CVE-2016-2775

Related Files

Ubuntu Security Notice USN-5747-1

Posted Nov 29, 2022

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5747-1 - It was discovered that Bind incorrectly handled large query name when using lightweight resolver protocol. A remote attacker could use this issue to consume resources, leading to a denial of service. It was discovered that Bind incorrectly handled large zone data size received via AXFR response. A remote authenticated attacker could use this issue to consume resources, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS.

tags | advisory, remote, denial of service, protocol

systems | linux, ubuntu

advisories | CVE-2016-2775, CVE-2016-6170

SHA-256 | e0fa90d43b033818a5541fa0052dd3b5c0b63540bf52851fc17c004941501d36

Download | Favorite | View

Red Hat Security Advisory 2017-2533-01

Posted Aug 24, 2017

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2533-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: It was found that the lightweight resolver protocol implementation in BIND could enter an infinite recursion and crash when asked to resolve a query name which, when combined with a search list entry, exceeds the maximum allowable length. A remote attacker could use this flaw to crash lwresd or named when using the "lwres" statement in named.conf.

tags | advisory, remote, protocol

systems | linux, redhat

advisories | CVE-2016-2775

SHA-256 | f67e3196c2b632817bfb8e448d9d3dd646f5092db83ded905469f711f1af5d8f

Download | Favorite | View

HPE Security Bulletin HPSBUX03664 SSRT110248 1

Posted Nov 4, 2016

Authored by Hewlett Packard Enterprise | Site hpe.com

HPE Security Bulletin HPSBUX03664 SSRT110248 1 - Potential security vulnerabilities have been identified in the HP-UX BIND service running named. These vulnerabilities could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory.

tags | advisory, denial of service, vulnerability

systems | hpux

advisories | CVE-2016-2775, CVE-2016-2776

SHA-256 | 8392ef8f305c64e4593fbb2199e3103ae32dcd3a29294e47dec33379b147a07a

Download | Favorite | View

Gentoo Linux Security Advisory 201610-07

Posted Oct 12, 2016

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201610-7 - Multiple vulnerabilities have been found in BIND, the worst of which could cause a Denial of Service condition. Versions less than 9.10.4_p3 are affected.

tags | advisory, denial of service, vulnerability

systems | linux, gentoo

advisories | CVE-2015-8704, CVE-2015-8705, CVE-2016-1285, CVE-2016-1286, CVE-2016-2088, CVE-2016-2775, CVE-2016-2776, CVE-2016-6170

SHA-256 | e885855abe35efd826edd88bcb9587d9a78382fa97b73448ceaaa1f7c7a9f114

Download | Favorite | View

Debian Security Advisory 3680-1

Posted Sep 28, 2016

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3680-1 - Two vulnerabilities were reported in BIND, a DNS server.

tags | advisory, vulnerability

systems | linux, debian

advisories | CVE-2016-2775, CVE-2016-2776

SHA-256 | 81652422716b58bfe6ea4eccd254e3a93df6d4a155e0256d07bd4585d1d2f875

Download | Favorite | View

Slackware Security Advisory - bind Updates

Posted Jul 22, 2016

Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue.

tags | advisory

systems | linux, slackware

advisories | CVE-2016-2775

SHA-256 | c81fe238a093f581c2e3f1acbe9851b1639fab9e9c630bc83f68e883dc6980d8

Download | Favorite | View