Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 527
Alerts This Week
Warning Icon 1 527

openSUSE 11.4: 2391-1 Important BIND Remote Denial of Service Vulnerability

opensuse
Calendar Grey December 29, 2015
Scroller Opensuse
A critical patch for Fedora addresses a vulnerability that could lead to remote denial of service in named. Update immediately for your security.
An update that fixes one vulnerability is now available

Description

This update for bind fixes the following security issue:

- CVE-2015-8000: Fix remote denial of service by misparsing incoming

responses (boo#958861).

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Evergreen 11.4:

zypper in -t patch 2015-969=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Evergreen 11.4 (i586 x86_64):

bind-9.9.4P2-72.1

bind-chrootenv-9.9.4P2-72.1

bind-debuginfo-9.9.4P2-72.1

bind-debugsource-9.9.4P2-72.1

bind-devel-9.9.4P2-72.1

bind-libs-9.9.4P2-72.1

bind-libs-debuginfo-9.9.4P2-72.1

bind-lwresd-9.9.4P2-72.1

bind-lwresd-debuginfo-9.9.4P2-72.1

bind-utils-9.9.4P2-72.1

bind-utils-debuginfo-9.9.4P2-72.1

- openSUSE Evergreen 11.4 (x86_64):

bind-libs-32bit-9.9.4P2-72.1

bind-libs-debuginfo-32bit-9.9.4P2-72.1

- openSUSE Evergreen 11.4 (noarch):

bind-doc-9.9.4P2-72.1

- openSUSE Evergreen 11.4 (ia64):

bind-libs-debuginfo-x86-9.9.4P2-72.1

bind-libs-x86-9.9.4P2-72.1

References

https://www.suse.com/security/cve/CVE-2015-8000.html

https://bugzilla.suse.com/show_bug.cgi?id=958861

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2015:2391-1
Rating: important
Affected Products: openSUSE Evergreen 11.4 .

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.