Alert GCSA-19048 - Vulnerabilita' in ISC BIND
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-19048
Data: 26 aprile 2019
Titolo: Vulnerabilita' in ISC BIND
******************************************************************
:: Descrizione del problema
L'Internet Systems Consortium (ISC) ha rilasciato degli aggiornamenti
che risolvono tre vulnerabilita' presenti nel server DNS BIND.
Maggiori informazioni sono disponibili nella segnalazione ufficiale
alla sezione "Riferimenti".
:: Software interessato
BIND versioni
9.9.0 -> 9.10.8-P1
9.11.0 -> 9.11.6
9.12.0 -> 9.12.4
9.14.0.
BIND 9 Supported Preview Edition versioni
9.9.3-S1 -> 9.11.5-S3
9.11.5-S5
9.13.0 -> 9.13.7
:: Impatto
Denial of Service
:: Soluzioni
Aggiornare BIND alle seguenti versioni
9.11.6-P1
9.12.4-P1
9.14.1
BIND Supported Preview Edition versioni
BIND 9.11.5-S6
BIND 9.11.6-S1
http://www.isc.org/downloads
:: Riferimenti
ISC BIND Security Advisory
https://kb.isc.org/docs/cve-2018-5743
https://kb.isc.org/docs/cve-2019-6467
https://kb.isc.org/docs/cve-2019-6468
BIND 9 Security Vulnerability Matrix
https://kb.isc.org/docs/aa-00913
BIND 9.14.0 is the new stable branch for 2019
https://www.isc.org/blogs/bind-9-14-released/
Release Notes for BIND Version 9.14.1
https://ftp.isc.org/isc/bind9/9.14.1/RELEASE-NOTES-bind-9.14.1.html
SecurityFocus
https://www.securityfocus.com/bid/108071
https://www.securityfocus.com/bid/108070
Red Hat
https://bugzilla.redhat.com/show_bug.cgi?id=1702545
https://access.redhat.com/security/cve/cve-2019-6467
https://bugzilla.redhat.com/show_bug.cgi?id=1702642
https://access.redhat.com/security/cve/cve-2019-6468
Ubuntu
https://usn.ubuntu.com/3956-1/
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFcwu4bwZxMk2USYEIRArB2AJ9qR0IFD2ZkmfLNbVWYtOb2KKIugwCdHddf
vEvBn73Hxe6i8kG+fQxEk14=
=PXXU
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-19048
Data: 26 aprile 2019
Titolo: Vulnerabilita' in ISC BIND
******************************************************************
:: Descrizione del problema
L'Internet Systems Consortium (ISC) ha rilasciato degli aggiornamenti
che risolvono tre vulnerabilita' presenti nel server DNS BIND.
Maggiori informazioni sono disponibili nella segnalazione ufficiale
alla sezione "Riferimenti".
:: Software interessato
BIND versioni
9.9.0 -> 9.10.8-P1
9.11.0 -> 9.11.6
9.12.0 -> 9.12.4
9.14.0.
BIND 9 Supported Preview Edition versioni
9.9.3-S1 -> 9.11.5-S3
9.11.5-S5
9.13.0 -> 9.13.7
:: Impatto
Denial of Service
:: Soluzioni
Aggiornare BIND alle seguenti versioni
9.11.6-P1
9.12.4-P1
9.14.1
BIND Supported Preview Edition versioni
BIND 9.11.5-S6
BIND 9.11.6-S1
http://www.isc.org/downloads
:: Riferimenti
ISC BIND Security Advisory
https://kb.isc.org/docs/cve-2018-5743
https://kb.isc.org/docs/cve-2019-6467
https://kb.isc.org/docs/cve-2019-6468
BIND 9 Security Vulnerability Matrix
https://kb.isc.org/docs/aa-00913
BIND 9.14.0 is the new stable branch for 2019
https://www.isc.org/blogs/bind-9-14-released/
Release Notes for BIND Version 9.14.1
https://ftp.isc.org/isc/bind9/9.14.1/RELEASE-NOTES-bind-9.14.1.html
SecurityFocus
https://www.securityfocus.com/bid/108071
https://www.securityfocus.com/bid/108070
Red Hat
https://bugzilla.redhat.com/show_bug.cgi?id=1702545
https://access.redhat.com/security/cve/cve-2019-6467
https://bugzilla.redhat.com/show_bug.cgi?id=1702642
https://access.redhat.com/security/cve/cve-2019-6468
Ubuntu
https://usn.ubuntu.com/3956-1/
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFcwu4bwZxMk2USYEIRArB2AJ9qR0IFD2ZkmfLNbVWYtOb2KKIugwCdHddf
vEvBn73Hxe6i8kG+fQxEk14=
=PXXU
-----END PGP SIGNATURE-----