openSUSE-SU-2016:0197-1

Опубликовано: 22 янв. 2016

Источник: suse-cvrf

Описание

Security update for bind

This update for bind fixes the following issues:

CVE-2015-8704: Specific APL data allowed remote attacker to trigger a crash in certain configurations (bsc#962189)

This update was imported from the SUSE:SLE-12-SP1:Update update project.

Список пакетов

openSUSE Leap 42.1

bind-9.9.6P1-30.1

bind-chrootenv-9.9.6P1-30.1

bind-devel-9.9.6P1-30.1

bind-doc-9.9.6P1-30.1

bind-libs-9.9.6P1-30.1

bind-libs-32bit-9.9.6P1-30.1

bind-lwresd-9.9.6P1-30.1

bind-utils-9.9.6P1-30.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2016-01/msg00022.html
E-Mail link for openSUSE-SU-2016:0197-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

apl_42.c in ISC BIND 9.x before 9.9.8-P3, 9.9.x, and 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed Address Prefix List (APL) record.

Затронутые продукты

openSUSE Leap 42.1:bind-9.9.6P1-30.1

openSUSE Leap 42.1:bind-chrootenv-9.9.6P1-30.1

openSUSE Leap 42.1:bind-devel-9.9.6P1-30.1

openSUSE Leap 42.1:bind-doc-9.9.6P1-30.1

Ссылки

https://www.suse.com/security/cve/CVE-2015-8704.html
CVE-2015-8704
https://bugzilla.suse.com/962189
SUSE Bug 962189
https://bugzilla.suse.com/962190
SUSE Bug 962190

openSUSE-SU-2016:0197-1

Описание

Список пакетов

openSUSE Leap 42.1

Ссылки

Уязвимость: CVE-2015-8704

Описание

Затронутые продукты

Ссылки