Описание
Security update for bind
This update fixes the following security issue:
- CVE-2015-8000: Fix remote denial of service by misparsing incoming responses (bsc#958861).
Список пакетов
SUSE Linux Enterprise Desktop 12
bind-libs-9.9.6P1-28.6.1
bind-libs-32bit-9.9.6P1-28.6.1
bind-utils-9.9.6P1-28.6.1
SUSE Linux Enterprise Server 12
bind-9.9.6P1-28.6.1
bind-chrootenv-9.9.6P1-28.6.1
bind-doc-9.9.6P1-28.6.1
bind-libs-9.9.6P1-28.6.1
bind-libs-32bit-9.9.6P1-28.6.1
bind-utils-9.9.6P1-28.6.1
SUSE Linux Enterprise Server for SAP Applications 12
bind-9.9.6P1-28.6.1
bind-chrootenv-9.9.6P1-28.6.1
bind-doc-9.9.6P1-28.6.1
bind-libs-9.9.6P1-28.6.1
bind-libs-32bit-9.9.6P1-28.6.1
bind-utils-9.9.6P1-28.6.1
SUSE Linux Enterprise Software Development Kit 12
bind-devel-9.9.6P1-28.6.1
Ссылки
- Link for SUSE-SU-2015:2341-1
- E-Mail link for SUSE-SU-2015:2341-1
- SUSE Security Ratings
- SUSE Bug 958861
- SUSE CVE CVE-2015-8000 page
Описание
db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.
Затронутые продукты
SUSE Linux Enterprise Desktop 12:bind-libs-32bit-9.9.6P1-28.6.1
SUSE Linux Enterprise Desktop 12:bind-libs-9.9.6P1-28.6.1
SUSE Linux Enterprise Desktop 12:bind-utils-9.9.6P1-28.6.1
SUSE Linux Enterprise Server 12:bind-9.9.6P1-28.6.1
Ссылки
- CVE-2015-8000
- SUSE Bug 944066
- SUSE Bug 958861