.fc24

URL         : http://www.isc.org/products/BIND/

Summary     : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server

Description :

BIND (Berkeley Internet Name Domain) is an implementation of the DNS

(Domain Name System) protocols. BIND includes a DNS server (named),

which resolves host names to IP addresses; a resolver library

(routines for applications to use when interfacing with DNS); and

tools for verifying that the DNS server is operating properly.

 

——————————————————————————–

Update Information:

 

Security fix for CVE-2016-9131, CVE-2016-9147, CVE-2016-9444

——————————————————————————–

References:

 

  [ 1 ] Bug #1411348 – CVE-2016-9131 bind: assertion failure while processing response to an ANY query

        https://bugzilla.redhat.com/show_bug.cgi?id=1411348

  [ 2 ] Bug #1411367 – CVE-2016-9147 bind: assertion failure while handling a query response containing inconsistent DNSSEC information

        https://bugzilla.redhat.com/show_bug.cgi?id=1411367

  [ 3 ] Bug #1411377 – CVE-2016-9444 bind: assertion failure while handling an unusually-formed DS record response

        https://bugzilla.redhat.com/show_bug.cgi?id=1411377

——————————————————————————–

 

This update can be installed with the “dnf” update program. Use

su -c ‘dnf upgrade bind’ at the command line.

For more information, refer to the dnf documentation available at

http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

 

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/keys

——————————————————————————–

_______________________________________________

package-announce mailing list — package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

 

 

——————————————————————————–

Fedora Update Notification

FEDORA-2017-8f23f564ad

2017-01-16 15:59:40.609058

——————————————————————————–

 

Name        : bind99

Product     : Fedora 24

Version     : 9.9.9

Release     : 4.P5.fc24

URL         : http://www.isc.org/products/BIND/

Summary     : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) libraries

Description :

BIND (Berkeley Internet Name Domain) is an implementation of the DNS

(Domain Name System) protocols. This package set contains only export

version of BIND libraries, that are used for building ISC DHCP.

 

——————————————————————————–

Update Information:

 

Security fix for CVE-2016-9131, CVE-2016-9147, CVE-2016-9444

——————————————————————————–

References:

 

  [ 1 ] Bug #1411348 – CVE-2016-9131 bind: assertion failure while processing response to an ANY query

        https://bugzilla.redhat.com/show_bug.cgi?id=1411348

  [ 2 ] Bug #1411367 – CVE-2016-9147 bind: assertion failure while handling a query response containing inconsistent DNSSEC information

        https://bugzilla.redhat.com/show_bug.cgi?id=1411367

  [ 3 ] Bug #1411377 – CVE-2016-9444 bind: assertion failure while handling an unusually-formed DS record response

        https://bugzilla.redhat.com/show_bug.cgi?id=1411377

——————————————————————————–

 

This update can be installed with the “dnf” update program. Use

su -c ‘dnf upgrade bind99’ at the command line.

For more information, refer to the dnf documentation available at

http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

 

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/keys

——————————————————————————–

_______________________________________________

package-announce mailing list — package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

AutorVlatka Misic
Cert idNCERT-REF-2017-01-0051-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa onionshare

Otkriveni su sigurnosni nedostaci u programskom paketu onionshare za Fedoru. Ako napadač kreira /tmp/onionshare direktorij s određenim ovlastima, ranjivost može...

Close