Security update for bind SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2017:0193-1 Final 1 1 2017-01-18T07:27:46Z current 2017-01-18T07:27:46Z 2017-01-18T07:27:46Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for bind This update for bind fixes the following issues: - Fix a potential assertion failure that could have been triggered by a malformed response to an ANY query, thereby facilitating a denial-of-service attack. [CVE-2016-9131, bsc#1018700, bsc#1018699] - Fix a potential assertion failure that could have been triggered by responding to a query with inconsistent DNSSEC information, thereby facilitating a denial-of-service attack. [CVE-2016-9147, bsc#1018701, bsc#1018699] - Fix potential assertion failure that could have been triggered by DNS responses that contain unusually-formed DS resource records, facilitating a denial-of-service attack. [CVE-2016-9444, bsc#1018702, bsc#1018699] This update was imported from the SUSE:SLE-12-SP1:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00031.html E-Mail link for openSUSE-SU-2017:0193-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 openSUSE Leap 42.2 bind-9.9.9P1-43.1 bind-chrootenv-9.9.9P1-43.1 bind-devel-9.9.9P1-43.1 bind-doc-9.9.9P1-43.1 bind-libs-9.9.9P1-43.1 bind-libs-32bit-9.9.9P1-43.1 bind-lwresd-9.9.9P1-43.1 bind-utils-9.9.9P1-43.1 bind-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-chrootenv-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-devel-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-doc-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-libs-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-libs-32bit-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-lwresd-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-utils-9.9.9P1-43.1 as a component of openSUSE Leap 42.1 bind-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 bind-chrootenv-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 bind-devel-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 bind-doc-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 bind-libs-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 bind-libs-32bit-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 bind-lwresd-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 bind-utils-9.9.9P1-43.1 as a component of openSUSE Leap 42.2 named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed response to an RTYPE ANY query. CVE-2016-9131 openSUSE Leap 42.1:bind-9.9.9P1-43.1 openSUSE Leap 42.1:bind-chrootenv-9.9.9P1-43.1 openSUSE Leap 42.1:bind-devel-9.9.9P1-43.1 openSUSE Leap 42.1:bind-doc-9.9.9P1-43.1 openSUSE Leap 42.1:bind-libs-32bit-9.9.9P1-43.1 openSUSE Leap 42.1:bind-libs-9.9.9P1-43.1 openSUSE Leap 42.1:bind-lwresd-9.9.9P1-43.1 openSUSE Leap 42.1:bind-utils-9.9.9P1-43.1 openSUSE Leap 42.2:bind-9.9.9P1-43.1 openSUSE Leap 42.2:bind-chrootenv-9.9.9P1-43.1 openSUSE Leap 42.2:bind-devel-9.9.9P1-43.1 openSUSE Leap 42.2:bind-doc-9.9.9P1-43.1 openSUSE Leap 42.2:bind-libs-32bit-9.9.9P1-43.1 openSUSE Leap 42.2:bind-libs-9.9.9P1-43.1 openSUSE Leap 42.2:bind-lwresd-9.9.9P1-43.1 openSUSE Leap 42.2:bind-utils-9.9.9P1-43.1 important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00031.html https://www.suse.com/security/cve/CVE-2016-9131.html CVE-2016-9131 https://bugzilla.suse.com/1018699 SUSE Bug 1018699 https://bugzilla.suse.com/1018700 SUSE Bug 1018700 https://bugzilla.suse.com/1018701 SUSE Bug 1018701 https://bugzilla.suse.com/1018702 SUSE Bug 1018702 https://bugzilla.suse.com/1033466 SUSE Bug 1033466 named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a response containing an inconsistency among the DNSSEC-related RRsets. CVE-2016-9147 openSUSE Leap 42.1:bind-9.9.9P1-43.1 openSUSE Leap 42.1:bind-chrootenv-9.9.9P1-43.1 openSUSE Leap 42.1:bind-devel-9.9.9P1-43.1 openSUSE Leap 42.1:bind-doc-9.9.9P1-43.1 openSUSE Leap 42.1:bind-libs-32bit-9.9.9P1-43.1 openSUSE Leap 42.1:bind-libs-9.9.9P1-43.1 openSUSE Leap 42.1:bind-lwresd-9.9.9P1-43.1 openSUSE Leap 42.1:bind-utils-9.9.9P1-43.1 openSUSE Leap 42.2:bind-9.9.9P1-43.1 openSUSE Leap 42.2:bind-chrootenv-9.9.9P1-43.1 openSUSE Leap 42.2:bind-devel-9.9.9P1-43.1 openSUSE Leap 42.2:bind-doc-9.9.9P1-43.1 openSUSE Leap 42.2:bind-libs-32bit-9.9.9P1-43.1 openSUSE Leap 42.2:bind-libs-9.9.9P1-43.1 openSUSE Leap 42.2:bind-lwresd-9.9.9P1-43.1 openSUSE Leap 42.2:bind-utils-9.9.9P1-43.1 important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00031.html https://www.suse.com/security/cve/CVE-2016-9147.html CVE-2016-9147 https://bugzilla.suse.com/1018699 SUSE Bug 1018699 https://bugzilla.suse.com/1018700 SUSE Bug 1018700 https://bugzilla.suse.com/1018701 SUSE Bug 1018701 https://bugzilla.suse.com/1018702 SUSE Bug 1018702 https://bugzilla.suse.com/1033466 SUSE Bug 1033466 https://bugzilla.suse.com/1081545 SUSE Bug 1081545 named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DS resource record in an answer. CVE-2016-9444 openSUSE Leap 42.1:bind-9.9.9P1-43.1 openSUSE Leap 42.1:bind-chrootenv-9.9.9P1-43.1 openSUSE Leap 42.1:bind-devel-9.9.9P1-43.1 openSUSE Leap 42.1:bind-doc-9.9.9P1-43.1 openSUSE Leap 42.1:bind-libs-32bit-9.9.9P1-43.1 openSUSE Leap 42.1:bind-libs-9.9.9P1-43.1 openSUSE Leap 42.1:bind-lwresd-9.9.9P1-43.1 openSUSE Leap 42.1:bind-utils-9.9.9P1-43.1 openSUSE Leap 42.2:bind-9.9.9P1-43.1 openSUSE Leap 42.2:bind-chrootenv-9.9.9P1-43.1 openSUSE Leap 42.2:bind-devel-9.9.9P1-43.1 openSUSE Leap 42.2:bind-doc-9.9.9P1-43.1 openSUSE Leap 42.2:bind-libs-32bit-9.9.9P1-43.1 openSUSE Leap 42.2:bind-libs-9.9.9P1-43.1 openSUSE Leap 42.2:bind-lwresd-9.9.9P1-43.1 openSUSE Leap 42.2:bind-utils-9.9.9P1-43.1 important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00031.html https://www.suse.com/security/cve/CVE-2016-9444.html CVE-2016-9444 https://bugzilla.suse.com/1018699 SUSE Bug 1018699 https://bugzilla.suse.com/1018700 SUSE Bug 1018700 https://bugzilla.suse.com/1018701 SUSE Bug 1018701 https://bugzilla.suse.com/1018702 SUSE Bug 1018702 https://bugzilla.suse.com/1033466 SUSE Bug 1033466