Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-8617 (GCVE-0-2020-8617)
Vulnerability from cvelistv5 – Published: 2020-05-19 14:05 – Updated: 2024-09-16 20:26
VLAI
EPSS
Title
A logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c
Summary
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.
Severity
7.5 (High)
CWE
- An error in BIND code which checks the validity of messages containing TSIG resource records can be exploited by an attacker to trigger an assertion failure in tsig.c, resulting in denial of service to clients. BIND 9.0.0 -> 9.11.18, 9.12.0 -> 9.12.4-P2, 9.14.0 -> 9.14.11, 9.16.0 -> 9.16.2, and releases 9.17.0 -> 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -> 9.11.18-S1.
Assigner
References
12 references
| URL | Tags |
|---|---|
| https://kb.isc.org/docs/cve-2020-8617 | x_refsource_CONFIRM |
| http://www.openwall.com/lists/oss-security/2020/05/19/4 | mailing-listx_refsource_MLIST |
| https://www.debian.org/security/2020/dsa-4689 | vendor-advisoryx_refsource_DEBIAN |
| https://security.netapp.com/advisory/ntap-2020052… | x_refsource_CONFIRM |
| http://packetstormsecurity.com/files/157836/BIND-… | x_refsource_MISC |
| https://usn.ubuntu.com/4365-2/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/4365-1/ | vendor-advisoryx_refsource_UBUNTU |
| https://lists.debian.org/debian-lts-announce/2020… | mailing-listx_refsource_MLIST |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| ISC | BIND9 |
Affected:
9.0.0 -> 9.11.18, 9.12.0 -> 9.12.4-P2, 9.14.0 -> 9.14.11, 9.16.0 -> 9.16.2, and releases 9.17.0 -> 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -> 9.11.18-S1
|
Date Public
2020-05-19 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T10:03:46.366Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"name": "[oss-security] 20200519 Two vulnerabilities disclosed in BIND (CVE-2020-8616 and CVE-2020-8617)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
},
{
"name": "DSA-4689",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2020/dsa-4689"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20200522-0002/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"name": "USN-4365-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4365-2/"
},
{
"name": "USN-4365-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4365-1/"
},
{
"name": "[debian-lts-announce] 20200530 [SECURITY] [DLA 2227-1] bind9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"name": "FEDORA-2020-2d89cbcfd9",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/"
},
{
"name": "FEDORA-2020-f9dcd4e9d5",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/"
},
{
"name": "openSUSE-SU-2020:1699",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"name": "openSUSE-SU-2020:1701",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "BIND9",
"vendor": "ISC",
"versions": [
{
"status": "affected",
"version": "9.0.0 -\u003e 9.11.18, 9.12.0 -\u003e 9.12.4-P2, 9.14.0 -\u003e 9.14.11, 9.16.0 -\u003e 9.16.2, and releases 9.17.0 -\u003e 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -\u003e 9.11.18-S1"
}
]
}
],
"datePublic": "2020-05-19T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "An error in BIND code which checks the validity of messages containing TSIG resource records can be exploited by an attacker to trigger an assertion failure in tsig.c, resulting in denial of service to clients. BIND 9.0.0 -\u003e 9.11.18, 9.12.0 -\u003e 9.12.4-P2, 9.14.0 -\u003e 9.14.11, 9.16.0 -\u003e 9.16.2, and releases 9.17.0 -\u003e 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -\u003e 9.11.18-S1.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-10-20T11:06:39.000Z",
"orgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"shortName": "isc"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"name": "[oss-security] 20200519 Two vulnerabilities disclosed in BIND (CVE-2020-8616 and CVE-2020-8617)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
},
{
"name": "DSA-4689",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2020/dsa-4689"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20200522-0002/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"name": "USN-4365-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4365-2/"
},
{
"name": "USN-4365-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4365-1/"
},
{
"name": "[debian-lts-announce] 20200530 [SECURITY] [DLA 2227-1] bind9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"name": "FEDORA-2020-2d89cbcfd9",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/"
},
{
"name": "FEDORA-2020-f9dcd4e9d5",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/"
},
{
"name": "openSUSE-SU-2020:1699",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"name": "openSUSE-SU-2020:1701",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to the patched release most closely related to your current version of BIND:\n\n BIND 9.11.19\n BIND 9.14.12\n BIND 9.16.3\n\nBIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers.\n\n BIND 9.11.19-S1"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "A logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c",
"workarounds": [
{
"lang": "en",
"value": "None known."
}
],
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-officer@isc.org",
"DATE_PUBLIC": "2020-05-19T08:59:49.000Z",
"ID": "CVE-2020-8617",
"STATE": "PUBLIC",
"TITLE": "A logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BIND9",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "9.0.0 -\u003e 9.11.18, 9.12.0 -\u003e 9.12.4-P2, 9.14.0 -\u003e 9.14.11, 9.16.0 -\u003e 9.16.2, and releases 9.17.0 -\u003e 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -\u003e 9.11.18-S1"
}
]
}
}
]
},
"vendor_name": "ISC"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "An error in BIND code which checks the validity of messages containing TSIG resource records can be exploited by an attacker to trigger an assertion failure in tsig.c, resulting in denial of service to clients. BIND 9.0.0 -\u003e 9.11.18, 9.12.0 -\u003e 9.12.4-P2, 9.14.0 -\u003e 9.14.11, 9.16.0 -\u003e 9.16.2, and releases 9.17.0 -\u003e 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -\u003e 9.11.18-S1."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.isc.org/docs/cve-2020-8617",
"refsource": "CONFIRM",
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"name": "[oss-security] 20200519 Two vulnerabilities disclosed in BIND (CVE-2020-8616 and CVE-2020-8617)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
},
{
"name": "DSA-4689",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2020/dsa-4689"
},
{
"name": "https://security.netapp.com/advisory/ntap-20200522-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20200522-0002/"
},
{
"name": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"name": "USN-4365-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4365-2/"
},
{
"name": "USN-4365-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4365-1/"
},
{
"name": "[debian-lts-announce] 20200530 [SECURITY] [DLA 2227-1] bind9 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"name": "FEDORA-2020-2d89cbcfd9",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/"
},
{
"name": "FEDORA-2020-f9dcd4e9d5",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/"
},
{
"name": "openSUSE-SU-2020:1699",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"name": "openSUSE-SU-2020:1701",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
}
]
},
"solution": [
{
"lang": "en",
"value": "Upgrade to the patched release most closely related to your current version of BIND:\n\n BIND 9.11.19\n BIND 9.14.12\n BIND 9.16.3\n\nBIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers.\n\n BIND 9.11.19-S1"
}
],
"source": {
"discovery": "EXTERNAL"
},
"work_around": [
{
"lang": "en",
"value": "None known."
}
]
}
}
},
"cveMetadata": {
"assignerOrgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"assignerShortName": "isc",
"cveId": "CVE-2020-8617",
"datePublished": "2020-05-19T14:05:16.241Z",
"dateReserved": "2020-02-05T00:00:00.000Z",
"dateUpdated": "2024-09-16T20:26:32.566Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2020-8617",
"date": "2026-05-28",
"epss": "0.92629",
"percentile": "0.99755"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2020-8617\",\"sourceIdentifier\":\"security-officer@isc.org\",\"published\":\"2020-05-19T14:15:11.987\",\"lastModified\":\"2024-11-21T05:39:07.990\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.\"},{\"lang\":\"es\",\"value\":\"Al usar un mensaje especialmente dise\u00f1ado, un atacante puede causar que un servidor BIND alcance un estado inconsistente si el atacante conoce (o adivina con \u00e9xito) el nombre de una clave TSIG utilizada por el servidor. Dado que BIND, por defecto, configura una clave de sesi\u00f3n local incluso en servidores cuya configuraci\u00f3n no la usa, casi todos los servidores BIND actuales son vulnerables. En los lanzamientos de BIND que datan de marzo de 2018 y posteriores, una comprobaci\u00f3n de afirmaci\u00f3n en el archivo tsig.c detecta este estado inconsistente y se cierra deliberadamente. Antes de la introducci\u00f3n de la comprobaci\u00f3n, el servidor continuar\u00eda funcionando en un estado inconsistente, con resultados potencialmente da\u00f1inos.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-officer@isc.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-617\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.0.0\",\"versionEndIncluding\":\"9.11.18\",\"matchCriteriaId\":\"D09867AC-12F6-49C8-B399-0BA8B027B036\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.12.0\",\"versionEndIncluding\":\"9.12.4\",\"matchCriteriaId\":\"9C499955-0D38-4828-B94F-9BFE2719246B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.13.0\",\"versionEndIncluding\":\"9.13.7\",\"matchCriteriaId\":\"EA8EE96D-C27B-4995-BFB2-B4AC55ACAE8A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.14.0\",\"versionEndIncluding\":\"9.14.11\",\"matchCriteriaId\":\"3296874E-8628-4D69-B788-6CC51296A522\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.15.0\",\"versionEndIncluding\":\"9.15.6\",\"matchCriteriaId\":\"EEC8D4F0-B8E2-47B0-8E13-EE3FB4E43C01\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.16.0\",\"versionEndIncluding\":\"9.16.2\",\"matchCriteriaId\":\"12DD0D57-81E0-40BC-8047-E41892261E39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.17.0\",\"versionEndIncluding\":\"9.17.1\",\"matchCriteriaId\":\"96A5AA10-99B2-4784-A628-33E5CC697A30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.12.4:p1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E121D018-42B7-467E-9481-EDA4021401AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.12.4:p2:*:*:*:*:*:*\",\"matchCriteriaId\":\"343890F9-D6B4-433C-9131-9526DBB75749\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.9.3:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"40EE014B-0CD8-45F3-BEDB-AE6368A78B04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.10.5:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"CAD41122-C5D8-4256-8CB7-FF88DCD96A13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.10.7:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"6243685F-1E5B-4FF6-AE1B-44798032FBA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.11.3:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"C2FE13E1-0646-46FC-875B-CB4C34E20101\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.11.5:s3:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"1AA16E51-819C-4A1B-B66E-1C60C1782C0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.11.5:s5:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"91533F9F-C0E5-4E84-8A4C-F744F956BF97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.11.6:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"8AF9D390-0D5B-4963-A2D3-BF1E7CD95E9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.11.7:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"AB2B92F1-6BA8-41CA-9000-E0633462CC28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.11.8:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"02CA4635-7DFC-408E-A837-856E0F96CA1B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36D96259-24BD-44E2-96D9-78CE1D41F956\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B009C22E-30A4-4288-BCF6-C3E81DEAF45A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"CB66DB75-2B16-4EBF-9B93-CE49D8086E41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"815D70A8-47D3-459C-A32C-9FEACA0659D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A31C8344-3E02-4EB8-8BD8-4C84B7959624\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"902B8056-9E37-443B-8905-8AA93E2447FB\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2020/05/19/4\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://kb.isc.org/docs/cve-2020-8617\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/\",\"source\":\"security-officer@isc.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/\",\"source\":\"security-officer@isc.org\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20200522-0002/\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4365-1/\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4365-2/\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4689\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2020/05/19/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://kb.isc.org/docs/cve-2020-8617\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20200522-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4365-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4365-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4689\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
BDU:2021-00125
Vulnerability from fstec - Published: 19.05.2020
VLAI
Title
Уязвимость компонента tsig.c DNS-сервера BIND, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость компонента tsig.c DNS-сервера BIND связана с недостатком использования функции assert(). Эксплуатация уязвимости позволяет нарушителю, действующему удаленно, вызвать отказ в обслуживании
Severity
Vendor
Canonical Ltd., ООО «РусБИТех-Астра», Сообщество свободного программного обеспечения, Novell Inc., Fedora Project, Internet Systems Consortium, АО «Концерн ВНИИНС», АО «ИВК»
Software Name
Ubuntu, Astra Linux Special Edition (запись в едином реестре российских программ №369), Debian GNU/Linux, OpenSUSE Leap, Fedora, BIND, ОС ОН «Стрелец» (запись в едином реестре российских программ №6177), Альт 8 СП (запись в едином реестре российских программ №4305)
Software Version
16.04 LTS (Ubuntu), 1.5 «Смоленск» (Astra Linux Special Edition), 9 (Debian GNU/Linux), 18.04 LTS (Ubuntu), 1.6 «Смоленск» (Astra Linux Special Edition), 12.04 ESM (Ubuntu), 15.1 (OpenSUSE Leap), 14.04 ESM (Ubuntu), 8 (Debian GNU/Linux), 10 (Debian GNU/Linux), 31 (Fedora), 19.10 (Ubuntu), 32 (Fedora), 20.04 LTS (Ubuntu), 15.2 (OpenSUSE Leap), от 9.12.0 до 9.12.4 включительно (BIND), от 9.13.0 до 9.13.7 включительно (BIND), от 9.0.0 до 9.11.18 включительно (BIND), от 9.14.0 до 9.14.11 включительно (BIND), 1.0 (ОС ОН «Стрелец»), - (Альт 8 СП), до 16.01.2023 (ОС ОН «Стрелец»)
Possible Mitigations
Использование рекомендаций:
Для bind9:
Обновление программного обеспечения до 1:9.16.4-1 или более поздней версии
Для Debian:
Обновление программного обеспечения (пакета bind9) до 1:9.11.5.P4+dfsg-5.1+deb10u1 или более поздней версии
Для Astra Linux:
Обновление программного обеспечения (пакета bind9) до 1:9.11.5.P4+dfsg-5.1+deb10u1 или более поздней версии
Или использование рекомендаций производителя:
https://wiki.astralinux.ru/astra-linux-se16-bulletin-20210730SE16
https://wiki.astralinux.ru/astra-linux-se81-bulletin-20211019SE81
Для программных продуктов Novell Inc.:
https://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html
https://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html
Для Ubuntu:
https://ubuntu.com/security/notices/USN-4365-1
https://ubuntu.com/security/notices/USN-4365-2
Для Fedora:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/
Для ОС ОН «Стрелец»:
https://strelets.net/patchi-i-obnovleniya-bezopasnosti#kumulyativnoe-obnovlenie
Для ОС ОН «Стрелец»:
Обновление программного обеспечения bind9 до версии 1:9.10.3.dfsg.P4-12.3+deb9u12.strelets1
Для ОС Альт 8 СП: установка обновления из публичного репозитория программного средства
Reference
http://www.openwall.com/lists/oss-security/2020/05/19/4
https://kb.isc.org/docs/cve-2020-8617
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/
https://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html
https://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html
https://nvd.nist.gov/vuln/detail/CVE-2020-8617
https://security-tracker.debian.org/tracker/CVE-2020-8617
https://strelets.net/patchi-i-obnovleniya-bezopasnosti#kumulyativnoe-obnovlenie
https://ubuntu.com/security/notices/USN-4365-1
https://ubuntu.com/security/notices/USN-4365-2
https://wiki.astralinux.ru/astra-linux-se15-bulletin-20201201SE15
https://wiki.astralinux.ru/astra-linux-se16-bulletin-20210611SE16
https://wiki.astralinux.ru/astra-linux-se81-bulletin-20211019SE81
https://strelets.net/patchi-i-obnovleniya-bezopasnosti#16012023
https://altsp.su/obnovleniya-bezopasnosti/
CWE
CWE-617
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Canonical Ltd., \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Novell Inc., Fedora Project, Internet Systems Consortium, \u0410\u041e \u00ab\u041a\u043e\u043d\u0446\u0435\u0440\u043d \u0412\u041d\u0418\u0418\u041d\u0421\u00bb, \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "16.04 LTS (Ubuntu), 1.5 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (Astra Linux Special Edition), 9 (Debian GNU/Linux), 18.04 LTS (Ubuntu), 1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (Astra Linux Special Edition), 12.04 ESM (Ubuntu), 15.1 (OpenSUSE Leap), 14.04 ESM (Ubuntu), 8 (Debian GNU/Linux), 10 (Debian GNU/Linux), 31 (Fedora), 19.10 (Ubuntu), 32 (Fedora), 20.04 LTS (Ubuntu), 15.2 (OpenSUSE Leap), \u043e\u0442 9.12.0 \u0434\u043e 9.12.4 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (BIND), \u043e\u0442 9.13.0 \u0434\u043e 9.13.7 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (BIND), \u043e\u0442 9.0.0 \u0434\u043e 9.11.18 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (BIND), \u043e\u0442 9.14.0 \u0434\u043e 9.14.11 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (BIND), 1.0 (\u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb), - (\u0410\u043b\u044c\u0442 8 \u0421\u041f), \u0434\u043e 16.01.2023 (\u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f bind9:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0434\u043e 1:9.16.4-1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0437\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438\n\n\u0414\u043b\u044f Debian:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f (\u043f\u0430\u043a\u0435\u0442\u0430 bind9) \u0434\u043e 1:9.11.5.P4+dfsg-5.1+deb10u1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0437\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438\n\n\u0414\u043b\u044f Astra Linux:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f (\u043f\u0430\u043a\u0435\u0442\u0430 bind9) \u0434\u043e 1:9.11.5.P4+dfsg-5.1+deb10u1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0437\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438\n\u0418\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://wiki.astralinux.ru/astra-linux-se16-bulletin-20210730SE16\nhttps://wiki.astralinux.ru/astra-linux-se81-bulletin-20211019SE81\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Novell Inc.:\nhttps://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html\nhttps://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html\n\n\u0414\u043b\u044f Ubuntu:\nhttps://ubuntu.com/security/notices/USN-4365-1\nhttps://ubuntu.com/security/notices/USN-4365-2\n\n\u0414\u043b\u044f Fedora:\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/\n\n\u0414\u043b\u044f \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb:\nhttps://strelets.net/patchi-i-obnovleniya-bezopasnosti#kumulyativnoe-obnovlenie\n\n\u0414\u043b\u044f \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f bind9 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1:9.10.3.dfsg.P4-12.3+deb9u12.strelets1\n\n\u0414\u043b\u044f \u041e\u0421 \u0410\u043b\u044c\u0442 8 \u0421\u041f: \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0438\u0437 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e\u0433\u043e \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "19.05.2020",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "16.09.2024",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "14.01.2021",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2021-00125",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2020-8617",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Ubuntu, Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Debian GNU/Linux, OpenSUSE Leap, Fedora, BIND, \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166177), \u0410\u043b\u044c\u0442 8 \u0421\u041f (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164305)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Canonical Ltd. Ubuntu 16.04 LTS 32-bit, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.5 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb 64-bit (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.5 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Canonical Ltd. Ubuntu 16.04 LTS , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 9 , Canonical Ltd. Ubuntu 18.04 LTS , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Canonical Ltd. Ubuntu 12.04 ESM , Novell Inc. OpenSUSE Leap 15.1 , Canonical Ltd. Ubuntu 14.04 ESM , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 8 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , Fedora Project Fedora 31 , Canonical Ltd. Ubuntu 19.10 , Fedora Project Fedora 32 , Canonical Ltd. Ubuntu 20.04 LTS , Novell Inc. OpenSUSE Leap 15.2 , \u0410\u041e \u00ab\u041a\u043e\u043d\u0446\u0435\u0440\u043d \u0412\u041d\u0418\u0418\u041d\u0421\u00bb \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb 1.0 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166177), \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb \u0410\u043b\u044c\u0442 8 \u0421\u041f - (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164305), \u0410\u041e \u00ab\u041a\u043e\u043d\u0446\u0435\u0440\u043d \u0412\u041d\u0418\u0418\u041d\u0421\u00bb \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb \u0434\u043e 16.01.2023 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166177)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 tsig.c DNS-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 BIND, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0414\u043e\u0441\u0442\u0443\u043f\u043d\u0430\u044f \u0444\u0443\u043d\u043a\u0446\u0438\u044f assert() (CWE-617)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 tsig.c DNS-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 BIND \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u043e\u043c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u0444\u0443\u043d\u043a\u0446\u0438\u0438 assert(). \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041f\u043e\u0434\u043c\u0435\u043d\u0430 \u043f\u0440\u0438 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "http://www.openwall.com/lists/oss-security/2020/05/19/4\nhttps://kb.isc.org/docs/cve-2020-8617\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/\nhttps://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html\nhttps://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-8617\nhttps://security-tracker.debian.org/tracker/CVE-2020-8617\nhttps://strelets.net/patchi-i-obnovleniya-bezopasnosti#kumulyativnoe-obnovlenie\nhttps://ubuntu.com/security/notices/USN-4365-1\nhttps://ubuntu.com/security/notices/USN-4365-2\nhttps://wiki.astralinux.ru/astra-linux-se15-bulletin-20201201SE15\nhttps://wiki.astralinux.ru/astra-linux-se16-bulletin-20210611SE16\nhttps://wiki.astralinux.ru/astra-linux-se81-bulletin-20211019SE81\nhttps://strelets.net/patchi-i-obnovleniya-bezopasnosti#16012023\nhttps://altsp.su/obnovleniya-bezopasnosti/",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-617",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,3)"
}
CERTFR-2020-AVI-302
Vulnerability from certfr_avis - Published: 2020-05-19 - Updated: 2020-05-19
De multiples vulnérabilités ont été découvertes dans Bind. Elles permettent à un attaquant de provoquer un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BIND versions 9.x ant\u00e9rieures \u00e0 9.11.19",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND versions 9.12.x et 9.14.x ant\u00e9rieures \u00e0 9.14.12",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND versions 9.16.x ant\u00e9rieures \u00e0 9.16.3",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-8617",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8617"
},
{
"name": "CVE-2020-8616",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8616"
}
],
"initial_release_date": "2020-05-19T00:00:00",
"last_revision_date": "2020-05-19T00:00:00",
"links": [],
"reference": "CERTFR-2020-AVI-302",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-05-19T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Bind. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Bind",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Bind cve-2020-8617 du 19 mai 2020",
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Bind cve-2020-8616 du 19 mai 2020",
"url": "https://kb.isc.org/docs/cve-2020-8616"
}
]
}
CERTFR-2021-AVI-033
Vulnerability from certfr_avis - Published: 2021-01-14 - Updated: 2021-01-14
De multiples vulnérabilités ont été découvertes dans les produits Juniper. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | N/A | Juniper Networks SRC Series versions antérieures à 4.12.0R6 | ||
| Juniper Networks | N/A | Juniper Networks Contrail Networking versions antérieures à 1911.31 | ||
| Juniper Networks | Junos OS Evolved | Juniper Junos OS Evolved versions antérieures à 19.3R2-S5-EVO, 19.4R2-S2-EVO, 20.1R1-S2-EVO, 20.1R1-S4-EVO, 20.1R2-S1-EVO, 20.2R1-EVO, 20.3R1-S1-EVO, 20.3R2-EVO et 20.4R1-EVO | ||
| Juniper Networks | Junos OS | Juniper Junos OS versions antérieures à 12.3R12-S17, 12.3X48-D105, 14.1X53-D53, 15.1R7-S6, 15.1R7-S7, 15.1R7-S8, 15.1X49-D230, 15.1X49-D240, 16.1R7-S7, 16.1R7-S8, 17.1R2-S11, 17.2R3-S3, 17.2R3-S4, 17.3R2-S5, 17.3R3-S10, 17.3R3-S7, 17.3R3-S8, 17.3R3-S9, 17.4R2-S11, 17.4R2-S12, 17.4R2-S9, 17.4R3, 17.4R3-S2, 17.4R3-S3, 17.4R3-S4, 18.1R3-S10, 18.1R3-S11, 18.1R3-S12, 18.1R3-S9, 18.2R2-S7, 18.2R2-S8, 18.2R3-S3, 18.2R3-S4, 18.2R3-S5, 18.2R3-S6, 18.2R3-S7, 18.2X75-D34, 18.3R2-S4, 18.3R3-S1, 18.3R3-S2, 18.3R3-S3, 18.3R3-S4, 18.4R1-S5, 18.4R1-S8, 18.4R2-S3, 18.4R2-S5, 18.4R2-S6, 18.4R2-S7, 18.4R3, 18.4R3-S1, 18.4R3-S2, 18.4R3-S3, 18.4R3-S4, 18.4R3-S5, 18.4R3-S6, 19.1R1-S4, 19.1R1-S5, 19.1R1-S6, 19.1R2-S1, 19.1R2-S2, 19.1R3, 19.1R3-S2, 19.1R3-S3, 19.2R1-S2, 19.2R1-S5, 19.2R1-S6, 19.2R2, 19.2R2-S1, 19.2R3, 19.2R3-S1, 19.3R2, 19.3R2-S1, 19.3R2-S3, 19.3R2-S4, 19.3R2-S5, 19.3R3, 19.3R3-S1, 19.4R1, 19.4R1-S2, 19.4R1-S3, 19.4R2, 19.4R2-S1, 19.4R2-S2, 19.4R2-S3, 19.4R3, 19.4R3-S1, 20.1R1 , 20.1R1-S2, 20.1R1-S3, 20.1R1-S4, 20.1R2, 20.2R1, 20.2R1-S1, 20.2R1-S2, 20.2R1-S3, 20.2R2, 20.3R1, 20.3R1-S1, 20.3R2 et 20.4R1 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Juniper Networks SRC Series versions ant\u00e9rieures \u00e0 4.12.0R6",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Juniper Networks Contrail Networking versions ant\u00e9rieures \u00e0 1911.31",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Juniper Junos OS Evolved versions ant\u00e9rieures \u00e0 19.3R2-S5-EVO, 19.4R2-S2-EVO, 20.1R1-S2-EVO, 20.1R1-S4-EVO, 20.1R2-S1-EVO, 20.2R1-EVO, 20.3R1-S1-EVO, 20.3R2-EVO et 20.4R1-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Juniper Junos OS versions ant\u00e9rieures \u00e0 12.3R12-S17, 12.3X48-D105, 14.1X53-D53, 15.1R7-S6, 15.1R7-S7, 15.1R7-S8, 15.1X49-D230, 15.1X49-D240, 16.1R7-S7, 16.1R7-S8, 17.1R2-S11, 17.2R3-S3, 17.2R3-S4, 17.3R2-S5, 17.3R3-S10, 17.3R3-S7, 17.3R3-S8, 17.3R3-S9, 17.4R2-S11, 17.4R2-S12, 17.4R2-S9, 17.4R3, 17.4R3-S2, 17.4R3-S3, 17.4R3-S4, 18.1R3-S10, 18.1R3-S11, 18.1R3-S12, 18.1R3-S9, 18.2R2-S7, 18.2R2-S8, 18.2R3-S3, 18.2R3-S4, 18.2R3-S5, 18.2R3-S6, 18.2R3-S7, 18.2X75-D34, 18.3R2-S4, 18.3R3-S1, 18.3R3-S2, 18.3R3-S3, 18.3R3-S4, 18.4R1-S5, 18.4R1-S8, 18.4R2-S3, 18.4R2-S5, 18.4R2-S6, 18.4R2-S7, 18.4R3, 18.4R3-S1, 18.4R3-S2, 18.4R3-S3, 18.4R3-S4, 18.4R3-S5, 18.4R3-S6, 19.1R1-S4, 19.1R1-S5, 19.1R1-S6, 19.1R2-S1, 19.1R2-S2, 19.1R3, 19.1R3-S2, 19.1R3-S3, 19.2R1-S2, 19.2R1-S5, 19.2R1-S6, 19.2R2, 19.2R2-S1, 19.2R3, 19.2R3-S1, 19.3R2, 19.3R2-S1, 19.3R2-S3, 19.3R2-S4, 19.3R2-S5, 19.3R3, 19.3R3-S1, 19.4R1, 19.4R1-S2, 19.4R1-S3, 19.4R2, 19.4R2-S1, 19.4R2-S2, 19.4R2-S3, 19.4R3, 19.4R3-S1, 20.1R1 , 20.1R1-S2, 20.1R1-S3, 20.1R1-S4, 20.1R2, 20.2R1, 20.2R1-S1, 20.2R1-S2, 20.2R1-S3, 20.2R2, 20.3R1, 20.3R1-S1, 20.3R2 et 20.4R1",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-0207",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0207"
},
{
"name": "CVE-2021-0222",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0222"
},
{
"name": "CVE-2018-20997",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20997"
},
{
"name": "CVE-2010-0742",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0742"
},
{
"name": "CVE-2013-1741",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1741"
},
{
"name": "CVE-2021-0206",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0206"
},
{
"name": "CVE-2010-4252",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4252"
},
{
"name": "CVE-2015-0292",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0292"
},
{
"name": "CVE-2012-2110",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-2110"
},
{
"name": "CVE-2019-11478",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11478"
},
{
"name": "CVE-2021-0202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0202"
},
{
"name": "CVE-2007-5846",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-5846"
},
{
"name": "CVE-2013-5607",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5607"
},
{
"name": "CVE-2021-0211",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0211"
},
{
"name": "CVE-2014-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3567"
},
{
"name": "CVE-2020-8617",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8617"
},
{
"name": "CVE-2021-0203",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0203"
},
{
"name": "CVE-2021-0205",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0205"
},
{
"name": "CVE-2009-3245",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3245"
},
{
"name": "CVE-2019-11479",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11479"
},
{
"name": "CVE-2021-0209",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0209"
},
{
"name": "CVE-2014-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8176"
},
{
"name": "CVE-2019-11477",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11477"
},
{
"name": "CVE-2011-4109",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4109"
},
{
"name": "CVE-2010-3864",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3864"
},
{
"name": "CVE-2021-0208",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0208"
},
{
"name": "CVE-2019-13565",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13565"
},
{
"name": "CVE-2021-0212",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0212"
},
{
"name": "CVE-2020-8616",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8616"
},
{
"name": "CVE-2021-0210",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0210"
},
{
"name": "CVE-2014-1545",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1545"
}
],
"initial_release_date": "2021-01-14T00:00:00",
"last_revision_date": "2021-01-14T00:00:00",
"links": [],
"reference": "CERTFR-2021-AVI-033",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-01-14T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nJuniper. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nun probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de\ncode arbitraire \u00e0 distance et un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11096 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11096\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11098 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11098\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11097 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11097\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11094 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11094\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11104 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11104\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11099 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11099\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11093 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11093\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11101 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11101\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11088 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11088\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11092 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11092\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11091 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11091\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11100 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11100\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11095 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11095\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11090 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11090\u0026cat=SIRT_1\u0026actp=LIST"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11102 du 13 janvier 2021",
"url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11102\u0026cat=SIRT_1\u0026actp=LIST"
}
]
}
CERTFR-2021-AVI-791
Vulnerability from certfr_avis - Published: 2021-10-15 - Updated: 2021-10-15
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Analytics | IBM Cognos Analytics versions 11.1.x antérieures à 11.1.7 FP3 | ||
| IBM | N/A | CP4S versions 1.7.0 à 1.7.2 antérieures à 1.8.0.0 | ||
| IBM | Cognos Analytics | IBM Cognos Analytics versions 11.2.x antérieures à 11.2.1 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Cognos Analytics versions 11.1.x ant\u00e9rieures \u00e0 11.1.7 FP3",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "CP4S versions 1.7.0 \u00e0 1.7.2 ant\u00e9rieures \u00e0 1.8.0.0",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Cognos Analytics versions 11.2.x ant\u00e9rieures \u00e0 11.2.1",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-25013",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25013"
},
{
"name": "CVE-2020-8315",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8315"
},
{
"name": "CVE-2021-25215",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25215"
},
{
"name": "CVE-2020-24977",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24977"
},
{
"name": "CVE-2020-13543",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13543"
},
{
"name": "CVE-2021-23364",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23364"
},
{
"name": "CVE-2020-13434",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13434"
},
{
"name": "CVE-2021-3517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3517"
},
{
"name": "CVE-2021-23336",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23336"
},
{
"name": "CVE-2021-2163",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2163"
},
{
"name": "CVE-2021-3537",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3537"
},
{
"name": "CVE-2021-27290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27290"
},
{
"name": "CVE-2020-8285",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8285"
},
{
"name": "CVE-2021-20271",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20271"
},
{
"name": "CVE-2021-2341",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2341"
},
{
"name": "CVE-2017-12620",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12620"
},
{
"name": "CVE-2021-27219",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27219"
},
{
"name": "CVE-2020-8622",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8622"
},
{
"name": "CVE-2020-29362",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29362"
},
{
"name": "CVE-2020-9983",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9983"
},
{
"name": "CVE-2021-1820",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-1820"
},
{
"name": "CVE-2018-25011",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25011"
},
{
"name": "CVE-2020-26116",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26116"
},
{
"name": "CVE-2020-8286",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8286"
},
{
"name": "CVE-2020-9951",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9951"
},
{
"name": "CVE-2021-3421",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3421"
},
{
"name": "CVE-2021-20305",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20305"
},
{
"name": "CVE-2021-22918",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22918"
},
{
"name": "CVE-2021-20578",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20578"
},
{
"name": "CVE-2020-8177",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8177"
},
{
"name": "CVE-2020-1971",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1971"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"name": "CVE-2020-14363",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14363"
},
{
"name": "CVE-2019-2708",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2708"
},
{
"name": "CVE-2020-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10878"
},
{
"name": "CVE-2019-13012",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13012"
},
{
"name": "CVE-2021-29679",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29679"
},
{
"name": "CVE-2020-25648",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25648"
},
{
"name": "CVE-2021-2432",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2432"
},
{
"name": "CVE-2020-8624",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8624"
},
{
"name": "CVE-2021-33910",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33910"
},
{
"name": "CVE-2020-8284",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8284"
},
{
"name": "CVE-2020-14362",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14362"
},
{
"name": "CVE-2021-3516",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3516"
},
{
"name": "CVE-2019-3842",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3842"
},
{
"name": "CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"name": "CVE-2021-1826",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-1826"
},
{
"name": "CVE-2020-8617",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8617"
},
{
"name": "CVE-2017-14502",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14502"
},
{
"name": "CVE-2020-29361",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29361"
},
{
"name": "CVE-2021-1817",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-1817"
},
{
"name": "CVE-2021-3520",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3520"
},
{
"name": "CVE-2020-10029",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10029"
},
{
"name": "CVE-2021-2369",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2369"
},
{
"name": "CVE-2020-14347",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14347"
},
{
"name": "CVE-2020-14360",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14360"
},
{
"name": "CVE-2021-1825",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-1825"
},
{
"name": "CVE-2020-13776",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13776"
},
{
"name": "CVE-2020-14346",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14346"
},
{
"name": "CVE-2020-14361",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14361"
},
{
"name": "CVE-2020-10543",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10543"
},
{
"name": "CVE-2021-30661",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30661"
},
{
"name": "CVE-2020-8927",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8927"
},
{
"name": "CVE-2020-15358",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15358"
},
{
"name": "CVE-2021-2388",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2388"
},
{
"name": "CVE-2020-29363",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29363"
},
{
"name": "CVE-2021-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3609"
},
{
"name": "CVE-2021-22543",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22543"
},
{
"name": "CVE-2020-13584",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13584"
},
{
"name": "CVE-2020-36328",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36328"
},
{
"name": "CVE-2020-27619",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27619"
},
{
"name": "CVE-2020-8492",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8492"
},
{
"name": "CVE-2019-9169",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9169"
},
{
"name": "CVE-2020-29573",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29573"
},
{
"name": "CVE-2020-4951",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-4951"
},
{
"name": "CVE-2021-3177",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3177"
},
{
"name": "CVE-2020-8231",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8231"
},
{
"name": "CVE-2016-10228",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10228"
},
{
"name": "CVE-2020-28196",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28196"
},
{
"name": "CVE-2021-22555",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22555"
},
{
"name": "CVE-2020-26137",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26137"
},
{
"name": "CVE-2021-25214",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25214"
},
{
"name": "CVE-2021-27218",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27218"
},
{
"name": "CVE-2020-13933",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13933"
},
{
"name": "CVE-2020-14344",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14344"
},
{
"name": "CVE-2021-3541",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3541"
},
{
"name": "CVE-2019-18276",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18276"
},
{
"name": "CVE-2021-3326",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3326"
},
{
"name": "CVE-2020-24332",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24332"
},
{
"name": "CVE-2020-25712",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25712"
},
{
"name": "CVE-2021-29745",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29745"
},
{
"name": "CVE-2020-24330",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24330"
},
{
"name": "CVE-2020-36329",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36329"
},
{
"name": "CVE-2021-29894",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29894"
},
{
"name": "CVE-2020-9948",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9948"
},
{
"name": "CVE-2020-27618",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27618"
},
{
"name": "CVE-2021-23362",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23362"
},
{
"name": "CVE-2020-27783",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27783"
},
{
"name": "CVE-2020-12049",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12049"
},
{
"name": "CVE-2020-28469",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28469"
},
{
"name": "CVE-2021-3518",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3518"
},
{
"name": "CVE-2020-24331",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24331"
},
{
"name": "CVE-2020-14345",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14345"
},
{
"name": "CVE-2020-25692",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25692"
},
{
"name": "CVE-2020-8625",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8625"
}
],
"initial_release_date": "2021-10-15T00:00:00",
"last_revision_date": "2021-10-15T00:00:00",
"links": [],
"reference": "CERTFR-2021-AVI-791",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-10-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6491661 du 14 octobre 2021",
"url": "https://www.ibm.com/support/pages/node/6491661"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6493729 du 14 octobre 2021",
"url": "https://www.ibm.com/support/pages/node/6493729"
}
]
}
CERTFR-2022-AVI-650
Vulnerability from certfr_avis - Published: 2022-07-15 - Updated: 2022-07-15
De multiples vulnérabilités ont été découvertes dans les produits Juniper. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions 20.4.x antérieures à 20.4R3-S2 | ||
| Juniper Networks | Junos OS | Junos OS versions 21.1.x antérieures à 21.1R3-S1 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 21.1.x aantérieures à 21.1R3-S1-EVO | ||
| Juniper Networks | Junos OS | Junos OS versions 18.3.x antérieures à 18.3R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS versions 17.3.x antérieures à 17.3R3-S12 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 20.4.x antérieures à 20.4R3-S2, 20.4R3-S3 | ||
| Juniper Networks | Junos OS | Junos OS versions 21.4.x antérieures à 21.4R1-S2, 21.4R2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 19.2.x antérieures à 19.2R1-S8, 19.2R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions antérieures à 19.2R1-S9, 19.2R3-S5 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 20.3.x antérieures à 20.3R3-S3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 19.3.x antérieures à 19.3R3-S6 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 21.3.x antérieures à 21.3R2-S1-EVO, 21.3R3-EVO | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 21.2.x antérieures à 21.2R2-S1, 21.2R3 | ||
| Juniper Networks | Junos Space | Junos Space versions antérieures à 22.1R1 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 22.1.x antérieures à 22.1R2 | ||
| Juniper Networks | Junos OS | Junos OS versions 19.2.x antérieures à 19.2R1-S9, 19.2R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 19.3.x antérieures à 19.3R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 20.1.x antérieures à 20.1R3-S4 | ||
| Juniper Networks | N/A | Junos Space Security Director Policy Enforcer versions antérieures à 22.1R1 | ||
| Juniper Networks | Junos OS | Junos OS versions 21.2.x antérieures à 21.2R2-S2, 21.2R3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 19.4.x antérieures à 19.4R2-S6, 19.4R3-S8 | ||
| Juniper Networks | Junos OS | Junos OS versions 19.4.x antérieures à 19.4R2-S6, 19.4R3-S8 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions supérieures à 20.1R1 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 20.1.x antérieures à 20.1R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS versions 19.1.x antérieures à 19.1R2-S3, 19.1R3-S8 | ||
| Juniper Networks | Junos OS | Junos OS versions 15.1X49, 15.1X49-D100 et suivantes antérieures à 19.2R3-S5 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 21.2.x antérieures à 21.2R1-S1-EVO, 21.2R3-EVO | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 20.4.x antérieures à 20.4R3-S2, 20.4R3-S3 | ||
| Juniper Networks | Junos OS | Junos OS versions 20.2.x antérieures à 20.2R3-S5 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions 21.1.x antérieures à 21.1R2, 21.1R3-S2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 19.2.x antérieures à 19.2R1-S9, 19.2R3-S5 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 21.1.x antérieures à 21.1R3-S1 | ||
| Juniper Networks | Junos OS | Junos OS versions 21.3.x antérieures à 21.3R2-S1, 21.3R3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 21.4.x antérieures à 21.4R1-S1, 21.4R2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 19.3.x antérieures à 19.3R3-S6 | ||
| Juniper Networks | N/A | Juniper Networks Contrail Networking versions antérieures à 21.4.0 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 19.4.x antérieures à 19.4R2-S5, 19.4R3-S8 | ||
| Juniper Networks | N/A | Contrôleur Juniper Networks NorthStar versions antérieures à 5.1.0 Service Pack 6 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions 20.2.x antérieures à 20.2R3-S5 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 20.4.x antérieures à 20.4R3-S2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 20.2.x antérieures à 20.2R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 21.2.x antérieures à 21.2R1-S1, 21.2R2, 21.2R3-S1 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 20.2.x antérieures à 20.2R3-S5 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 21.4.x antérieures à 21.4R1-S1-EVO, 21.4R2-EVO | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions antérieures à 19.2R1-S9, 19.2R3-S5 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 19.4.x antérieures à 19.4R3-S8 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX toutes versions antérieures à 19.1R3-S9 | ||
| Juniper Networks | Junos OS | Junos OS versions 19.3.x antérieures à 19.3R2-S7, 19.3R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 21.3.x antérieures à 21.3R1-S2, 21.3R2, 21.3R3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 20.1.x antérieures à 20.1R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 21.3.x antérieures à 21.3R2 | ||
| Juniper Networks | Junos OS | Junos OS versions 20.3.x antérieures à 20.3R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 20.3.x antérieures à 20.3R3-S3 | ||
| Juniper Networks | Junos OS | Junos OS versions 18.4.x antérieures à 18.4R2-S10, 18.4R3-S9 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 21.2.x antérieures à 21.2R2-S2, 21.2R3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 21.1.x antérieures à 21.1R3-S2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 20.2.x antérieures à 20.2R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 21.2.x antérieures à 21.2R2-S3, 21.2R3 | ||
| Juniper Networks | Junos OS | Junos OS versions 15.1.x antérieures à 15.1R7-S10 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 20.1.x antérieures à 20.1R3-S4 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions antérieures à 20.4R3-S3-EVO | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes EX versions 21.4.x antérieures à 21.4R1-S1, 21.4R2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 19.3.x antérieures à 19.3R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS versions antérieures à 12.3R12-S21 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions 21.3.x antérieures à 21.3R2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 21.1.x antérieures à 21.1R2-S1, 21.1R3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions 20.3.x antérieures à 20.3R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 20.4.x antérieures à 20.4R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 19.4.x antérieures à 19.4R3-S8 | ||
| Juniper Networks | Junos OS | Junos OS versions 20.1.x antérieures à 20.1R3-S4 | ||
| Juniper Networks | N/A | Contrôleur Juniper Networks NorthStar versions 6.x antérieures à 6.2.2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions antérieures à 19.1R3-S9 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes QFX versions 20.2.x antérieures à 20.2R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 21.1.x antérieures à 21.1R2-S1, 21.1R3-S2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 20.3.x antérieures à 20.3R3-S3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes SRX versions 21.3.x antérieures à 21.3R1-S2, 21.3R2, 21.3R3 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 20.3.x antérieures à 20.3R3-S4 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions 21.4.x antérieures à 21.4R2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 21.4.x antérieures à 21.4R2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes MX versions 21.2.x antérieures à 21.2R2-S2 | ||
| Juniper Networks | Junos OS | Junos OS sur plateformes PTX versions 21.3.x antérieures à 21.3R3 | ||
| Juniper Networks | Junos OS | Junos OS versions 20.4.x antérieures à 20.4R2-S2, 20.4R3-S3 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS sur plateformes MX versions 20.4.x ant\u00e9rieures \u00e0 20.4R3-S2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 21.1.x ant\u00e9rieures \u00e0 21.1R3-S1",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 21.1.x aant\u00e9rieures \u00e0 21.1R3-S1-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 18.3.x ant\u00e9rieures \u00e0 18.3R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 17.3.x ant\u00e9rieures \u00e0 17.3R3-S12",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 20.4.x ant\u00e9rieures \u00e0 20.4R3-S2, 20.4R3-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 21.4.x ant\u00e9rieures \u00e0 21.4R1-S2, 21.4R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 19.2.x ant\u00e9rieures \u00e0 19.2R1-S8, 19.2R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions ant\u00e9rieures \u00e0 19.2R1-S9, 19.2R3-S5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 20.3.x ant\u00e9rieures \u00e0 20.3R3-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 19.3.x ant\u00e9rieures \u00e0 19.3R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 21.3.x ant\u00e9rieures \u00e0 21.3R2-S1-EVO, 21.3R3-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 21.2.x ant\u00e9rieures \u00e0 21.2R2-S1, 21.2R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space versions ant\u00e9rieures \u00e0 22.1R1",
"product": {
"name": "Junos Space",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 22.1.x ant\u00e9rieures \u00e0 22.1R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 19.2.x ant\u00e9rieures \u00e0 19.2R1-S9, 19.2R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 19.3.x ant\u00e9rieures \u00e0 19.3R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 20.1.x ant\u00e9rieures \u00e0 20.1R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space Security Director Policy Enforcer versions ant\u00e9rieures \u00e0 22.1R1",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 21.2.x ant\u00e9rieures \u00e0 21.2R2-S2, 21.2R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 19.4.x ant\u00e9rieures \u00e0 19.4R2-S6, 19.4R3-S8",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 19.4.x ant\u00e9rieures \u00e0 19.4R2-S6, 19.4R3-S8",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes MX versions sup\u00e9rieures \u00e0 20.1R1",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 20.1.x ant\u00e9rieures \u00e0 20.1R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 19.1.x ant\u00e9rieures \u00e0 19.1R2-S3, 19.1R3-S8",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 15.1X49, 15.1X49-D100 et suivantes ant\u00e9rieures \u00e0 19.2R3-S5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 21.2.x ant\u00e9rieures \u00e0 21.2R1-S1-EVO, 21.2R3-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 20.4.x ant\u00e9rieures \u00e0 20.4R3-S2, 20.4R3-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 20.2.x ant\u00e9rieures \u00e0 20.2R3-S5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes MX versions 21.1.x ant\u00e9rieures \u00e0 21.1R2, 21.1R3-S2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 19.2.x ant\u00e9rieures \u00e0 19.2R1-S9, 19.2R3-S5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 21.1.x ant\u00e9rieures \u00e0 21.1R3-S1",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 21.3.x ant\u00e9rieures \u00e0 21.3R2-S1, 21.3R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 21.4.x ant\u00e9rieures \u00e0 21.4R1-S1, 21.4R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 19.3.x ant\u00e9rieures \u00e0 19.3R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Juniper Networks Contrail Networking versions ant\u00e9rieures \u00e0 21.4.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 19.4.x ant\u00e9rieures \u00e0 19.4R2-S5, 19.4R3-S8",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Contr\u00f4leur Juniper Networks NorthStar versions ant\u00e9rieures \u00e0 5.1.0 Service Pack 6",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes MX versions 20.2.x ant\u00e9rieures \u00e0 20.2R3-S5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 20.4.x ant\u00e9rieures \u00e0 20.4R3-S2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 20.2.x ant\u00e9rieures \u00e0 20.2R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 21.2.x ant\u00e9rieures \u00e0 21.2R1-S1, 21.2R2, 21.2R3-S1",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 20.2.x ant\u00e9rieures \u00e0 20.2R3-S5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 21.4.x ant\u00e9rieures \u00e0 21.4R1-S1-EVO, 21.4R2-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions ant\u00e9rieures \u00e0 19.2R1-S9, 19.2R3-S5",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 19.4.x ant\u00e9rieures \u00e0 19.4R3-S8",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX toutes versions ant\u00e9rieures \u00e0 19.1R3-S9",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 19.3.x ant\u00e9rieures \u00e0 19.3R2-S7, 19.3R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 21.3.x ant\u00e9rieures \u00e0 21.3R1-S2, 21.3R2, 21.3R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 20.1.x ant\u00e9rieures \u00e0 20.1R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 21.3.x ant\u00e9rieures \u00e0 21.3R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 20.3.x ant\u00e9rieures \u00e0 20.3R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 20.3.x ant\u00e9rieures \u00e0 20.3R3-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 18.4.x ant\u00e9rieures \u00e0 18.4R2-S10, 18.4R3-S9",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 21.2.x ant\u00e9rieures \u00e0 21.2R2-S2, 21.2R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 21.1.x ant\u00e9rieures \u00e0 21.1R3-S2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 20.2.x ant\u00e9rieures \u00e0 20.2R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 21.2.x ant\u00e9rieures \u00e0 21.2R2-S3, 21.2R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 15.1.x ant\u00e9rieures \u00e0 15.1R7-S10",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 20.1.x ant\u00e9rieures \u00e0 20.1R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions ant\u00e9rieures \u00e0 20.4R3-S3-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes EX versions 21.4.x ant\u00e9rieures \u00e0 21.4R1-S1, 21.4R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 19.3.x ant\u00e9rieures \u00e0 19.3R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions ant\u00e9rieures \u00e0 12.3R12-S21",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes MX versions 21.3.x ant\u00e9rieures \u00e0 21.3R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 21.1.x ant\u00e9rieures \u00e0 21.1R2-S1, 21.1R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes MX versions 20.3.x ant\u00e9rieures \u00e0 20.3R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 20.4.x ant\u00e9rieures \u00e0 20.4R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 19.4.x ant\u00e9rieures \u00e0 19.4R3-S8",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 20.1.x ant\u00e9rieures \u00e0 20.1R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Contr\u00f4leur Juniper Networks NorthStar versions 6.x ant\u00e9rieures \u00e0 6.2.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions ant\u00e9rieures \u00e0 19.1R3-S9",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes QFX versions 20.2.x ant\u00e9rieures \u00e0 20.2R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 21.1.x ant\u00e9rieures \u00e0 21.1R2-S1, 21.1R3-S2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 20.3.x ant\u00e9rieures \u00e0 20.3R3-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes SRX versions 21.3.x ant\u00e9rieures \u00e0 21.3R1-S2, 21.3R2, 21.3R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 20.3.x ant\u00e9rieures \u00e0 20.3R3-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes MX versions 21.4.x ant\u00e9rieures \u00e0 21.4R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 21.4.x ant\u00e9rieures \u00e0 21.4R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes MX versions 21.2.x ant\u00e9rieures \u00e0 21.2R2-S2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS sur plateformes PTX versions 21.3.x ant\u00e9rieures \u00e0 21.3R3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 20.4.x ant\u00e9rieures \u00e0 20.4R2-S2, 20.4R3-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-0876",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0876"
},
{
"name": "CVE-2003-0001",
"url": "https://www.cve.org/CVERecord?id=CVE-2003-0001"
},
{
"name": "CVE-2015-2716",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2716"
},
{
"name": "CVE-2015-1283",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1283"
},
{
"name": "CVE-2013-7422",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-7422"
},
{
"name": "CVE-2015-7705",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7705"
},
{
"name": "CVE-2015-8035",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8035"
},
{
"name": "CVE-2016-2516",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2516"
},
{
"name": "CVE-2016-4612",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4612"
},
{
"name": "CVE-2016-4610",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4610"
},
{
"name": "CVE-2016-4608",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4608"
},
{
"name": "CVE-2016-4609",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4609"
},
{
"name": "CVE-2016-4607",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4607"
},
{
"name": "CVE-2016-5131",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5131"
},
{
"name": "CVE-2016-4658",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4658"
},
{
"name": "CVE-2016-4738",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4738"
},
{
"name": "CVE-2016-5300",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5300"
},
{
"name": "CVE-2016-9063",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-9063"
},
{
"name": "CVE-2016-8618",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8618"
},
{
"name": "CVE-2016-8622",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8622"
},
{
"name": "CVE-2016-8619",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8619"
},
{
"name": "CVE-2016-5180",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5180"
},
{
"name": "CVE-2016-9538",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-9538"
},
{
"name": "CVE-2016-9539",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-9539"
},
{
"name": "CVE-2017-0553",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-0553"
},
{
"name": "CVE-2017-7375",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7375"
},
{
"name": "CVE-2017-1000368",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000368"
},
{
"name": "CVE-2017-10989",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10989"
},
{
"name": "CVE-2017-7525",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7525"
},
{
"name": "CVE-2017-15412",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15412"
},
{
"name": "CVE-2017-8817",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8817"
},
{
"name": "CVE-2015-8385",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8385"
},
{
"name": "CVE-2015-8388",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8388"
},
{
"name": "CVE-2015-2327",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2327"
},
{
"name": "CVE-2017-16931",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16931"
},
{
"name": "CVE-2015-8394",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8394"
},
{
"name": "CVE-2015-8387",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8387"
},
{
"name": "CVE-2015-8391",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8391"
},
{
"name": "CVE-2015-8380",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8380"
},
{
"name": "CVE-2016-3191",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3191"
},
{
"name": "CVE-2015-8390",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8390"
},
{
"name": "CVE-2015-8386",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8386"
},
{
"name": "CVE-2015-2328",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2328"
},
{
"name": "CVE-2017-18258",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18258"
},
{
"name": "CVE-2018-9251",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9251"
},
{
"name": "CVE-2018-7489",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7489"
},
{
"name": "CVE-2017-15095",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15095"
},
{
"name": "CVE-2017-17485",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17485"
},
{
"name": "CVE-2019-9518",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9518"
},
{
"name": "CVE-2018-14721",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14721"
},
{
"name": "CVE-2019-8457",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8457"
},
{
"name": "CVE-2019-1354",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1354"
},
{
"name": "CVE-2019-1352",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1352"
},
{
"name": "CVE-2019-1387",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1387"
},
{
"name": "CVE-2019-1349",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1349"
},
{
"name": "CVE-2019-1350",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1350"
},
{
"name": "CVE-2019-17267",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17267"
},
{
"name": "CVE-2020-2754",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2754"
},
{
"name": "CVE-2020-2756",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2756"
},
{
"name": "CVE-2020-2805",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2805"
},
{
"name": "CVE-2020-2830",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2830"
},
{
"name": "CVE-2020-2757",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2757"
},
{
"name": "CVE-2020-2800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2800"
},
{
"name": "CVE-2020-2803",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2803"
},
{
"name": "CVE-2020-2755",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2755"
},
{
"name": "CVE-2020-2781",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2781"
},
{
"name": "CVE-2020-2773",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2773"
},
{
"name": "CVE-2020-8616",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8616"
},
{
"name": "CVE-2020-8617",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8617"
},
{
"name": "CVE-2019-17571",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17571"
},
{
"name": "CVE-2017-14867",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14867"
},
{
"name": "CVE-2019-16943",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16943"
},
{
"name": "CVE-2020-14579",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14579"
},
{
"name": "CVE-2020-14577",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14577"
},
{
"name": "CVE-2020-14578",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14578"
},
{
"name": "CVE-2020-14621",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14621"
},
{
"name": "CVE-2020-14583",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14583"
},
{
"name": "CVE-2020-14593",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14593"
},
{
"name": "CVE-2020-14556",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14556"
},
{
"name": "CVE-2020-11656",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11656"
},
{
"name": "CVE-2020-1968",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1968"
},
{
"name": "CVE-2020-15999",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15999"
},
{
"name": "CVE-2020-1747",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1747"
},
{
"name": "CVE-2020-25696",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25696"
},
{
"name": "CVE-2020-13631",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13631"
},
{
"name": "CVE-2020-13435",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13435"
},
{
"name": "CVE-2020-13434",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13434"
},
{
"name": "CVE-2020-15358",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15358"
},
{
"name": "CVE-2020-13630",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13630"
},
{
"name": "CVE-2020-25704",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25704"
},
{
"name": "CVE-2020-1971",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1971"
},
{
"name": "CVE-2021-23839",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23839"
},
{
"name": "CVE-2021-23841",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23841"
},
{
"name": "CVE-2021-23840",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23840"
},
{
"name": "CVE-2021-3177",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3177"
},
{
"name": "CVE-2019-25013",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25013"
},
{
"name": "CVE-2021-28950",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28950"
},
{
"name": "CVE-2020-36322",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36322"
},
{
"name": "CVE-2021-23017",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23017"
},
{
"name": "CVE-2020-36385",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36385"
},
{
"name": "CVE-2020-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10878"
},
{
"name": "CVE-2020-13632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13632"
},
{
"name": "CVE-2020-11655",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11655"
},
{
"name": "CVE-2020-29573",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29573"
},
{
"name": "CVE-2020-10029",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10029"
},
{
"name": "CVE-2021-3712",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3712"
},
{
"name": "CVE-2020-12049",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12049"
},
{
"name": "CVE-2020-14363",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14363"
},
{
"name": "CVE-2019-18276",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18276"
},
{
"name": "CVE-2021-3520",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3520"
},
{
"name": "CVE-2019-9169",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9169"
},
{
"name": "CVE-2021-3517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3517"
},
{
"name": "CVE-2021-20271",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20271"
},
{
"name": "CVE-2020-27619",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27619"
},
{
"name": "CVE-2020-8492",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8492"
},
{
"name": "CVE-2021-20227",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20227"
},
{
"name": "CVE-2021-35603",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35603"
},
{
"name": "CVE-2021-35586",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35586"
},
{
"name": "CVE-2021-35559",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35559"
},
{
"name": "CVE-2021-35567",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35567"
},
{
"name": "CVE-2021-35578",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35578"
},
{
"name": "CVE-2021-35550",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35550"
},
{
"name": "CVE-2021-35561",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35561"
},
{
"name": "CVE-2021-35565",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35565"
},
{
"name": "CVE-2021-35588",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35588"
},
{
"name": "CVE-2021-35564",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35564"
},
{
"name": "CVE-2021-35556",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35556"
},
{
"name": "CVE-2021-22946",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22946"
},
{
"name": "CVE-2020-13871",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13871"
},
{
"name": "CVE-2020-25717",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25717"
},
{
"name": "CVE-2016-2124",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2124"
},
{
"name": "CVE-2021-42739",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42739"
},
{
"name": "CVE-2019-9924",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9924"
},
{
"name": "CVE-2019-14892",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14892"
},
{
"name": "CVE-2019-14893",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14893"
},
{
"name": "CVE-2022-21304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21304"
},
{
"name": "CVE-2022-21245",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21245"
},
{
"name": "CVE-2022-21344",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21344"
},
{
"name": "CVE-2022-21270",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21270"
},
{
"name": "CVE-2022-21367",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21367"
},
{
"name": "CVE-2022-21303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21303"
},
{
"name": "CVE-2020-9327",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9327"
},
{
"name": "CVE-2021-41617",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41617"
},
{
"name": "CVE-2019-14379",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14379"
},
{
"name": "CVE-2014-6272",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6272"
},
{
"name": "CVE-2015-6525",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-6525"
},
{
"name": "CVE-2018-14404",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14404"
},
{
"name": "CVE-2017-1000158",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000158"
},
{
"name": "CVE-2020-14343",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14343"
},
{
"name": "CVE-2018-1000654",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000654"
},
{
"name": "CVE-2014-9471",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9471"
},
{
"name": "CVE-2019-14540",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14540"
},
{
"name": "CVE-2020-8840",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8840"
},
{
"name": "CVE-2019-16942",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16942"
},
{
"name": "CVE-2019-16335",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16335"
},
{
"name": "CVE-2019-17531",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17531"
},
{
"name": "CVE-2019-20330",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20330"
},
{
"name": "CVE-2019-0205",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0205"
},
{
"name": "CVE-2017-12562",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12562"
},
{
"name": "CVE-2018-14567",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14567"
},
{
"name": "CVE-2022-22217",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22217"
},
{
"name": "CVE-2016-4484",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4484"
},
{
"name": "CVE-2015-4042",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4042"
},
{
"name": "CVE-2016-7943",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7943"
},
{
"name": "CVE-2016-6318",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6318"
},
{
"name": "CVE-2017-7500",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7500"
},
{
"name": "CVE-2016-7942",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7942"
},
{
"name": "CVE-2017-9117",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-9117"
},
{
"name": "CVE-2022-22203",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22203"
},
{
"name": "CVE-2015-5228",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-5228"
},
{
"name": "CVE-2021-42574",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42574"
},
{
"name": "CVE-2022-22216",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22216"
},
{
"name": "CVE-2015-7805",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7805"
},
{
"name": "CVE-2017-8779",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8779"
},
{
"name": "CVE-2022-22206",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22206"
},
{
"name": "CVE-2016-7947",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7947"
},
{
"name": "CVE-2016-7951",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7951"
},
{
"name": "CVE-2018-8088",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8088"
},
{
"name": "CVE-2018-6954",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6954"
},
{
"name": "CVE-2014-9488",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9488"
},
{
"name": "CVE-2018-14720",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14720"
},
{
"name": "CVE-2017-15994",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15994"
},
{
"name": "CVE-2022-22209",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22209"
},
{
"name": "CVE-2015-8540",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8540"
},
{
"name": "CVE-2016-7950",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7950"
},
{
"name": "CVE-2017-14930",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14930"
},
{
"name": "CVE-2017-8105",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8105"
},
{
"name": "CVE-2016-7949",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7949"
},
{
"name": "CVE-2017-5225",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5225"
},
{
"name": "CVE-2016-1951",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1951"
},
{
"name": "CVE-2017-8871",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8871"
},
{
"name": "CVE-2018-19362",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19362"
},
{
"name": "CVE-2022-22215",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22215"
},
{
"name": "CVE-2015-7036",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7036"
},
{
"name": "CVE-2016-2779",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2779"
},
{
"name": "CVE-2022-22213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22213"
},
{
"name": "CVE-2016-10195",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10195"
},
{
"name": "CVE-2014-5044",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-5044"
},
{
"name": "CVE-2016-7944",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7944"
},
{
"name": "CVE-2014-9114",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9114"
},
{
"name": "CVE-2014-9474",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9474"
},
{
"name": "CVE-2015-2059",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2059"
},
{
"name": "CVE-2022-22207",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22207"
},
{
"name": "CVE-2022-22205",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22205"
},
{
"name": "CVE-2022-22204",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22204"
},
{
"name": "CVE-2017-5929",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5929"
},
{
"name": "CVE-2018-19361",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19361"
},
{
"name": "CVE-2017-10685",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10685"
},
{
"name": "CVE-2021-33574",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33574"
},
{
"name": "CVE-2015-8947",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8947"
},
{
"name": "CVE-2019-9893",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9893"
},
{
"name": "CVE-2016-1238",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1238"
},
{
"name": "CVE-2016-7948",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7948"
},
{
"name": "CVE-2014-9746",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9746"
},
{
"name": "CVE-2018-14719",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14719"
},
{
"name": "CVE-2016-2052",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2052"
},
{
"name": "CVE-2021-3487",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3487"
},
{
"name": "CVE-2022-22214",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22214"
},
{
"name": "CVE-2014-4043",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4043"
},
{
"name": "CVE-2022-22221",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22221"
},
{
"name": "CVE-2022-22212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22212"
},
{
"name": "CVE-2017-16548",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16548"
},
{
"name": "CVE-2021-36690",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36690"
},
{
"name": "CVE-2014-9939",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9939"
},
{
"name": "CVE-2017-11164",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11164"
},
{
"name": "CVE-2015-3308",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-3308"
},
{
"name": "CVE-2017-7614",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7614"
},
{
"name": "CVE-2022-22202",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22202"
},
{
"name": "CVE-2017-8421",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8421"
},
{
"name": "CVE-2017-14062",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14062"
},
{
"name": "CVE-2018-14718",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14718"
},
{
"name": "CVE-2022-22218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22218"
},
{
"name": "CVE-2017-10684",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10684"
},
{
"name": "CVE-2022-22210",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22210"
},
{
"name": "CVE-2017-13716",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-13716"
},
{
"name": "CVE-2021-37750",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37750"
},
{
"name": "CVE-2015-5602",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-5602"
},
{
"name": "CVE-2018-11307",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11307"
},
{
"name": "CVE-2018-19360",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19360"
},
{
"name": "CVE-2017-17434",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17434"
},
{
"name": "CVE-2017-8287",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8287"
},
{
"name": "CVE-2017-8804",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8804"
}
],
"initial_release_date": "2022-07-15T00:00:00",
"last_revision_date": "2022-07-15T00:00:00",
"links": [],
"reference": "CERTFR-2022-AVI-650",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-07-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nJuniper. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69723 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-Space-Security-Director-Policy-Enforcer-upgraded-to-CentOS-7-9"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69722 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-22-2R1-release-CVE-2022-22218"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69713 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-RIB-and-PFEs-can-get-out-of-sync-due-to-a-memory-leak-caused-by-interface-flaps-or-route-churn-CVE-2022-22209"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69710 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-SRX-series-The-PFE-will-crash-when-specific-traffic-is-scanned-by-Enhanced-Web-Filtering-safe-search-CVE-2022-22206"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69717 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Denial-of-Service-DoS-vulnerability-in-RPD-upon-receipt-of-specific-BGP-update-CVE-2022-22213"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69707 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-EX4600-Series-and-QFX5000-Series-Receipt-of-specific-traffic-will-lead-to-an-fxpc-process-crash-followed-by-an-FPC-reboot-CVE-2022-22203"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69714 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-QFX5000-Series-and-MX-Series-An-l2alm-crash-leading-to-an-FPC-crash-can-be-observed-in-VxLAN-scenario-CVE-2022-22210"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69718 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-an-MPLS-scenario-upon-receipt-of-a-specific-IPv6-packet-an-FPC-will-crash-CVE-2022-22214"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69726 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Contrail-Networking-Multiple-vulnerabilities-resolved-in-Contrail-Networking-21-4"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69711 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-MX-Series-with-MPC11-In-a-GNF-node-slicing-scenario-gathering-AF-interface-statistics-can-lead-to-a-kernel-crash-CVE-2022-22207"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69715 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-OpenSSL-security-fixes"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69708 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-MX-Series-and-SRX-Series-When-receiving-a-specific-SIP-packets-stale-call-table-entries-are-created-which-eventually-leads-to-a-DoS-for-all-SIP-traffic-CVE-2022-22204"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69716 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-Evolved-A-high-rate-of-specific-hostbound-traffic-will-cause-unexpected-hostbound-traffic-delays-or-drops-CVE-2022-22212"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69719 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-var-run-pid-env-files-are-potentially-not-deleted-during-termination-of-a-gRPC-connection-causing-inode-exhaustion-CVE-2022-22215"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69703 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Northstar-Controller-nginx-component-allows-remote-attacker-to-cause-worker-process-crash-or-potentially-arbitrary-code-execution-CVE-2021-23017-2"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69721 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-QFX10k-Series-Denial-of-Service-DoS-upon-receipt-of-crafted-MLD-packets-on-multi-homing-ESI-in-VXLAN-CVE-2022-22217"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69720 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-PTX-Series-and-QFX10000-Series-Etherleak-memory-disclosure-in-Ethernet-padding-data-CVE-2022-22216"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69725 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-SRX-and-EX-Series-Local-privilege-escalation-flaw-in-download-functionality-CVE-2022-22221"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69705 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Multiple-vulnerabilities-in-SQLite-resolved"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69709 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-SRX-Series-An-FPC-memory-leak-can-occur-in-an-APBR-scenario-CVE-2022-22205"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA69706 du 13 juillet 2022",
"url": "https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-PTX-Series-FPCs-may-restart-unexpectedly-upon-receipt-of-specific-MPLS-packets-with-certain-multi-unit-interface-configurations-CVE-2022-22202"
}
]
}
CNVD-2020-29429
Vulnerability from cnvd - Published: 2020-05-22
VLAI
Title
ISC BIND拒绝服务漏洞(CNVD-2020-29429)
Description
ISC BIND是美国ISC公司的一套实现了DNS协议的开源软件。
ISC BIND中存在拒绝服务漏洞。远程攻击者可利用该漏洞导致拒绝服务。
Severity
高
Patch Name
ISC BIND拒绝服务漏洞(CNVD-2020-29429)的补丁
Patch Description
ISC BIND是美国ISC公司的一套实现了DNS协议的开源软件。
ISC BIND中存在拒绝服务漏洞。远程攻击者可利用该漏洞导致拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://kb.isc.org/docs/cve-2020-8617
Reference
https://nvd.nist.gov/vuln/detail/CVE-2020-8617
Impacted products
| Name | ['ISC BIND 9.0.0 -> 9.11.18', 'ISC BIND 9.12.0 -> 9.12.4-P2', 'ISC BIND 9.14.0 -> 9.14.11', 'ISC BIND 9.16.0 -> 9.16.2', 'ISC BIND 9.17.0 -> 9.17.1 实验版本分支', 'ISC BIND 9.13 and 9.15 所有废弃的开发分支', 'ISC BIND Supported Preview Edition from 9.9.3-S1 -> 9.11.18-S1'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2020-8617"
}
},
"description": "ISC BIND\u662f\u7f8e\u56fdISC\u516c\u53f8\u7684\u4e00\u5957\u5b9e\u73b0\u4e86DNS\u534f\u8bae\u7684\u5f00\u6e90\u8f6f\u4ef6\u3002\n\nISC BIND\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://kb.isc.org/docs/cve-2020-8617",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2020-29429",
"openTime": "2020-05-22",
"patchDescription": "ISC BIND\u662f\u7f8e\u56fdISC\u516c\u53f8\u7684\u4e00\u5957\u5b9e\u73b0\u4e86DNS\u534f\u8bae\u7684\u5f00\u6e90\u8f6f\u4ef6\u3002\r\n\r\nISC BIND\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "ISC BIND\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2020-29429\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"ISC BIND 9.0.0 -\u003e 9.11.18",
"ISC BIND 9.12.0 -\u003e 9.12.4-P2",
"ISC BIND 9.14.0 -\u003e 9.14.11",
"ISC BIND 9.16.0 -\u003e 9.16.2",
"ISC BIND 9.17.0 -\u003e 9.17.1 \u5b9e\u9a8c\u7248\u672c\u5206\u652f",
"ISC BIND 9.13 and 9.15 \u6240\u6709\u5e9f\u5f03\u7684\u5f00\u53d1\u5206\u652f",
"ISC BIND Supported Preview Edition from 9.9.3-S1 -\u003e 9.11.18-S1"
]
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-8617",
"serverity": "\u9ad8",
"submitTime": "2020-05-20",
"title": "ISC BIND\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2020-29429\uff09"
}
FKIE_CVE-2020-8617
Vulnerability from fkie_nvd - Published: 2020-05-19 14:15 - Updated: 2024-11-21 05:39
Severity
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5.9 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
5.9 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.
References
| URL | Tags | ||
|---|---|---|---|
| security-officer@isc.org | http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html | Mailing List, Third Party Advisory | |
| security-officer@isc.org | http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html | Mailing List, Third Party Advisory | |
| security-officer@isc.org | http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html | Third Party Advisory, VDB Entry | |
| security-officer@isc.org | http://www.openwall.com/lists/oss-security/2020/05/19/4 | Mailing List, Patch, Third Party Advisory | |
| security-officer@isc.org | https://kb.isc.org/docs/cve-2020-8617 | Patch, Vendor Advisory | |
| security-officer@isc.org | https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html | Mailing List, Third Party Advisory | |
| security-officer@isc.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/ | ||
| security-officer@isc.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/ | ||
| security-officer@isc.org | https://security.netapp.com/advisory/ntap-20200522-0002/ | Third Party Advisory | |
| security-officer@isc.org | https://usn.ubuntu.com/4365-1/ | Third Party Advisory | |
| security-officer@isc.org | https://usn.ubuntu.com/4365-2/ | Third Party Advisory | |
| security-officer@isc.org | https://www.debian.org/security/2020/dsa-4689 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2020/05/19/4 | Mailing List, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kb.isc.org/docs/cve-2020-8617 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20200522-0002/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/4365-1/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/4365-2/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2020/dsa-4689 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| isc | bind | * | |
| isc | bind | * | |
| isc | bind | * | |
| isc | bind | * | |
| isc | bind | * | |
| isc | bind | * | |
| isc | bind | * | |
| isc | bind | 9.12.4 | |
| isc | bind | 9.12.4 | |
| isc | bind | 9.9.3 | |
| isc | bind | 9.10.5 | |
| isc | bind | 9.10.7 | |
| isc | bind | 9.11.3 | |
| isc | bind | 9.11.5 | |
| isc | bind | 9.11.5 | |
| isc | bind | 9.11.6 | |
| isc | bind | 9.11.7 | |
| isc | bind | 9.11.8 | |
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 | |
| debian | debian_linux | 10.0 | |
| fedoraproject | fedora | 31 | |
| fedoraproject | fedora | 32 | |
| opensuse | leap | 15.1 | |
| opensuse | leap | 15.2 | |
| canonical | ubuntu_linux | 12.04 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 19.10 | |
| canonical | ubuntu_linux | 20.04 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D09867AC-12F6-49C8-B399-0BA8B027B036",
"versionEndIncluding": "9.11.18",
"versionStartIncluding": "9.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9C499955-0D38-4828-B94F-9BFE2719246B",
"versionEndIncluding": "9.12.4",
"versionStartIncluding": "9.12.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EA8EE96D-C27B-4995-BFB2-B4AC55ACAE8A",
"versionEndIncluding": "9.13.7",
"versionStartIncluding": "9.13.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3296874E-8628-4D69-B788-6CC51296A522",
"versionEndIncluding": "9.14.11",
"versionStartIncluding": "9.14.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EEC8D4F0-B8E2-47B0-8E13-EE3FB4E43C01",
"versionEndIncluding": "9.15.6",
"versionStartIncluding": "9.15.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"matchCriteriaId": "12DD0D57-81E0-40BC-8047-E41892261E39",
"versionEndIncluding": "9.16.2",
"versionStartIncluding": "9.16.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"matchCriteriaId": "96A5AA10-99B2-4784-A628-33E5CC697A30",
"versionEndIncluding": "9.17.1",
"versionStartIncluding": "9.17.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.12.4:p1:*:*:*:*:*:*",
"matchCriteriaId": "E121D018-42B7-467E-9481-EDA4021401AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.12.4:p2:*:*:*:*:*:*",
"matchCriteriaId": "343890F9-D6B4-433C-9131-9526DBB75749",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:isc:bind:9.9.3:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "40EE014B-0CD8-45F3-BEDB-AE6368A78B04",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.10.5:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "CAD41122-C5D8-4256-8CB7-FF88DCD96A13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.10.7:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "6243685F-1E5B-4FF6-AE1B-44798032FBA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.11.3:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "C2FE13E1-0646-46FC-875B-CB4C34E20101",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.11.5:s3:*:*:supported_preview:*:*:*",
"matchCriteriaId": "1AA16E51-819C-4A1B-B66E-1C60C1782C0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.11.5:s5:*:*:supported_preview:*:*:*",
"matchCriteriaId": "91533F9F-C0E5-4E84-8A4C-F744F956BF97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.11.6:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "8AF9D390-0D5B-4963-A2D3-BF1E7CD95E9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.11.7:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "AB2B92F1-6BA8-41CA-9000-E0633462CC28",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.11.8:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "02CA4635-7DFC-408E-A837-856E0F96CA1B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
"matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*",
"matchCriteriaId": "36D96259-24BD-44E2-96D9-78CE1D41F956",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B009C22E-30A4-4288-BCF6-C3E81DEAF45A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*",
"matchCriteriaId": "CB66DB75-2B16-4EBF-9B93-CE49D8086E41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*",
"matchCriteriaId": "815D70A8-47D3-459C-A32C-9FEACA0659D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*",
"matchCriteriaId": "7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A31C8344-3E02-4EB8-8BD8-4C84B7959624",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "902B8056-9E37-443B-8905-8AA93E2447FB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results."
},
{
"lang": "es",
"value": "Al usar un mensaje especialmente dise\u00f1ado, un atacante puede causar que un servidor BIND alcance un estado inconsistente si el atacante conoce (o adivina con \u00e9xito) el nombre de una clave TSIG utilizada por el servidor. Dado que BIND, por defecto, configura una clave de sesi\u00f3n local incluso en servidores cuya configuraci\u00f3n no la usa, casi todos los servidores BIND actuales son vulnerables. En los lanzamientos de BIND que datan de marzo de 2018 y posteriores, una comprobaci\u00f3n de afirmaci\u00f3n en el archivo tsig.c detecta este estado inconsistente y se cierra deliberadamente. Antes de la introducci\u00f3n de la comprobaci\u00f3n, el servidor continuar\u00eda funcionando en un estado inconsistente, con resultados potencialmente da\u00f1inos."
}
],
"id": "CVE-2020-8617",
"lastModified": "2024-11-21T05:39:07.990",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "security-officer@isc.org",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-05-19T14:15:11.987",
"references": [
{
"source": "security-officer@isc.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"source": "security-officer@isc.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
},
{
"source": "security-officer@isc.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"source": "security-officer@isc.org",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
},
{
"source": "security-officer@isc.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"source": "security-officer@isc.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"source": "security-officer@isc.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/"
},
{
"source": "security-officer@isc.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/"
},
{
"source": "security-officer@isc.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20200522-0002/"
},
{
"source": "security-officer@isc.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4365-1/"
},
{
"source": "security-officer@isc.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4365-2/"
},
{
"source": "security-officer@isc.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2020/dsa-4689"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20200522-0002/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4365-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4365-2/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2020/dsa-4689"
}
],
"sourceIdentifier": "security-officer@isc.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-617"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-Q6G5-8P95-HQH7
Vulnerability from github – Published: 2022-05-24 17:18 – Updated: 2022-09-10 00:00
VLAI
Details
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.
Severity
5.9 (Medium)
{
"affected": [],
"aliases": [
"CVE-2020-8617"
],
"database_specific": {
"cwe_ids": [
"CWE-617"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2020-05-19T14:15:00Z",
"severity": "MODERATE"
},
"details": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.",
"id": "GHSA-q6g5-8p95-hqh7",
"modified": "2022-09-10T00:00:26Z",
"published": "2022-05-24T17:18:10Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8617"
},
{
"type": "WEB",
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20200522-0002"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/4365-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/4365-2"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2020/dsa-4689"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
},
{
"type": "WEB",
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2020-8617
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-8617",
"description": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.",
"id": "GSD-2020-8617",
"references": [
"https://www.suse.com/security/cve/CVE-2020-8617.html",
"https://www.debian.org/security/2020/dsa-4689",
"https://access.redhat.com/errata/RHSA-2020:3475",
"https://access.redhat.com/errata/RHSA-2020:3471",
"https://access.redhat.com/errata/RHSA-2020:3470",
"https://access.redhat.com/errata/RHSA-2020:3433",
"https://access.redhat.com/errata/RHSA-2020:3379",
"https://access.redhat.com/errata/RHSA-2020:3378",
"https://access.redhat.com/errata/RHSA-2020:2893",
"https://access.redhat.com/errata/RHSA-2020:2404",
"https://access.redhat.com/errata/RHSA-2020:2383",
"https://access.redhat.com/errata/RHSA-2020:2345",
"https://access.redhat.com/errata/RHSA-2020:2344",
"https://access.redhat.com/errata/RHSA-2020:2338",
"https://ubuntu.com/security/CVE-2020-8617",
"https://advisories.mageia.org/CVE-2020-8617.html",
"https://security.archlinux.org/CVE-2020-8617",
"https://alas.aws.amazon.com/cve/html/CVE-2020-8617.html",
"https://linux.oracle.com/cve/CVE-2020-8617.html",
"https://packetstormsecurity.com/files/cve/CVE-2020-8617"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-8617"
],
"details": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.",
"id": "GSD-2020-8617",
"modified": "2023-12-13T01:21:54.494552Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-officer@isc.org",
"DATE_PUBLIC": "2020-05-19T08:59:49.000Z",
"ID": "CVE-2020-8617",
"STATE": "PUBLIC",
"TITLE": "A logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BIND9",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "9.0.0 -\u003e 9.11.18, 9.12.0 -\u003e 9.12.4-P2, 9.14.0 -\u003e 9.14.11, 9.16.0 -\u003e 9.16.2, and releases 9.17.0 -\u003e 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -\u003e 9.11.18-S1"
}
]
}
}
]
},
"vendor_name": "ISC"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "An error in BIND code which checks the validity of messages containing TSIG resource records can be exploited by an attacker to trigger an assertion failure in tsig.c, resulting in denial of service to clients. BIND 9.0.0 -\u003e 9.11.18, 9.12.0 -\u003e 9.12.4-P2, 9.14.0 -\u003e 9.14.11, 9.16.0 -\u003e 9.16.2, and releases 9.17.0 -\u003e 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -\u003e 9.11.18-S1."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.isc.org/docs/cve-2020-8617",
"refsource": "CONFIRM",
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"name": "[oss-security] 20200519 Two vulnerabilities disclosed in BIND (CVE-2020-8616 and CVE-2020-8617)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
},
{
"name": "DSA-4689",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2020/dsa-4689"
},
{
"name": "https://security.netapp.com/advisory/ntap-20200522-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20200522-0002/"
},
{
"name": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"name": "USN-4365-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4365-2/"
},
{
"name": "USN-4365-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4365-1/"
},
{
"name": "[debian-lts-announce] 20200530 [SECURITY] [DLA 2227-1] bind9 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"name": "FEDORA-2020-2d89cbcfd9",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/"
},
{
"name": "FEDORA-2020-f9dcd4e9d5",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/"
},
{
"name": "openSUSE-SU-2020:1699",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"name": "openSUSE-SU-2020:1701",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
}
]
},
"solution": [
{
"lang": "eng",
"value": "Upgrade to the patched release most closely related to your current version of BIND:\n\n BIND 9.11.19\n BIND 9.14.12\n BIND 9.16.3\n\nBIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers.\n\n BIND 9.11.19-S1"
}
],
"source": {
"discovery": "EXTERNAL"
},
"work_around": [
{
"lang": "eng",
"value": "None known."
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.12.4",
"versionStartIncluding": "9.12.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.12.4:p1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.13.7",
"versionStartIncluding": "9.13.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.12.4:p2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.17.1",
"versionStartIncluding": "9.17.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.16.2",
"versionStartIncluding": "9.16.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.14.11",
"versionStartIncluding": "9.14.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.11.18",
"versionStartIncluding": "9.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.15.6",
"versionStartIncluding": "9.15.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.11.7:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.11.3:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.11.6:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.10.5:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.11.5:s5:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.11.5:s3:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.9.3:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.10.7:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.11.8:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security-officer@isc.org",
"ID": "CVE-2020-8617"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-617"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.isc.org/docs/cve-2020-8617",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://kb.isc.org/docs/cve-2020-8617"
},
{
"name": "[oss-security] 20200519 Two vulnerabilities disclosed in BIND (CVE-2020-8616 and CVE-2020-8617)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/4"
},
{
"name": "DSA-4689",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2020/dsa-4689"
},
{
"name": "https://security.netapp.com/advisory/ntap-20200522-0002/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20200522-0002/"
},
{
"name": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html",
"refsource": "MISC",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html"
},
{
"name": "USN-4365-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4365-2/"
},
{
"name": "USN-4365-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4365-1/"
},
{
"name": "[debian-lts-announce] 20200530 [SECURITY] [DLA 2227-1] bind9 security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html"
},
{
"name": "FEDORA-2020-2d89cbcfd9",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/"
},
{
"name": "FEDORA-2020-f9dcd4e9d5",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/"
},
{
"name": "openSUSE-SU-2020:1699",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html"
},
{
"name": "openSUSE-SU-2020:1701",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 3.6
}
},
"lastModifiedDate": "2022-09-09T17:47Z",
"publishedDate": "2020-05-19T14:15Z"
}
}
}
OPENSUSE-SU-2020:1699-1
Vulnerability from csaf_opensuse - Published: 2020-10-19 18:22 - Updated: 2020-10-19 18:22Summary
Security update for bind
Severity
Moderate
Notes
Title of the patch: Security update for bind
Description of the patch: This update for bind fixes the following issues:
BIND was upgraded to version 9.16.6:
Note:
- bind is now more strict in regards to DNSSEC. If queries are not working,
check for DNSSEC issues. For instance, if bind is used in a namserver
forwarder chain, the forwarding DNS servers must support DNSSEC.
Fixing security issues:
- CVE-2020-8616: Further limit the number of queries that can be triggered from
a request. Root and TLD servers are no longer exempt
from max-recursion-queries. Fetches for missing name server. (bsc#1171740)
Address records are limited to 4 for any domain.
- CVE-2020-8617: Replaying a TSIG BADTIME response as a request could trigger an
assertion failure. (bsc#1171740)
- CVE-2019-6477: Fixed an issue where TCP-pipelined queries could bypass
the tcp-clients limit (bsc#1157051).
- CVE-2018-5741: Fixed the documentation (bsc#1109160).
- CVE-2020-8618: It was possible to trigger an INSIST when determining
whether a record would fit into a TCP message buffer (bsc#1172958).
- CVE-2020-8619: It was possible to trigger an INSIST in
lib/dns/rbtdb.c:new_reference() with a particular zone content
and query patterns (bsc#1172958).
- CVE-2020-8624: 'update-policy' rules of type 'subdomain' were
incorrectly treated as 'zonesub' rules, which allowed
keys used in 'subdomain' rules to update names outside
of the specified subdomains. The problem was fixed by
making sure 'subdomain' rules are again processed as
described in the ARM (bsc#1175443).
- CVE-2020-8623: When BIND 9 was compiled with native PKCS#11 support, it
was possible to trigger an assertion failure in code
determining the number of bits in the PKCS#11 RSA public
key with a specially crafted packet (bsc#1175443).
- CVE-2020-8621: named could crash in certain query resolution scenarios
where QNAME minimization and forwarding were both
enabled (bsc#1175443).
- CVE-2020-8620: It was possible to trigger an assertion failure by
sending a specially crafted large TCP DNS message (bsc#1175443).
- CVE-2020-8622: It was possible to trigger an assertion failure when
verifying the response to a TSIG-signed request (bsc#1175443).
Other issues fixed:
- Add engine support to OpenSSL EdDSA implementation.
- Add engine support to OpenSSL ECDSA implementation.
- Update PKCS#11 EdDSA implementation to PKCS#11 v3.0.
- Warn about AXFR streams with inconsistent message IDs.
- Make ISC rwlock implementation the default again.
- Fixed issues when using cookie-secrets for AES and SHA2 (bsc#1161168)
- Installed the default files in /var/lib/named and created
chroot environment on systems using transactional-updates (bsc#1100369, fate#325524)
- Fixed an issue where bind was not working in FIPS mode (bsc#906079).
- Fixed dependency issues (bsc#1118367 and bsc#1118368).
- GeoIP support is now discontinued, now GeoIP2 is used(bsc#1156205).
- Fixed an issue with FIPS (bsc#1128220).
- The liblwres library is discontinued upstream and is no longer included.
- Added service dependency on NTP to make sure the clock is accurate when bind is starts (bsc#1170667, bsc#1170713).
- Reject DS records at the zone apex when loading master files. Log but otherwise ignore attempts to add DS records at the zone apex via UPDATE.
- The default value of 'max-stale-ttl' has been changed from 1 week to 12 hours.
- Zone timers are now exported via statistics channel.
- The 'primary' and 'secondary' keywords, when used as parameters for 'check-names', were not processed correctly and were being ignored.
- 'rndc dnstap -roll <value>' did not limit the number of saved files to <value>.
- Add 'rndc dnssec -status' command.
- Addressed a couple of situations where named could crash.
- Changed /var/lib/named to owner root:named and perms rwxrwxr-t
so that named, being a/the only member of the 'named' group
has full r/w access yet cannot change directories owned by root
in the case of a compromized named.
[bsc#1173307, bind-chrootenv.conf]
- Added '/etc/bind.keys' to NAMED_CONF_INCLUDE_FILES in /etc/sysconfig/named to suppress warning message re missing file (bsc#1173983).
- Removed '-r /dev/urandom' from all invocations of rndc-confgen
(init/named system/lwresd.init system/named.init in vendor-files)
as this option is deprecated and causes rndc-confgen to fail.
(bsc#1173311, bsc#1176674, bsc#1170713)
- /usr/bin/genDDNSkey: Removing the use of the -r option in the call
of /usr/sbin/dnssec-keygen as BIND now uses the random number
functions provided by the crypto library (i.e., OpenSSL or a
PKCS#11 provider) as a source of randomness rather than /dev/random.
Therefore the -r command line option no longer has any effect on
dnssec-keygen. Leaving the option in genDDNSkey as to not break
compatibility. Patch provided by Stefan Eisenwiener.
[bsc#1171313]
- Put libns into a separate subpackage to avoid file conflicts
in the libisc subpackage due to different sonums (bsc#1176092).
- Require /sbin/start_daemon: both init scripts, the one used in
systemd context as well as legacy sysv, make use of start_daemon.
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2020-1699
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.6 (High)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
4.9 (Medium)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
4.9 (Medium)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
76 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1100369 | self |
| https://bugzilla.suse.com/1109160 | self |
| https://bugzilla.suse.com/1118367 | self |
| https://bugzilla.suse.com/1118368 | self |
| https://bugzilla.suse.com/1128220 | self |
| https://bugzilla.suse.com/1156205 | self |
| https://bugzilla.suse.com/1157051 | self |
| https://bugzilla.suse.com/1161168 | self |
| https://bugzilla.suse.com/1170667 | self |
| https://bugzilla.suse.com/1170713 | self |
| https://bugzilla.suse.com/1171313 | self |
| https://bugzilla.suse.com/1171740 | self |
| https://bugzilla.suse.com/1172958 | self |
| https://bugzilla.suse.com/1173307 | self |
| https://bugzilla.suse.com/1173311 | self |
| https://bugzilla.suse.com/1173983 | self |
| https://bugzilla.suse.com/1175443 | self |
| https://bugzilla.suse.com/1176092 | self |
| https://bugzilla.suse.com/1176674 | self |
| https://bugzilla.suse.com/906079 | self |
| https://www.suse.com/security/cve/CVE-2017-3136/ | self |
| https://www.suse.com/security/cve/CVE-2018-5741/ | self |
| https://www.suse.com/security/cve/CVE-2019-6477/ | self |
| https://www.suse.com/security/cve/CVE-2020-8616/ | self |
| https://www.suse.com/security/cve/CVE-2020-8617/ | self |
| https://www.suse.com/security/cve/CVE-2020-8618/ | self |
| https://www.suse.com/security/cve/CVE-2020-8619/ | self |
| https://www.suse.com/security/cve/CVE-2020-8620/ | self |
| https://www.suse.com/security/cve/CVE-2020-8621/ | self |
| https://www.suse.com/security/cve/CVE-2020-8622/ | self |
| https://www.suse.com/security/cve/CVE-2020-8623/ | self |
| https://www.suse.com/security/cve/CVE-2020-8624/ | self |
| https://www.suse.com/security/cve/CVE-2017-3136 | external |
| https://bugzilla.suse.com/1018700 | external |
| https://bugzilla.suse.com/1018701 | external |
| https://bugzilla.suse.com/1018702 | external |
| https://bugzilla.suse.com/1024130 | external |
| https://bugzilla.suse.com/1033461 | external |
| https://bugzilla.suse.com/1033466 | external |
| https://bugzilla.suse.com/1081545 | external |
| https://www.suse.com/security/cve/CVE-2018-5741 | external |
| https://bugzilla.suse.com/1109160 | external |
| https://bugzilla.suse.com/1171740 | external |
| https://www.suse.com/security/cve/CVE-2019-6477 | external |
| https://bugzilla.suse.com/1157051 | external |
| https://bugzilla.suse.com/1197136 | external |
| https://www.suse.com/security/cve/CVE-2020-8616 | external |
| https://bugzilla.suse.com/1109160 | external |
| https://bugzilla.suse.com/1171740 | external |
| https://www.suse.com/security/cve/CVE-2020-8617 | external |
| https://bugzilla.suse.com/1109160 | external |
| https://bugzilla.suse.com/1171740 | external |
| https://www.suse.com/security/cve/CVE-2020-8618 | external |
| https://bugzilla.suse.com/1172958 | external |
| https://www.suse.com/security/cve/CVE-2020-8619 | external |
| https://bugzilla.suse.com/1172958 | external |
| https://www.suse.com/security/cve/CVE-2020-8620 | external |
| https://bugzilla.suse.com/1175443 | external |
| https://bugzilla.suse.com/1191120 | external |
| https://www.suse.com/security/cve/CVE-2020-8621 | external |
| https://bugzilla.suse.com/1175443 | external |
| https://bugzilla.suse.com/1191120 | external |
| https://www.suse.com/security/cve/CVE-2020-8622 | external |
| https://bugzilla.suse.com/1175443 | external |
| https://bugzilla.suse.com/1188888 | external |
| https://bugzilla.suse.com/1191120 | external |
| https://www.suse.com/security/cve/CVE-2020-8623 | external |
| https://bugzilla.suse.com/1175443 | external |
| https://bugzilla.suse.com/1191120 | external |
| https://www.suse.com/security/cve/CVE-2020-8624 | external |
| https://bugzilla.suse.com/1175443 | external |
| https://bugzilla.suse.com/1191120 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bind",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bind fixes the following issues:\n\nBIND was upgraded to version 9.16.6:\n\nNote:\n\n- bind is now more strict in regards to DNSSEC. If queries are not working,\n check for DNSSEC issues. For instance, if bind is used in a namserver\n forwarder chain, the forwarding DNS servers must support DNSSEC.\n\nFixing security issues:\n\n- CVE-2020-8616: Further limit the number of queries that can be triggered from\n a request. Root and TLD servers are no longer exempt\n from max-recursion-queries. Fetches for missing name server. (bsc#1171740)\n Address records are limited to 4 for any domain.\n- CVE-2020-8617: Replaying a TSIG BADTIME response as a request could trigger an\n assertion failure. (bsc#1171740)\n- CVE-2019-6477: Fixed an issue where TCP-pipelined queries could bypass \n the tcp-clients limit (bsc#1157051).\n- CVE-2018-5741: Fixed the documentation (bsc#1109160).\n- CVE-2020-8618: It was possible to trigger an INSIST when determining\n whether a record would fit into a TCP message buffer (bsc#1172958).\n- CVE-2020-8619: It was possible to trigger an INSIST in\n lib/dns/rbtdb.c:new_reference() with a particular zone content\n and query patterns (bsc#1172958).\n- CVE-2020-8624: \u0027update-policy\u0027 rules of type \u0027subdomain\u0027 were\n incorrectly treated as \u0027zonesub\u0027 rules, which allowed\n keys used in \u0027subdomain\u0027 rules to update names outside\n of the specified subdomains. The problem was fixed by\n making sure \u0027subdomain\u0027 rules are again processed as\n described in the ARM (bsc#1175443).\n- CVE-2020-8623: When BIND 9 was compiled with native PKCS#11 support, it\n was possible to trigger an assertion failure in code\n determining the number of bits in the PKCS#11 RSA public\n key with a specially crafted packet (bsc#1175443).\n- CVE-2020-8621: named could crash in certain query resolution scenarios\n where QNAME minimization and forwarding were both\n enabled (bsc#1175443).\n- CVE-2020-8620: It was possible to trigger an assertion failure by\n sending a specially crafted large TCP DNS message (bsc#1175443).\n- CVE-2020-8622: It was possible to trigger an assertion failure when\n verifying the response to a TSIG-signed request (bsc#1175443).\n\nOther issues fixed:\n\n- Add engine support to OpenSSL EdDSA implementation.\n- Add engine support to OpenSSL ECDSA implementation.\n- Update PKCS#11 EdDSA implementation to PKCS#11 v3.0.\n- Warn about AXFR streams with inconsistent message IDs.\n- Make ISC rwlock implementation the default again.\n- Fixed issues when using cookie-secrets for AES and SHA2 (bsc#1161168)\n- Installed the default files in /var/lib/named and created \n chroot environment on systems using transactional-updates (bsc#1100369, fate#325524)\n- Fixed an issue where bind was not working in FIPS mode (bsc#906079).\n- Fixed dependency issues (bsc#1118367 and bsc#1118368).\n- GeoIP support is now discontinued, now GeoIP2 is used(bsc#1156205).\n- Fixed an issue with FIPS (bsc#1128220).\n- The liblwres library is discontinued upstream and is no longer included.\n- Added service dependency on NTP to make sure the clock is accurate when bind is starts (bsc#1170667, bsc#1170713).\n- Reject DS records at the zone apex when loading master files. Log but otherwise ignore attempts to add DS records at the zone apex via UPDATE.\n- The default value of \u0027max-stale-ttl\u0027 has been changed from 1 week to 12 hours.\n- Zone timers are now exported via statistics channel.\n- The \u0027primary\u0027 and \u0027secondary\u0027 keywords, when used as parameters for \u0027check-names\u0027, were not processed correctly and were being ignored.\n- \u0027rndc dnstap -roll \u003cvalue\u003e\u0027 did not limit the number of saved files to \u003cvalue\u003e.\n- Add \u0027rndc dnssec -status\u0027 command.\n- Addressed a couple of situations where named could crash.\n- Changed /var/lib/named to owner root:named and perms rwxrwxr-t\n so that named, being a/the only member of the \u0027named\u0027 group\n has full r/w access yet cannot change directories owned by root\n in the case of a compromized named.\n [bsc#1173307, bind-chrootenv.conf]\n- Added \u0027/etc/bind.keys\u0027 to NAMED_CONF_INCLUDE_FILES in /etc/sysconfig/named to suppress warning message re missing file (bsc#1173983).\n- Removed \u0027-r /dev/urandom\u0027 from all invocations of rndc-confgen\n (init/named system/lwresd.init system/named.init in vendor-files)\n as this option is deprecated and causes rndc-confgen to fail.\n (bsc#1173311, bsc#1176674, bsc#1170713)\n- /usr/bin/genDDNSkey: Removing the use of the -r option in the call\n of /usr/sbin/dnssec-keygen as BIND now uses the random number\n functions provided by the crypto library (i.e., OpenSSL or a\n PKCS#11 provider) as a source of randomness rather than /dev/random.\n Therefore the -r command line option no longer has any effect on\n dnssec-keygen. Leaving the option in genDDNSkey as to not break\n compatibility. Patch provided by Stefan Eisenwiener.\n [bsc#1171313]\n- Put libns into a separate subpackage to avoid file conflicts\n in the libisc subpackage due to different sonums (bsc#1176092).\n- Require /sbin/start_daemon: both init scripts, the one used in\n systemd context as well as legacy sysv, make use of start_daemon.\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-1699",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1699-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:1699-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VUOYW2V65CJWOTYJHZKJDB23QXG7SODU/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:1699-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VUOYW2V65CJWOTYJHZKJDB23QXG7SODU/"
},
{
"category": "self",
"summary": "SUSE Bug 1100369",
"url": "https://bugzilla.suse.com/1100369"
},
{
"category": "self",
"summary": "SUSE Bug 1109160",
"url": "https://bugzilla.suse.com/1109160"
},
{
"category": "self",
"summary": "SUSE Bug 1118367",
"url": "https://bugzilla.suse.com/1118367"
},
{
"category": "self",
"summary": "SUSE Bug 1118368",
"url": "https://bugzilla.suse.com/1118368"
},
{
"category": "self",
"summary": "SUSE Bug 1128220",
"url": "https://bugzilla.suse.com/1128220"
},
{
"category": "self",
"summary": "SUSE Bug 1156205",
"url": "https://bugzilla.suse.com/1156205"
},
{
"category": "self",
"summary": "SUSE Bug 1157051",
"url": "https://bugzilla.suse.com/1157051"
},
{
"category": "self",
"summary": "SUSE Bug 1161168",
"url": "https://bugzilla.suse.com/1161168"
},
{
"category": "self",
"summary": "SUSE Bug 1170667",
"url": "https://bugzilla.suse.com/1170667"
},
{
"category": "self",
"summary": "SUSE Bug 1170713",
"url": "https://bugzilla.suse.com/1170713"
},
{
"category": "self",
"summary": "SUSE Bug 1171313",
"url": "https://bugzilla.suse.com/1171313"
},
{
"category": "self",
"summary": "SUSE Bug 1171740",
"url": "https://bugzilla.suse.com/1171740"
},
{
"category": "self",
"summary": "SUSE Bug 1172958",
"url": "https://bugzilla.suse.com/1172958"
},
{
"category": "self",
"summary": "SUSE Bug 1173307",
"url": "https://bugzilla.suse.com/1173307"
},
{
"category": "self",
"summary": "SUSE Bug 1173311",
"url": "https://bugzilla.suse.com/1173311"
},
{
"category": "self",
"summary": "SUSE Bug 1173983",
"url": "https://bugzilla.suse.com/1173983"
},
{
"category": "self",
"summary": "SUSE Bug 1175443",
"url": "https://bugzilla.suse.com/1175443"
},
{
"category": "self",
"summary": "SUSE Bug 1176092",
"url": "https://bugzilla.suse.com/1176092"
},
{
"category": "self",
"summary": "SUSE Bug 1176674",
"url": "https://bugzilla.suse.com/1176674"
},
{
"category": "self",
"summary": "SUSE Bug 906079",
"url": "https://bugzilla.suse.com/906079"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-3136 page",
"url": "https://www.suse.com/security/cve/CVE-2017-3136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5741 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6477 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6477/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8616 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8617 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8618 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8618/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8619 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8620 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8621 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8621/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8622 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8623 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-8624 page",
"url": "https://www.suse.com/security/cve/CVE-2020-8624/"
}
],
"title": "Security update for bind",
"tracking": {
"current_release_date": "2020-10-19T18:22:55Z",
"generator": {
"date": "2020-10-19T18:22:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:1699-1",
"initial_release_date": "2020-10-19T18:22:55Z",
"revision_history": [
{
"date": "2020-10-19T18:22:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "bind-9.16.6-lp152.14.3.1.i586",
"product_id": "bind-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"product_id": "bind-chrootenv-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "bind-devel-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "bind-devel-9.16.6-lp152.14.3.1.i586",
"product_id": "bind-devel-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "bind-utils-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "bind-utils-9.16.6-lp152.14.3.1.i586",
"product_id": "bind-utils-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libbind9-1600-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libbind9-1600-9.16.6-lp152.14.3.1.i586",
"product_id": "libbind9-1600-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libdns1605-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libdns1605-9.16.6-lp152.14.3.1.i586",
"product_id": "libdns1605-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libirs-devel-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libirs-devel-9.16.6-lp152.14.3.1.i586",
"product_id": "libirs-devel-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libirs1601-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libirs1601-9.16.6-lp152.14.3.1.i586",
"product_id": "libirs1601-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libisc1606-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libisc1606-9.16.6-lp152.14.3.1.i586",
"product_id": "libisc1606-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libisccc1600-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libisccc1600-9.16.6-lp152.14.3.1.i586",
"product_id": "libisccc1600-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libisccfg1600-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libisccfg1600-9.16.6-lp152.14.3.1.i586",
"product_id": "libisccfg1600-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libns1604-9.16.6-lp152.14.3.1.i586",
"product": {
"name": "libns1604-9.16.6-lp152.14.3.1.i586",
"product_id": "libns1604-9.16.6-lp152.14.3.1.i586"
}
},
{
"category": "product_version",
"name": "libuv-devel-1.18.0-lp152.4.3.1.i586",
"product": {
"name": "libuv-devel-1.18.0-lp152.4.3.1.i586",
"product_id": "libuv-devel-1.18.0-lp152.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "libuv1-1.18.0-lp152.4.3.1.i586",
"product": {
"name": "libuv1-1.18.0-lp152.4.3.1.i586",
"product_id": "libuv1-1.18.0-lp152.4.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-doc-9.16.6-lp152.14.3.1.noarch",
"product": {
"name": "bind-doc-9.16.6-lp152.14.3.1.noarch",
"product_id": "bind-doc-9.16.6-lp152.14.3.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-bind-9.16.6-lp152.14.3.1.noarch",
"product": {
"name": "python3-bind-9.16.6-lp152.14.3.1.noarch",
"product_id": "python3-bind-9.16.6-lp152.14.3.1.noarch"
}
},
{
"category": "product_version",
"name": "sysuser-shadow-2.0-lp152.5.3.1.noarch",
"product": {
"name": "sysuser-shadow-2.0-lp152.5.3.1.noarch",
"product_id": "sysuser-shadow-2.0-lp152.5.3.1.noarch"
}
},
{
"category": "product_version",
"name": "sysuser-tools-2.0-lp152.5.3.1.noarch",
"product": {
"name": "sysuser-tools-2.0-lp152.5.3.1.noarch",
"product_id": "sysuser-tools-2.0-lp152.5.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "bind-9.16.6-lp152.14.3.1.x86_64",
"product_id": "bind-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"product_id": "bind-chrootenv-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-devel-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "bind-devel-9.16.6-lp152.14.3.1.x86_64",
"product_id": "bind-devel-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "bind-utils-9.16.6-lp152.14.3.1.x86_64",
"product_id": "bind-utils-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libbind9-1600-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libdns1605-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libdns1605-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libdns1605-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libirs-devel-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libirs1601-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libirs1601-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libirs1601-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libisc1606-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libisc1606-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libisc1606-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libisccc1600-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libisccfg1600-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libns1604-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libns1604-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libns1604-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"product": {
"name": "libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"product_id": "libns1604-32bit-9.16.6-lp152.14.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"product": {
"name": "libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"product_id": "libuv-devel-1.18.0-lp152.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuv1-1.18.0-lp152.4.3.1.x86_64",
"product": {
"name": "libuv1-1.18.0-lp152.4.3.1.x86_64",
"product_id": "libuv1-1.18.0-lp152.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"product": {
"name": "libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"product_id": "libuv1-32bit-1.18.0-lp152.4.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "bind-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "bind-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-chrootenv-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-chrootenv-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-devel-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "bind-devel-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-devel-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "bind-devel-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.16.6-lp152.14.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch"
},
"product_reference": "bind-doc-9.16.6-lp152.14.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "bind-utils-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "bind-utils-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbind9-1600-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libbind9-1600-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbind9-1600-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libdns1605-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libdns1605-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libdns1605-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libdns1605-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libirs-devel-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libirs-devel-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libirs-devel-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libirs1601-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libirs1601-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libirs1601-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libirs1601-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisc1606-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libisc1606-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisc1606-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libisc1606-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisccc1600-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libisccc1600-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisccc1600-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisccfg1600-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libisccfg1600-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisccfg1600-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libns1604-9.16.6-lp152.14.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586"
},
"product_reference": "libns1604-9.16.6-lp152.14.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libns1604-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libns1604-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libns1604-32bit-9.16.6-lp152.14.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64"
},
"product_reference": "libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuv-devel-1.18.0-lp152.4.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586"
},
"product_reference": "libuv-devel-1.18.0-lp152.4.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuv-devel-1.18.0-lp152.4.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64"
},
"product_reference": "libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuv1-1.18.0-lp152.4.3.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586"
},
"product_reference": "libuv1-1.18.0-lp152.4.3.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuv1-1.18.0-lp152.4.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64"
},
"product_reference": "libuv1-1.18.0-lp152.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuv1-32bit-1.18.0-lp152.4.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64"
},
"product_reference": "libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-bind-9.16.6-lp152.14.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch"
},
"product_reference": "python3-bind-9.16.6-lp152.14.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sysuser-shadow-2.0-lp152.5.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch"
},
"product_reference": "sysuser-shadow-2.0-lp152.5.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sysuser-tools-2.0-lp152.5.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
},
"product_reference": "sysuser-tools-2.0-lp152.5.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-3136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-3136"
}
],
"notes": [
{
"category": "general",
"text": "A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-service against a server if it was configured to use the DNS64 feature and other preconditions were met. Affects BIND 9.8.0 -\u003e 9.8.8-P1, 9.9.0 -\u003e 9.9.9-P6, 9.9.10b1-\u003e9.9.10rc1, 9.10.0 -\u003e 9.10.4-P6, 9.10.5b1-\u003e9.10.5rc1, 9.11.0 -\u003e 9.11.0-P3, 9.11.1b1-\u003e9.11.1rc1, 9.9.3-S1 -\u003e 9.9.9-S8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-3136",
"url": "https://www.suse.com/security/cve/CVE-2017-3136"
},
{
"category": "external",
"summary": "SUSE Bug 1018700 for CVE-2017-3136",
"url": "https://bugzilla.suse.com/1018700"
},
{
"category": "external",
"summary": "SUSE Bug 1018701 for CVE-2017-3136",
"url": "https://bugzilla.suse.com/1018701"
},
{
"category": "external",
"summary": "SUSE Bug 1018702 for CVE-2017-3136",
"url": "https://bugzilla.suse.com/1018702"
},
{
"category": "external",
"summary": "SUSE Bug 1024130 for CVE-2017-3136",
"url": "https://bugzilla.suse.com/1024130"
},
{
"category": "external",
"summary": "SUSE Bug 1033461 for CVE-2017-3136",
"url": "https://bugzilla.suse.com/1033461"
},
{
"category": "external",
"summary": "SUSE Bug 1033466 for CVE-2017-3136",
"url": "https://bugzilla.suse.com/1033466"
},
{
"category": "external",
"summary": "SUSE Bug 1081545 for CVE-2017-3136",
"url": "https://bugzilla.suse.com/1081545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2017-3136"
},
{
"cve": "CVE-2018-5741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5741"
}
],
"notes": [
{
"category": "general",
"text": "To provide fine-grained controls over the ability to use Dynamic DNS (DDNS) to update records in a zone, BIND 9 provides a feature called update-policy. Various rules can be configured to limit the types of updates that can be performed by a client, depending on the key used when sending the update request. Unfortunately, some rule types were not initially documented, and when documentation for them was added to the Administrator Reference Manual (ARM) in change #3112, the language that was added to the ARM at that time incorrectly described the behavior of two rule types, krb5-subdomain and ms-subdomain. This incorrect documentation could mislead operators into believing that policies they had configured were more restrictive than they actually were. This affects BIND versions prior to BIND 9.11.5 and BIND 9.12.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5741",
"url": "https://www.suse.com/security/cve/CVE-2018-5741"
},
{
"category": "external",
"summary": "SUSE Bug 1109160 for CVE-2018-5741",
"url": "https://bugzilla.suse.com/1109160"
},
{
"category": "external",
"summary": "SUSE Bug 1171740 for CVE-2018-5741",
"url": "https://bugzilla.suse.com/1171740"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "moderate"
}
],
"title": "CVE-2018-5741"
},
{
"cve": "CVE-2019-6477",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6477"
}
],
"notes": [
{
"category": "general",
"text": "With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been provisioned to handle. When a TCP connection with a large number of pipelined queries is closed, the load on the server releasing these multiple resources can cause it to become unresponsive, even for queries that can be answered authoritatively or from cache. (This is most likely to be perceived as an intermittent server problem).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6477",
"url": "https://www.suse.com/security/cve/CVE-2019-6477"
},
{
"category": "external",
"summary": "SUSE Bug 1157051 for CVE-2019-6477",
"url": "https://bugzilla.suse.com/1157051"
},
{
"category": "external",
"summary": "SUSE Bug 1197136 for CVE-2019-6477",
"url": "https://bugzilla.suse.com/1197136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2019-6477"
},
{
"cve": "CVE-2020-8616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8616"
}
],
"notes": [
{
"category": "general",
"text": "A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed when processing referrals can, through the use of specially crafted referrals, cause a recursing server to issue a very large number of fetches in an attempt to process the referral. This has at least two potential effects: The performance of the recursing server can potentially be degraded by the additional work required to perform these fetches, and The attacker can exploit this behavior to use the recursing server as a reflector in a reflection attack with a high amplification factor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8616",
"url": "https://www.suse.com/security/cve/CVE-2020-8616"
},
{
"category": "external",
"summary": "SUSE Bug 1109160 for CVE-2020-8616",
"url": "https://bugzilla.suse.com/1109160"
},
{
"category": "external",
"summary": "SUSE Bug 1171740 for CVE-2020-8616",
"url": "https://bugzilla.suse.com/1171740"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2020-8616"
},
{
"cve": "CVE-2020-8617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8617"
}
],
"notes": [
{
"category": "general",
"text": "Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8617",
"url": "https://www.suse.com/security/cve/CVE-2020-8617"
},
{
"category": "external",
"summary": "SUSE Bug 1109160 for CVE-2020-8617",
"url": "https://bugzilla.suse.com/1109160"
},
{
"category": "external",
"summary": "SUSE Bug 1171740 for CVE-2020-8617",
"url": "https://bugzilla.suse.com/1171740"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2020-8617"
},
{
"cve": "CVE-2020-8618",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8618"
}
],
"notes": [
{
"category": "general",
"text": "An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clients.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8618",
"url": "https://www.suse.com/security/cve/CVE-2020-8618"
},
{
"category": "external",
"summary": "SUSE Bug 1172958 for CVE-2020-8618",
"url": "https://bugzilla.suse.com/1172958"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "moderate"
}
],
"title": "CVE-2020-8618"
},
{
"cve": "CVE-2020-8619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8619"
}
],
"notes": [
{
"category": "general",
"text": "In ISC BIND9 versions BIND 9.11.14 -\u003e 9.11.19, BIND 9.14.9 -\u003e 9.14.12, BIND 9.16.0 -\u003e 9.16.3, BIND Supported Preview Edition 9.11.14-S1 -\u003e 9.11.19-S1: Unless a nameserver is providing authoritative service for one or more zones and at least one zone contains an empty non-terminal entry containing an asterisk (\"*\") character, this defect cannot be encountered. A would-be attacker who is allowed to change zone content could theoretically introduce such a record in order to exploit this condition to cause denial of service, though we consider the use of this vector unlikely because any such attack would require a significant privilege level and be easily traceable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8619",
"url": "https://www.suse.com/security/cve/CVE-2020-8619"
},
{
"category": "external",
"summary": "SUSE Bug 1172958 for CVE-2020-8619",
"url": "https://bugzilla.suse.com/1172958"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "moderate"
}
],
"title": "CVE-2020-8619"
},
{
"cve": "CVE-2020-8620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8620"
}
],
"notes": [
{
"category": "general",
"text": "In BIND 9.15.6 -\u003e 9.16.5, 9.17.0 -\u003e 9.17.3, An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure, causing the server to exit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8620",
"url": "https://www.suse.com/security/cve/CVE-2020-8620"
},
{
"category": "external",
"summary": "SUSE Bug 1175443 for CVE-2020-8620",
"url": "https://bugzilla.suse.com/1175443"
},
{
"category": "external",
"summary": "SUSE Bug 1191120 for CVE-2020-8620",
"url": "https://bugzilla.suse.com/1191120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2020-8620"
},
{
"cve": "CVE-2020-8621",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8621"
}
],
"notes": [
{
"category": "general",
"text": "In BIND 9.14.0 -\u003e 9.16.5, 9.17.0 -\u003e 9.17.3, If a server is configured with both QNAME minimization and \u0027forward first\u0027 then an attacker who can send queries to it may be able to trigger the condition that will cause the server to crash. Servers that \u0027forward only\u0027 are not affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8621",
"url": "https://www.suse.com/security/cve/CVE-2020-8621"
},
{
"category": "external",
"summary": "SUSE Bug 1175443 for CVE-2020-8621",
"url": "https://bugzilla.suse.com/1175443"
},
{
"category": "external",
"summary": "SUSE Bug 1191120 for CVE-2020-8621",
"url": "https://bugzilla.suse.com/1191120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2020-8621"
},
{
"cve": "CVE-2020-8622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8622"
}
],
"notes": [
{
"category": "general",
"text": "In BIND 9.0.0 -\u003e 9.11.21, 9.12.0 -\u003e 9.16.5, 9.17.0 -\u003e 9.17.3, also affects 9.9.3-S1 -\u003e 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker on the network path for a TSIG-signed request, or operating the server receiving the TSIG-signed request, could send a truncated response to that request, triggering an assertion failure, causing the server to exit. Alternately, an off-path attacker would have to correctly guess when a TSIG-signed request was sent, along with other characteristics of the packet and message, and spoof a truncated response to trigger an assertion failure, causing the server to exit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8622",
"url": "https://www.suse.com/security/cve/CVE-2020-8622"
},
{
"category": "external",
"summary": "SUSE Bug 1175443 for CVE-2020-8622",
"url": "https://bugzilla.suse.com/1175443"
},
{
"category": "external",
"summary": "SUSE Bug 1188888 for CVE-2020-8622",
"url": "https://bugzilla.suse.com/1188888"
},
{
"category": "external",
"summary": "SUSE Bug 1191120 for CVE-2020-8622",
"url": "https://bugzilla.suse.com/1191120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2020-8622"
},
{
"cve": "CVE-2020-8623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8623"
}
],
"notes": [
{
"category": "general",
"text": "In BIND 9.10.0 -\u003e 9.11.21, 9.12.0 -\u003e 9.16.5, 9.17.0 -\u003e 9.17.3, also affects 9.10.5-S1 -\u003e 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker that can reach a vulnerable system with a specially crafted query packet can trigger a crash. To be vulnerable, the system must: * be running BIND that was built with \"--enable-native-pkcs11\" * be signing one or more zones with an RSA key * be able to receive queries from a possible attacker",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8623",
"url": "https://www.suse.com/security/cve/CVE-2020-8623"
},
{
"category": "external",
"summary": "SUSE Bug 1175443 for CVE-2020-8623",
"url": "https://bugzilla.suse.com/1175443"
},
{
"category": "external",
"summary": "SUSE Bug 1191120 for CVE-2020-8623",
"url": "https://bugzilla.suse.com/1191120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2020-8623"
},
{
"cve": "CVE-2020-8624",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-8624"
}
],
"notes": [
{
"category": "general",
"text": "In BIND 9.9.12 -\u003e 9.9.13, 9.10.7 -\u003e 9.10.8, 9.11.3 -\u003e 9.11.21, 9.12.1 -\u003e 9.16.5, 9.17.0 -\u003e 9.17.3, also affects 9.9.12-S1 -\u003e 9.9.13-S1, 9.11.3-S1 -\u003e 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker who has been granted privileges to change a specific subset of the zone\u0027s content could abuse these unintended additional privileges to update other contents of the zone.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-8624",
"url": "https://www.suse.com/security/cve/CVE-2020-8624"
},
{
"category": "external",
"summary": "SUSE Bug 1175443 for CVE-2020-8624",
"url": "https://bugzilla.suse.com/1175443"
},
{
"category": "external",
"summary": "SUSE Bug 1191120 for CVE-2020-8624",
"url": "https://bugzilla.suse.com/1191120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-chrootenv-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:bind-doc-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:bind-utils-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libbind9-1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libdns1605-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs-devel-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libirs1601-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisc1606-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccc1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libisccfg1600-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-32bit-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.i586",
"openSUSE Leap 15.2:libns1604-9.16.6-lp152.14.3.1.x86_64",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv-devel-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.i586",
"openSUSE Leap 15.2:libuv1-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:libuv1-32bit-1.18.0-lp152.4.3.1.x86_64",
"openSUSE Leap 15.2:python3-bind-9.16.6-lp152.14.3.1.noarch",
"openSUSE Leap 15.2:sysuser-shadow-2.0-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:sysuser-tools-2.0-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-19T18:22:55Z",
"details": "important"
}
],
"title": "CVE-2020-8624"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…