[lacnog] [dns-esp] Fwd: [1st-b] New vulnerabilities in BIND announced: CVE-2015-5722 and CVE-2015-5986
Nico
nicomail en gmail.com
Mie Sep 2 22:30:00 BRT 2015
De paso hoy también hubo de PowerDNS
https://doc.powerdns.com/md/security/powerdns-advisory-2015-02/
Saludos
On Sep 2, 2015 5:27 PM, "Carlos M. Martinez" <carlos en lacnic.net> wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> FYI... vulnerabilidades en BIND.
>
>
> - -------- Forwarded Message --------
> Subject: [1st-b] New vulnerabilities in BIND announced: CVE-2015-5722
> and CVE-2015-5986
> Date: Wed, 2 Sep 2015 22:20:17 +0200
> From: ISC Security Officer <security-officer en isc.org>
> <security-officer en isc.org>
> Reply-To: ISC Security Officer <security-officer en isc.org>
> <security-officer en isc.org>
> To: isc-csirt-security en lists.isc.org
>
>
>
> Please be advised that ISC publicly announced two critical
> vulnerabilities in BIND:
>
> + CVE-2015-5722 is a denial-of-service vector which can be
> exploited remotely against a BIND server that is performing
> validation on DNSSEC-signed records. All versions of BIND since
> 9.0.0 are vulnerable.
> https://kb.isc.org/article/AA-01287
>
> + CVE-2015-5986 is a denial-of-service vector which can be used
> against a BIND server that is performing recursion and (under
> limited conditions) an authoritative-only nameserver.
> Versions of BIND since 9.9.7 and 9.10.2 are vulnerable.
> https://kb.isc.org/article/AA-01291
>
>
> New releases of BIND, including security fixes for these
> vulnerabilities, are available:
>
> ftp://ftp.isc.org/isc/bind9/9.10.3rc1/RELEASE-NOTES.bind-9.10.3rc1.html
> ftp://ftp.isc.org/isc/bind9/9.9.8rc1/RELEASE-NOTES.bind-9.9.8rc1.html
> ftp://ftp.isc.org/isc/bind9/9.10.2-P4/RELEASE-NOTES.bind-9.10.2-P4.html
> ftp://ftp.isc.org/isc/bind9/9.9.7-P3/RELEASE-NOTES.bind-9.9.7-P3.html
>
> Marcin Siodelski
> (as ISC Security Officer)
>
>
>
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2
>
> iEYEARECAAYFAlXnW8IACgkQLGiPbNUVB6Ki6wCeLzEfD5V4j1B6Sh4gGXO1TodG
> JZQAn1cWCzJBXeEL03z0BdNhFrCUHSqM
> =gnBk
> -----END PGP SIGNATURE-----
>
>
> _______________________________________________
> dns-esp mailing list
> dns-esp en listas.nic.cl
> https://listas.nic.cl/mailman/listinfo/dns-esp
>
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <https://mail.lacnic.net/pipermail/lacnog/attachments/20150902/0e8bedca/attachment.html>
Más información sobre la lista de distribución LACNOG