Detections
Analytics
Amazon Linux AMI : bind (ALAS-2017-826)
high Nessus Plugin ID 99714
Language:
Synopsis
The remote Amazon Linux AMI host is missing a security update.Description
A denial of service flaw was found in the way BIND handled a query response containing CNAME or DNAME resource records in an unusual order. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response. (CVE-2017-3137)A denial of service flaw was found in the way BIND handled query requests when using DNS64 with 'break-dnssec yes' option. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS request. (CVE-2017-3136)
Upstream acknowledges Oleg Gorokhov (Yandex) as the original reporter of CVE-2017-3136 .
Solution
Run 'yum update bind' to update your system.See Also
Plugin Details
Severity: High
ID: 99714
File Name: ala_ALAS-2017-826.nasl
Version: 3.6
Type: local
Agent: unix
Published: 4/28/2017
Updated: 2/12/2019
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: Medium
Base Score: 5
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS v3
Risk Factor: High
Base Score: 7.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Information
CPE: p-cpe:/a:amazon:linux:bind-debuginfo, p-cpe:/a:amazon:linux:bind-chroot, p-cpe:/a:amazon:linux:bind-devel, p-cpe:/a:amazon:linux:bind-sdb, cpe:/o:amazon:linux, p-cpe:/a:amazon:linux:bind-utils, p-cpe:/a:amazon:linux:bind-libs, p-cpe:/a:amazon:linux:bind
Required KB Items: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list
Patch Publication Date: 4/27/2017
Vulnerability Publication Date: 1/16/2019
Reference Information
CVE: CVE-2017-3136, CVE-2017-3137