Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 527
Alerts This Week
Warning Icon 1 527

openSUSE 42.1 Advisory: Important Bind DoS Fix CVE-2015-8000

opensuse
Calendar Grey December 25, 2015
Scroller Opensuse
In response to CVE-2015-8000, openSUSE has released updates for BIND to mitigate the risk of remote denial-of-service vulnerabilities by implementing critical security patches.
An update that fixes one vulnerability is now available

Description

This update for bind fixes the following security issue:

- CVE-2015-8000: Fix remote denial of service by misparsing incoming

responses (bsc#958861). This update was imported from the

SUSE:SLE-12-SP1:Update update project.

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.1:

zypper in -t patch openSUSE-2015-950=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.1 (i586 x86_64):

bind-9.9.6P1-27.1

bind-chrootenv-9.9.6P1-27.1

bind-debuginfo-9.9.6P1-27.1

bind-debugsource-9.9.6P1-27.1

bind-devel-9.9.6P1-27.1

bind-libs-9.9.6P1-27.1

bind-libs-debuginfo-9.9.6P1-27.1

bind-lwresd-9.9.6P1-27.1

bind-lwresd-debuginfo-9.9.6P1-27.1

bind-utils-9.9.6P1-27.1

bind-utils-debuginfo-9.9.6P1-27.1

- openSUSE Leap 42.1 (x86_64):

bind-libs-32bit-9.9.6P1-27.1

bind-libs-debuginfo-32bit-9.9.6P1-27.1

- openSUSE Leap 42.1 (noarch):

bind-doc-9.9.6P1-27.1

References

https://www.suse.com/security/cve/CVE-2015-8000.html

https://bugzilla.suse.com/show_bug.cgi?id=958861

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2015:2365-1
Rating: important
Affected Products: openSUSE Leap 42.1 .

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.