 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.69742 |
| Categoría: | Debian Local Security Checks |
| Título: | Debian Security Advisory DSA 2244-1 (bind9) |
| Resumen: | The remote host is missing an update to bind9;announced via advisory DSA 2244-1. |
| Descripción: | Summary: The remote host is missing an update to bind9 announced via advisory DSA 2244-1. Vulnerability Insight: It was discovered that BIND, an implementation of the DNS protocol, does not correctly process certain large RRSIG record sets in DNSSEC responses. The resulting assertion failure causes the name server process to crash, making name resolution unavailable. (CVE-2011-1910) In addition, this update fixes handling of certain signed/unsigned zone combinations when a DLV service is used. Previously, data from certain affected zones could become unavailable from the resolver. For the oldstable distribution (lenny), this problem has been fixed in version 1:9.6.ESV.R4+dfsg-0+lenny2. For the stable distribution (squeeze), this problem has been fixed in version 1:9.7.3.dfsg-1~ squeeze2. The testing distribution (wheezy) and the unstable distribution (sid) will be fixed soon. Solution: We recommend that you upgrade your bind9 packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2011-1910 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html BugTraq ID: 48007 http://www.securityfocus.com/bid/48007 CERT/CC vulnerability note: VU#795694 http://www.kb.cert.org/vuls/id/795694 Debian Security Information: DSA-2244 (Google Search) http://www.debian.org/security/2011/dsa-2244 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061401.html http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061082.html http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061405.html FreeBSD Security Advisory: FreeBSD-SA-11:02 http://security.freebsd.org/advisories/FreeBSD-SA-11:02.bind.asc HPdes Security Advisory: HPSBUX03235 http://marc.info/?l=bugtraq&m=142180687100892&w=2 HPdes Security Advisory: SSRT101750 http://www.mandriva.com/security/advisories?name=MDVSA-2011:104 http://osvdb.org/72540 http://www.redhat.com/support/errata/RHSA-2011-0845.html http://www.securitytracker.com/id?1025572 http://secunia.com/advisories/44677 http://secunia.com/advisories/44719 http://secunia.com/advisories/44741 http://secunia.com/advisories/44744 http://secunia.com/advisories/44758 http://secunia.com/advisories/44762 http://secunia.com/advisories/44783 http://secunia.com/advisories/44929 http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.685026 SuSE Security Announcement: openSUSE-SU-2011:0603 (Google Search) https://hermes.opensuse.org/messages/8699912 |
| Copyright | Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com |
| Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |