Novell Home

CVE-2013-4854

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-4854 at MITRE

Description

The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.

NVD CVSS v2 Base Score: 7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)

Novell/SUSE information

Novell Bugzilla entry: 831899

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SLE 11 SP2 DEBUGINFO
  • bind-debuginfo >= 9.9.3P2-0.5.1
  • bind-debugsource >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SUSE Linux Enterprise Software Development Kit 11 SP2
  • bind-devel >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SUSE Linux Enterprise Software Development Kit 11 SP2
  • bind-devel >= 9.9.3P2-0.5.1
  • bind-devel-32bit >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SUSE Linux Enterprise Desktop 11 SP2
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SUSE Linux Enterprise Desktop 11 SP2
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-libs-32bit >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • bind >= 9.9.3P2-0.5.1
  • bind-chrootenv >= 9.9.3P2-0.5.1
  • bind-doc >= 9.9.3P2-0.5.1
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SUSE Linux Enterprise Server 11 SP2
  • bind >= 9.9.3P2-0.5.1
  • bind-chrootenv >= 9.9.3P2-0.5.1
  • bind-doc >= 9.9.3P2-0.5.1
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-libs-x86 >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • bind >= 9.9.3P2-0.5.1
  • bind-chrootenv >= 9.9.3P2-0.5.1
  • bind-doc >= 9.9.3P2-0.5.1
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-libs-32bit >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8160
SLE 11 SP3 DEBUGINFO
  • bind-debuginfo >= 9.9.3P2-0.5.1
  • bind-debugsource >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161
SUSE Linux Enterprise Software Development Kit 11 SP3
  • bind-devel >= 9.9.3P2-0.5.1
  • bind-devel-32bit >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161
SUSE Linux Enterprise Software Development Kit 11 SP3
  • bind-devel >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161
SUSE Linux Enterprise Desktop 11 SP3
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161
SUSE Linux Enterprise Desktop 11 SP3
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-libs-32bit >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • bind >= 9.9.3P2-0.5.1
  • bind-chrootenv >= 9.9.3P2-0.5.1
  • bind-doc >= 9.9.3P2-0.5.1
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161
SUSE Linux Enterprise Server 11 SP3
  • bind >= 9.9.3P2-0.5.1
  • bind-chrootenv >= 9.9.3P2-0.5.1
  • bind-doc >= 9.9.3P2-0.5.1
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-libs-x86 >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • bind >= 9.9.3P2-0.5.1
  • bind-chrootenv >= 9.9.3P2-0.5.1
  • bind-doc >= 9.9.3P2-0.5.1
  • bind-libs >= 9.9.3P2-0.5.1
  • bind-libs-32bit >= 9.9.3P2-0.5.1
  • bind-utils >= 9.9.3P2-0.5.1
Builds
SAT Patch Nr: 8161

© 2014 Novell