Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Ubuntu 15.04 USN-2728-1 Critical Vulnerability in Bind DoS Threat

Calendar Sep 02, 2015 User Avatar LinuxSecurity Advisories
1 - 2 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service bind Ubuntu network issue
Bind could be made to crash if it received specially crafted network traffic. 
=========================================================================Ubuntu Security Notice USN-2728-1
September 02, 2015

bind9 vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 15.04
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS

Summary:

Bind could be made to crash if it received specially crafted network
traffic.

Software Description:
- bind9: Internet Domain Name Server

Details:

Hanno Böck discovered that Bind incorrectly handled certain malformed keys
when configured to perform DNSSEC validation. A remote attacker could use
this issue with specially crafted zone data to cause Bind to crash,
resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 15.04:
  bind9                           1:9.9.5.dfsg-9ubuntu0.3

Ubuntu 14.04 LTS:
  bind9                           1:9.9.5.dfsg-3ubuntu0.5

Ubuntu 12.04 LTS:
  bind9                           1:9.8.1.dfsg.P1-4ubuntu0.13

In general, a standard system update will make all the necessary changes.

References:
  
  CVE-2015-5722

Package Information:
  https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-9ubuntu0.3
  https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-3ubuntu0.5
  https://launchpad.net/ubuntu/+source/bind9/1:9.8.1.dfsg.P1-4ubuntu0.13

Ubuntu 15.04 USN-2728-1 Critical Vulnerability in Bind DoS Threat

ubuntu
Calendar Grey September 2, 2015
Dist Ubuntu Esm H88
=========================================================================Ubuntu Security Notice USN-
Bind could be made to crash if it received specially crafted network traffic.

Summary

Topics%20covered

Topics Covered

security advisory denial of service bind Ubuntu network issue

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 15.04: bind9 1:9.9.5.dfsg-9ubuntu0.3 Ubuntu 14.04 LTS: bind9 1:9.9.5.dfsg-3ubuntu0.5 Ubuntu 12.04 LTS: bind9 1:9.8.1.dfsg.P1-4ubuntu0.13 In general, a standard system update will make all the necessary changes.

References

CVE-2015-5722

Severity
critical
Lowest
Low
Medium
High
Critical

September 02, 2015

Topics%20covered

Topics Covered

security advisory denial of service bind Ubuntu network issue

Package Information

https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-9ubuntu0.3 https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-3ubuntu0.5 https://launchpad.net/ubuntu/+source/bind9/1:9.8.1.dfsg.P1-4ubuntu0.13

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here