Vulnerability Name:

CVE-2007-2926 (CCN-35575)

Assigned:2007-07-23
Published:2007-07-23
Updated:2018-10-30
Summary:ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.
CVSS v3 Severity:6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.4 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
6.4 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: CONFIRM
Type: UNKNOWN
ftp://aix.software.ibm.com/aix/efixes/security/README

Source: CCN
Type: NetBSD-SA2007-007
BIND cryptographically weak query IDs

Source: SGI
Type: UNKNOWN
20070801-01-P

Source: CCN
Type: BugTraq Mailing List, Tue Jul 24 2007 - 02:33:51 CDT
"BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

Source: CCN
Type: BugTraq Mailing List, Fri Aug 31 2007 - 09:34:17 CDT
HPSBTU02256 SSRT071449 : HP Tru64 UNIX or HP Tru64 Internet Express running BIND, Remote DNS Cache Poisoning

Source: MITRE
Type: CNA
CVE-2007-2926

Source: CCN
Type: Apple Web site
About the security content of Mac OS X 10.4.11 and Security Update 2007-008

Source: CONFIRM
Type: UNKNOWN
http://docs.info.apple.com/article.html?artnum=307041

Source: CCN
Type: HP Security Bulletin HPSBUX02251 SSRT071449 rev.1
HP-UX Running BIND, Remote DNS Cache Poisoning

Source: CCN
Type: HP Security Bulletin HPSBUX02251 SSRT071449 rev.3
HP-UX Running BIND, Remote DNS Cache Poisoning

Source: CCN
Type: HP Security Bulletin HPSBOV02261 SSRT071449
HP OpenVMS running BIND, Remote DNS Cache Poisoning

Source: HP
Type: UNKNOWN
HPSBUX02251

Source: HP
Type: UNKNOWN
HPSBTU02256

Source: HP
Type: UNKNOWN
HPSBOV02261

Source: APPLE
Type: UNKNOWN
APPLE-SA-2007-11-14

Source: HP
Type: UNKNOWN
HPSBOV03226

Source: CCN
Type: RHSA-2007-0740
Moderate: bind security update

Source: SECUNIA
Type: UNKNOWN
26148

Source: CCN
Type: SA26152
BIND Predictable DNS Query IDs Vulnerability

Source: SECUNIA
Type: Vendor Advisory
26152

Source: CCN
Type: SA26160
Sun Solaris BIND Predictable DNS Query IDs Vulnerability

Source: SECUNIA
Type: UNKNOWN
26160

Source: SECUNIA
Type: UNKNOWN
26180

Source: SECUNIA
Type: UNKNOWN
26195

Source: SECUNIA
Type: UNKNOWN
26217

Source: SECUNIA
Type: UNKNOWN
26227

Source: SECUNIA
Type: UNKNOWN
26231

Source: SECUNIA
Type: UNKNOWN
26236

Source: SECUNIA
Type: UNKNOWN
26261

Source: SECUNIA
Type: UNKNOWN
26308

Source: SECUNIA
Type: UNKNOWN
26330

Source: SECUNIA
Type: UNKNOWN
26509

Source: CCN
Type: SA26515
Nortel Products BIND Predictable DNS Query IDs Vulnerability

Source: SECUNIA
Type: UNKNOWN
26515

Source: CCN
Type: SA26531
IBM AIX BIND Predictable DNS Query IDs Vulnerability

Source: SECUNIA
Type: UNKNOWN
26531

Source: CCN
Type: SA26605
HP Tru64 UNIX BIND Predictable DNS Query IDs Vulnerability

Source: SECUNIA
Type: UNKNOWN
26605

Source: SECUNIA
Type: UNKNOWN
26607

Source: CCN
Type: SA26847
Avaya Products BIND Predictable DNS Query IDs Vulnerability

Source: SECUNIA
Type: UNKNOWN
26847

Source: CCN
Type: SA26925
HP TCP/IP Services for OpenVMS BIND Vulnerability

Source: SECUNIA
Type: UNKNOWN
26925

Source: CCN
Type: SA27643
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
27643

Source: CCN
Type: SA36182
HP TCP/IP Services for OpenVMS BIND Denial of Service

Source: CCN
Type: FreeBSD-SA-07:07.bind
Predictable query ids in named(8)

Source: FREEBSD
Type: UNKNOWN
FreeBSD-SA-07:07

Source: CCN
Type: SECTRACK ID: 1018442
BIND Generates Predictable Query IDs That May Facilitate Cache Poisoning Attacks

Source: SUNALERT
Type: UNKNOWN
103018

Source: CCN
Type: Sun Alert ID: 103018
Security Vulnerability in Solaris 10 BIND: Susceptible to Cache Poisoning Attack

Source: CCN
Type: ASA-2007-332
Security Vulnerability in Solaris 10 BIND: Susceptible to Cache Poisoning Attack (Sun 103018)

Source: CCN
Type: ASA-2007-344
HP-UX Running BIND Remote DNS Cache Poisoning (HPSBUX02251)

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2007-389.htm

Source: CCN
Type: ASA-2007-389
bind security update (RHSA-2007-0740)

Source: CONFIRM
Type: UNKNOWN
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=623903

Source: CCN
Type: Nortel Response to ISC:DNS
BIND 9 Vulnerabilities in Default ACL and Weak Query IDs

Source: CCN
Type: IBM APAR IZ02218
POTENTIAL SECURITY ISSUE

Source: CCN
Type: IBM APAR IZ02219
POTENTIAL SECURITY ISSUE

Source: AIXAPAR
Type: UNKNOWN
IZ02218

Source: AIXAPAR
Type: UNKNOWN
IZ02219

Source: DEBIAN
Type: UNKNOWN
DSA-1341

Source: DEBIAN
Type: DSA-1341
bind9 -- design error

Source: CCN
Type: GLSA-200708-13
BIND: Weak random number generation

Source: GENTOO
Type: UNKNOWN
GLSA-200708-13

Source: CONFIRM
Type: UNKNOWN
http://www.isc.org/index.pl?/sw/bind/bind-security.php

Source: CCN
Type: Internet Software Consortium (ISC) Web site
BIND (Berkeley Internet Name Domain) page

Source: CCN
Type: US-CERT VU#252735
ISC BIND generates cryptographically weak DNS query IDs

Source: CERT-VN
Type: US Government Resource
VU#252735

Source: MANDRIVA
Type: UNKNOWN
MDKSA-2007:149

Source: SUSE
Type: UNKNOWN
SUSE-SA:2007:047

Source: CCN
Type: OpenPKG-SA-2007.022
bind

Source: OPENPKG
Type: UNKNOWN
OpenPKG-SA-2007.022

Source: REDHAT
Type: UNKNOWN
RHSA-2007:0740

Source: MISC
Type: UNKNOWN
http://www.securiteam.com/securitynews/5VP0L0UM0A.html

Source: BUGTRAQ
Type: UNKNOWN
20070724 "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

Source: BUGTRAQ
Type: UNKNOWN
20070724 Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

Source: BUGTRAQ
Type: UNKNOWN
20070726 Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

Source: BUGTRAQ
Type: UNKNOWN
20070727 Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

Source: BID
Type: UNKNOWN
25037

Source: CCN
Type: BID-25037
ISC BIND 9 Remote Cache Poisoning Vulnerability

Source: BID
Type: UNKNOWN
26444

Source: CCN
Type: BID-26444
Apple Mac OS X v10.4.11 2007-008 Multiple Security Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1018442

Source: SLACKWARE
Type: UNKNOWN
SSA:2007-207-01

Source: MISC
Type: UNKNOWN
http://www.trusteer.com/docs/bind9dns.html

Source: MISC
Type: UNKNOWN
http://www.trusteer.com/docs/bind9dns_s.html

Source: TRUSTIX
Type: UNKNOWN
2007-0023

Source: CCN
Type: TLSA-2007-38
DNS cache poisoning

Source: CCN
Type: USN-491-1
Bind vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-491-1

Source: CERT
Type: US Government Resource
TA07-319A

Source: VUPEN
Type: UNKNOWN
ADV-2007-2627

Source: VUPEN
Type: UNKNOWN
ADV-2007-2662

Source: VUPEN
Type: UNKNOWN
ADV-2007-2782

Source: VUPEN
Type: UNKNOWN
ADV-2007-2914

Source: VUPEN
Type: UNKNOWN
ADV-2007-2932

Source: VUPEN
Type: UNKNOWN
ADV-2007-3242

Source: VUPEN
Type: UNKNOWN
ADV-2007-3868

Source: CCN
Type: HP Security Bulletin HPSBTU02256 SSRT071449
BIND Remote Denial of Service, Unauthorized Disclosure of Information, and Unauthorized Modification

Source: XF
Type: UNKNOWN
isc-bind-queryid-spoofing(35575)

Source: XF
Type: UNKNOWN
isc-bind-queryid-spoofing(35575)

Source: CONFIRM
Type: UNKNOWN
https://issues.rpath.com/browse/RPL-1587

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10293

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:2226

Source: SUSE
Type: SUSE-SA:2007:047
bind DNS cache poisoning problem

Vulnerable Configuration:Configuration 1:
  • cpe:/a:isc:bind:9.0:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.3:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.4:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.5:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.5.0:*:*:*:-:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

    • Configuration RedHat 6:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

    • Configuration RedHat 7:
  • cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

    • Configuration RedHat 8:
  • cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

    • Configuration RedHat 9:
  • cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:isc:bind:9.3.0:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.3.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.3.2:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.3.3:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.4.0:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.4.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.5.0:a1:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.5.0:a2:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.5.0:a3:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.5.0:a4:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.5.0:a5:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.3.4:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.0:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.1:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.2:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.3:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.4:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.5:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.6:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.7:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.2.8:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.0:*:*:*:-:*:*:*
  • OR cpe:/a:isc:bind:9.1:*:*:*:-:*:*:*
  • AND
  • cpe:/a:openpkg:openpkg:current:*:*:*:*:*:*:*
  • OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:5.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:ws:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:b.11.11:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*
  • OR cpe:/a:suse:suse_linux_school_server:-:*:*:*:*:*:*:*
  • OR cpe:/h:avaya:converged_communications_server:-:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:b.11.23:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:5.3:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:5.3:-:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/a:mandrakesoft:mandrake_multi_network_firewall:2.0:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:5.4:-:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10::sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10::x86:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:intuity_audix_lx:*:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:message_networking:-:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:10.0::oss:*:*:*:*:*
  • OR cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.3:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:6.0:-:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.4:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.5:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.6:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:6.06::lts:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:10.1::personal:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.7:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:5.5:-:*:*:*:*:*:*
  • OR cpe:/o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:6.1:-:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.8:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.9:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0::x86-64:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:4.0.3:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.04:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:b.11.31:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:3.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:hp:tcp_ip_services_openvms:5.6:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:6.2:-:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.4.10:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x_server:10.4.10:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007.1::x86-64:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:2.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4.5.z::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4.5.z::es:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:5.0:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:2.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:3.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:sip_enablement_services:*:*:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.2:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:5.1:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:3.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:avaya:communication_manager:4.0.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20072926
    V
    		CVE-2007-2926
    2022-06-30
    oval:org.opensuse.security:def:42277
    P
    		Security update for tar (Moderate)
    2022-05-05
    oval:org.opensuse.security:def:112004
    P
    		bind-9.16.20-1.4 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:26219
    P
    		Security update for apache2 (Important) (in QA)
    2022-01-10
    oval:org.opensuse.security:def:31751
    P
    		Security update for java-1_8_0-ibm (Important) (in QA)
    2022-01-04
    oval:org.opensuse.security:def:33056
    P
    		Security update for webkit2gtk3 (Important)
    2021-12-01
    oval:org.opensuse.security:def:31709
    P
    		Security update for java-1_8_0-openjdk (Important)
    2021-11-23
    oval:org.opensuse.security:def:32225
    P
    		Security update for postgresql10 (Important)
    2021-11-22
    oval:org.opensuse.security:def:31304
    P
    		Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
    2021-11-19
    oval:org.opensuse.security:def:31704
    P
    		Security update for samba (Important)
    2021-11-19
    oval:org.opensuse.security:def:26152
    P
    		Security update for postgresql10 (Important)
    2021-10-20
    oval:org.opensuse.security:def:33017
    P
    		Security update for glibc (Moderate)
    2021-10-06
    oval:org.opensuse.security:def:105563
    P
    		bind-9.16.20-1.4 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:26138
    P
    		Security update for python-urllib3 (Moderate)
    2021-09-29
    oval:org.opensuse.security:def:26129
    P
    		Security update for gtk-vnc (Moderate)
    2021-09-16
    oval:org.opensuse.security:def:32169
    P
    		Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
    2021-08-25
    oval:org.opensuse.security:def:26099
    P
    		Security update for libsndfile (Critical)
    2021-08-05
    oval:org.opensuse.security:def:31660
    P
    		Security update for dbus-1 (Important)
    2021-08-02
    oval:org.opensuse.security:def:32157
    P
    		Security update for qemu (Important)
    2021-07-29
    oval:org.opensuse.security:def:31227
    P
    		Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)
    2021-07-21
    oval:org.opensuse.security:def:31647
    P
    		Security update for libgcrypt (Important)
    2021-06-24
    oval:org.opensuse.security:def:31212
    P
    		Security update for ovmf (Important)
    2021-06-22
    oval:org.opensuse.security:def:31645
    P
    		Security update for ovmf (Important)
    2021-06-22
    oval:org.opensuse.security:def:26068
    P
    		Security update for libX11 (Important)
    2021-06-08
    oval:org.opensuse.security:def:36093
    P
    		bind-9.9.6P1-0.5.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:36376
    P
    		bind-devel-32bit-9.9.6P1-0.5.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:42500
    P
    		bind-9.9.6P1-0.5.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:32113
    P
    		Security update for qemu (Important)
    2021-06-08
    oval:org.opensuse.security:def:42080
    P
    		Security update for ceph (Important)
    2021-06-02
    oval:org.opensuse.security:def:32091
    P
    		Security update for python3 (Important)
    2021-05-17
    oval:org.opensuse.security:def:26050
    P
    		Security update for python3 (Important)
    2021-05-17
    oval:org.opensuse.security:def:31153
    P
    		Security update for xen (Important)
    2021-04-19
    oval:org.opensuse.security:def:31604
    P
    		Security update for spamassassin (Important)
    2021-04-12
    oval:org.opensuse.security:def:31142
    P
    		Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)
    2021-04-07
    oval:org.opensuse.security:def:31141
    P
    		Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)
    2021-04-07
    oval:org.opensuse.security:def:31748
    P
    		Security update for openssl (Moderate)
    2021-03-24
    oval:org.opensuse.security:def:31361
    P
    		Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)
    2021-03-17
    oval:org.opensuse.security:def:31359
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-03-17
    oval:org.opensuse.security:def:32274
    P
    		Security update for glib2 (Important)
    2021-03-16
    oval:org.opensuse.security:def:31349
    P
    		Security update for MozillaFirefox (Important)
    2021-03-01
    oval:org.opensuse.security:def:26196
    P
    		Security update for ImageMagick (Moderate)
    2021-02-19
    oval:org.opensuse.security:def:31338
    P
    		Security update for openvswitch (Important)
    2021-02-12
    oval:org.opensuse.security:def:31337
    P
    		Security update for python (Important)
    2021-02-11
    oval:org.opensuse.security:def:26210
    P
    		Security update for MozillaFirefox (Important)
    2021-01-12
    oval:org.opensuse.security:def:25984
    P
    		Security update for cyrus-sasl (Important)
    2020-12-28
    oval:org.opensuse.security:def:32834
    P
    		Security update for curl (Moderate)
    2020-12-18
    oval:org.opensuse.security:def:32013
    P
    		Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)
    2020-12-07
    oval:org.opensuse.security:def:32003
    P
    		Security update for python-cryptography (Moderate)
    2020-12-04
    oval:org.opensuse.security:def:31560
    P
    		Security update for python-cryptography (Moderate)
    2020-12-04
    oval:org.opensuse.security:def:35870
    P
    		bind-9.6ESVR7P4-0.10.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:31559
    P
    		Security update for gdm (Important)
    2020-12-03
    oval:org.opensuse.security:def:35526
    P
    		bind-9.5.0P2-20.7.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35673
    P
    		bind-9.6ESVR5P1-0.8.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:41933
    P
    		bind-9.5.0P2-20.7.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:31080
    P
    		Security update for python-setuptools (Important)
    2020-12-02
    oval:org.opensuse.security:def:30995
    P
    		Security update for jasper (Important)
    2020-12-01
    oval:org.opensuse.security:def:25509
    P
    		Security update for libssh (Important)
    2020-12-01
    oval:org.opensuse.security:def:26657
    P
    		LibVNCServer on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25846
    P
    		Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25801
    P
    		Security update for libvdpau (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31895
    P
    		Security update for MozillaFirefox, mozilla-nspr (Important)
    2020-12-01
    oval:org.opensuse.security:def:26869
    P
    		bind on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25077
    P
    		Security update for clamav (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25650
    P
    		Security update for SDL (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27339
    P
    		xterm on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25903
    P
    		Security update for util-linux (Important)
    2020-12-01
    oval:org.opensuse.security:def:31961
    P
    		Security update for guile (Low)
    2020-12-01
    oval:org.opensuse.security:def:25089
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:26272
    P
    		Security update for openexr (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32335
    P
    		Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:25421
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:31555
    P
    		Security update for sqlite3 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25956
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32638
    P
    		bind on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25925
    P
    		Security update for pcre (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25281
    P
    		Security update for squid (Important)
    2020-12-01
    oval:org.opensuse.security:def:31595
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26360
    P
    		Security update for MozillaThunderbird (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25496
    P
    		Security update for ceph (Important)
    2020-12-01
    oval:org.opensuse.security:def:26638
    P
    		squid on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25937
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25419
    P
    		Security update for kernel-firmware (Important)
    2020-12-01
    oval:org.opensuse.security:def:26418
    P
    		Security update for pdns-recursor (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25705
    P
    		Security update for python3 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25707
    P
    		Security update for java-1_7_1-ibm (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31770
    P
    		Security update for MozillaFirefox, mozilla-nss, mozilla-nspr (Important)
    2020-12-01
    oval:org.opensuse.security:def:25997
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:27091
    P
    		bind on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25224
    P
    		Security update for libqt5-qtbase (Important)
    2020-12-01
    oval:org.opensuse.security:def:25795
    P
    		Security update for kernel-source (Important)
    2020-12-01
    oval:org.opensuse.security:def:32452
    P
    		Security update for xerces-j2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31571
    P
    		Security update for strongswan (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26267
    P
    		Security update for xawtv (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25236
    P
    		Security update for libexif (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31451
    P
    		Security update for postgresql10 (Important)
    2020-12-01
    oval:org.opensuse.security:def:26555
    P
    		glib2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25853
    P
    		Security update for gtk2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25643
    P
    		Security update for hunspell (Low)
    2020-12-01
    oval:org.opensuse.security:def:31777
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:30994
    P
    		Security update for jasper (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25428
    P
    		Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:31791
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:26643
    P
    		systemtap on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26526
    P
    		bind on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25718
    P
    		Security update for java-1_7_0-openjdk (Important)
    2020-12-01
    oval:org.opensuse.security:def:31926
    P
    		Recommended update for ghostscript-library (Important)
    2020-12-01
    oval:org.opensuse.security:def:31856
    P
    		Security update for cups (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26834
    P
    		tomcat6 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31006
    P
    		Security update for java-1_6_0-ibm (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25566
    P
    		Security update for openexr (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26701
    P
    		ft2demos on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25927
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25854
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31917
    P
    		Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25078
    P
    		Security update for mailman (Important)
    2020-12-01
    oval:org.opensuse.security:def:32313
    P
    		Security update for quagga (Important)
    2020-12-01
    oval:org.opensuse.security:def:27374
    P
    		bind-devel-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25420
    P
    		Security update for krb5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31423
    P
    		Security update for php53 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26351
    P
    		Security update for mongodb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25942
    P
    		Security update for gstreamer-0_10-plugins-bad (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32599
    P
    		qt3 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25153
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26321
    P
    		Security update for kcoreaddons (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32379
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25432
    P
    		Security update for ibus (Important)
    2020-12-01
    oval:org.opensuse.security:def:26000
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25926
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:25362
    P
    		Security update for mailman (Important)
    2020-12-01
    oval:org.opensuse.security:def:31947
    P
    		Security update for gpg2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26374
    P
    		Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:25624
    P
    		Security update for qemu (Important)
    2020-12-01
    oval:org.opensuse.security:def:26673
    P
    		bind on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26001
    P
    		Security update for openexr (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25503
    P
    		Security update for apache2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:32052
    P
    		Security update for kvm (Important)
    2020-12-01
    oval:org.opensuse.security:def:27056
    P
    		xdg-utils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25762
    P
    		Security update for Xerces-C (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25756
    P
    		Security update for python, python-base, python-doc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31814
    P
    		Security update for apache2-mod_nss (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25225
    P
    		Security update for systemd (Important)
    2020-12-01
    oval:org.opensuse.security:def:26502
    P
    		Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:25809
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32491
    P
    		bind on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25642
    P
    		Security update for blktrace (Low)
    2020-12-01
    oval:org.opensuse.security:def:31448
    P
    		Security update for postgresql-init (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32795
    P
    		t1lib on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25300
    P
    		Security update for dovecot22 (Important)
    2020-12-01
    oval:org.opensuse.security:def:31508
    P
    		Security update for python27 (Important)
    2020-12-01
    oval:org.opensuse.security:def:26604
    P
    		libsoup-2_4-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26491
    P
    		Security update for nextcloud (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25654
    P
    		Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:31869
    P
    		Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31807
    P
    		Security update for apache2 (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:20473
    P
    		DSA-1341-2 bind9 - DNS cache poisoning vulnerability
    2014-06-23
    oval:org.mitre.oval:def:21703
    P
    		ELSA-2007:0740: bind security update (Moderate)
    2014-05-26
    oval:org.mitre.oval:def:10293
    V
    		ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.
    2013-04-29
    oval:com.redhat.rhsa:def:20070740
    P
    		RHSA-2007:0740: bind security update (Moderate)
    2007-12-04
    oval:org.mitre.oval:def:2226
    V
    		Security Vulnerability in Solaris 10 BIND: Susceptible to Cache Poisoning Attack
    2007-09-27
    oval:org.debian:def:1341
    V
    		design error
    2007-07-25
    BACK
    isc bind 9.0
    isc bind 9.1
    isc bind 9.2
    isc bind 9.3
    isc bind 9.4
    isc bind 9.5
    isc bind 9.5.0
    isc bind 9.3.0
    isc bind 9.3.1
    isc bind 9.3.2
    isc bind 9.3.3
    isc bind 9.4.0
    isc bind 9.4.1
    isc bind 9.5.0 a1
    isc bind 9.5.0 a2
    isc bind 9.5.0 a3
    isc bind 9.5.0 a4
    isc bind 9.5.0 a5
    isc bind 9.3.4
    isc bind 9.2.0
    isc bind 9.2.1
    isc bind 9.2.2
    isc bind 9.2.3
    isc bind 9.2.4
    isc bind 9.2.5
    isc bind 9.2.6
    isc bind 9.2.7
    isc bind 9.2.8
    isc bind 9.0
    isc bind 9.1
    openpkg openpkg current
    gentoo linux *
    suse linux enterprise server 8
    ibm aix 5.2
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    hp hp-ux b.11.11
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    suse suse linux school server -
    avaya converged communications server -
    redhat enterprise linux 3
    hp hp-ux b.11.23
    ibm aix 5.3
    mandrakesoft mandrake linux corporate server 3.0
    redhat enterprise linux 4
    redhat enterprise linux 4
    novell linux desktop 9
    freebsd freebsd 5.3 -
    redhat enterprise linux 4
    redhat enterprise linux 4
    apple mac os x 10.4
    apple mac os x 10.4.1
    apple mac os x server 10.4.1
    apple mac os x server 10.4
    debian debian linux 3.1
    novell open enterprise server *
    mandrakesoft mandrake multi network firewall 2.0
    freebsd freebsd 5.4 -
    sun solaris 10
    sun solaris 10
    apple mac os x server 10.4.2
    apple mac os x 10.4.2
    apple mac os x 10.4.4
    avaya intuity audix lx *
    avaya message networking -
    suse suse linux 10.0
    redhat linux advanced workstation 2.1
    apple mac os x 10.4.3
    apple mac os x server 10.4.3
    freebsd freebsd 6.0 -
    apple mac os x server 10.4.4
    apple mac os x 10.4.5
    apple mac os x server 10.4.5
    apple mac os x 10.4.6
    apple mac os x server 10.4.6
    canonical ubuntu 6.06
    suse suse linux 10.1
    apple mac os x 10.4.7
    apple mac os x server 10.4.7
    freebsd freebsd 5.5 -
    novell suse linux enterprise server 10 sp2
    mandrakesoft mandrake linux 2007
    mandrakesoft mandrake linux 2007
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 3.0
    freebsd freebsd 6.1 -
    apple mac os x server 10.4.8
    apple mac os x 10.4.8
    redhat enterprise linux 5
    redhat enterprise linux 5
    apple mac os x server 10.4.9
    apple mac os x 10.4.9
    mandrakesoft mandrake linux 2007.1
    mandrakesoft mandrake linux 2008.0
    debian debian linux 4.0
    avaya communication manager 3.1
    avaya communication manager 4.0.3
    canonical ubuntu 7.04
    hp hp-ux b.11.31
    avaya communication manager 3.1.4
    hp tcp ip services openvms 5.6
    freebsd freebsd 6.2 -
    apple mac os x 10.4.10
    apple mac os x server 10.4.10
    redhat enterprise linux 5
    mandrakesoft mandrake linux 2007.1
    avaya communication manager 2.0
    redhat enterprise linux 4.5.z
    redhat enterprise linux 4.5.z
    avaya communication manager 4.0
    avaya communication manager 5.0
    avaya communication manager 2.0.1
    avaya communication manager 3.1.3
    avaya sip enablement services *
    novell open enterprise server *
    novell opensuse 10.2
    avaya communication manager 5.1
    avaya communication manager 3.1.1
    avaya communication manager 3.1.2
    avaya communication manager 4.0.1