Oval Definition:oval:com.redhat.rhsa:def:20160459
Revision Date:2016-03-16Version:638
Title:RHSA-2016:0459: bind security update (Important)
Description:The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

  • A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash. (CVE-2016-1286)

  • A denial of service flaw was found in the way BIND processed certain control channel input. A remote attacker able to send a malformed packet to the control channel could use this flaw to cause named to crash. (CVE-2016-1285)

    Red Hat would like to thank ISC for reporting these issues.

    All bind users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, the BIND daemon (named) will be restarted automatically.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2016-1285
    CVE-2016-1286
    RHSA-2016:0459
    RHSA-2016:0459-00
    RHSA-2016:0459-01
    Platform(s):Red Hat Enterprise Linux 5
    Red Hat Enterprise Linux 6
    Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • bind is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind is signed with Red Hat redhatrelease2 key
  • bind-chroot is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-chroot is signed with Red Hat redhatrelease2 key
  • bind-devel is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-devel is signed with Red Hat redhatrelease2 key
  • bind-libbind-devel is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-libbind-devel is signed with Red Hat redhatrelease2 key
  • bind-libs is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-libs is signed with Red Hat redhatrelease2 key
  • bind-sdb is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-sdb is signed with Red Hat redhatrelease2 key
  • bind-utils is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-utils is signed with Red Hat redhatrelease2 key
  • caching-nameserver is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND caching-nameserver is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • bind is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind is signed with Red Hat redhatrelease2 key
  • bind-chroot is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-chroot is signed with Red Hat redhatrelease2 key
  • bind-devel is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-devel is signed with Red Hat redhatrelease2 key
  • bind-libs is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-libs is signed with Red Hat redhatrelease2 key
  • bind-sdb is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-sdb is signed with Red Hat redhatrelease2 key
  • bind-utils is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-utils is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • bind is earlier than 32:9.9.4-29.el7_2.3
  • AND bind is signed with Red Hat redhatrelease2 key
  • bind-chroot is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-chroot is signed with Red Hat redhatrelease2 key
  • bind-devel is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-devel is signed with Red Hat redhatrelease2 key
  • bind-libs is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-libs is signed with Red Hat redhatrelease2 key
  • bind-libs-lite is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-libs-lite is signed with Red Hat redhatrelease2 key
  • bind-license is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-license is signed with Red Hat redhatrelease2 key
  • bind-lite-devel is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-lite-devel is signed with Red Hat redhatrelease2 key
  • bind-pkcs11 is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11 is signed with Red Hat redhatrelease2 key
  • bind-pkcs11-devel is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • bind-pkcs11-libs is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11-libs is signed with Red Hat redhatrelease2 key
  • bind-pkcs11-utils is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11-utils is signed with Red Hat redhatrelease2 key
  • bind-sdb is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-sdb is signed with Red Hat redhatrelease2 key
  • bind-sdb-chroot is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-sdb-chroot is signed with Red Hat redhatrelease2 key
  • bind-utils is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-utils is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • bind is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind is signed with Red Hat redhatrelease key
  • bind-chroot is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-chroot is signed with Red Hat redhatrelease key
  • bind-devel is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-devel is signed with Red Hat redhatrelease key
  • bind-libbind-devel is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-libbind-devel is signed with Red Hat redhatrelease key
  • bind-libs is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-libs is signed with Red Hat redhatrelease key
  • bind-sdb is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-sdb is signed with Red Hat redhatrelease key
  • bind-utils is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND bind-utils is signed with Red Hat redhatrelease key
  • caching-nameserver is earlier than 30:9.3.6-25.P1.el5_11.8
  • AND caching-nameserver is signed with Red Hat redhatrelease key
  • OR Package Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND
  • bind is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind is signed with Red Hat redhatrelease2 key
  • bind-chroot is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-chroot is signed with Red Hat redhatrelease2 key
  • bind-devel is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-devel is signed with Red Hat redhatrelease2 key
  • bind-libs is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-libs is signed with Red Hat redhatrelease2 key
  • bind-sdb is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-sdb is signed with Red Hat redhatrelease2 key
  • bind-utils is earlier than 32:9.8.2-0.37.rc1.el6_7.7
  • AND bind-utils is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 Client is installed
  • OR Red Hat Enterprise Linux 7 Server is installed
  • OR Red Hat Enterprise Linux 7 Workstation is installed
  • OR Red Hat Enterprise Linux 7 ComputeNode is installed
  • AND
  • bind is earlier than 32:9.9.4-29.el7_2.3
  • AND bind is signed with Red Hat redhatrelease2 key
  • bind-chroot is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-chroot is signed with Red Hat redhatrelease2 key
  • bind-devel is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-devel is signed with Red Hat redhatrelease2 key
  • bind-libs is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-libs is signed with Red Hat redhatrelease2 key
  • bind-libs-lite is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-libs-lite is signed with Red Hat redhatrelease2 key
  • bind-license is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-license is signed with Red Hat redhatrelease2 key
  • bind-lite-devel is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-lite-devel is signed with Red Hat redhatrelease2 key
  • bind-pkcs11 is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11 is signed with Red Hat redhatrelease2 key
  • bind-pkcs11-devel is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • bind-pkcs11-libs is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11-libs is signed with Red Hat redhatrelease2 key
  • bind-pkcs11-utils is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-pkcs11-utils is signed with Red Hat redhatrelease2 key
  • bind-sdb is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-sdb is signed with Red Hat redhatrelease2 key
  • bind-sdb-chroot is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-sdb-chroot is signed with Red Hat redhatrelease2 key
  • bind-utils is earlier than 32:9.9.4-29.el7_2.3
  • AND bind-utils is signed with Red Hat redhatrelease2 key
    • BACK