Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Ubuntu 17.04: USN-3346-1 Moderate: bind9 Zone Transfer Threat

ubuntu
Calendar Grey June 29, 2017
Dist Ubuntu Esm H88
Urgent update for Ubuntu users regarding Bind9 security vulnerabilities that may expose sensitive data. Apply the recommended updates to protect your system
Bind could be made to serve incorrect information or expose sensitive information over the network.

Summary

Bind could be made to serve incorrect information or expose sensitive

information over the network.

Software Description:

- bind9: Internet Domain Name Server

Details:

Clément Berthaux discovered that Bind did not correctly check TSIG

authentication for zone update requests. An attacker could use this

to improperly perform zone updates. (CVE-2017-3143)

Clément Berthaux discovered that Bind did not correctly check TSIG

authentication for zone transfer requests. An attacker could use this

to improperly transfer entire zones. (CVE-2017-3142)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.04:
  bind9                           1:9.10.3.dfsg.P4-10.1ubuntu5.1

Ubuntu 16.10:
  bind9                           1:9.10.3.dfsg.P4-10.1ubuntu1.7

Ubuntu 16.04 LTS:
  bind9                           1:9.10.3.dfsg.P4-8ubuntu1.7

Ubuntu 14.04 LTS:
  bind9                           1:9.9.5.dfsg-3ubuntu0.15

After a standard system update you need to restart Bind to make
all the necessary changes.

References

https://ubuntu.com/security/notices/USN-3346-1

CVE-2017-3142, CVE-2017-3143

Severity
important
Lowest
Low
Medium
High
Critical

June 29, 2017

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here