bind-9.10.3P4-21.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10467 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z bind-9.10.3P4-21.1 on GA media These are all security issues fixed in the bind-9.10.3P4-21.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10467 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10467 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2009-0696/ SUSE CVE CVE-2009-0696 page https://www.suse.com/security/cve/CVE-2009-4022/ SUSE CVE CVE-2009-4022 page https://www.suse.com/security/cve/CVE-2010-3613/ SUSE CVE CVE-2010-3613 page https://www.suse.com/security/cve/CVE-2010-3614/ SUSE CVE CVE-2010-3614 page https://www.suse.com/security/cve/CVE-2010-3615/ SUSE CVE CVE-2010-3615 page https://www.suse.com/security/cve/CVE-2011-0414/ SUSE CVE CVE-2011-0414 page https://www.suse.com/security/cve/CVE-2011-1907/ SUSE CVE CVE-2011-1907 page https://www.suse.com/security/cve/CVE-2011-1910/ SUSE CVE CVE-2011-1910 page https://www.suse.com/security/cve/CVE-2011-2464/ SUSE CVE CVE-2011-2464 page https://www.suse.com/security/cve/CVE-2011-4313/ SUSE CVE CVE-2011-4313 page https://www.suse.com/security/cve/CVE-2012-1667/ SUSE CVE CVE-2012-1667 page https://www.suse.com/security/cve/CVE-2012-3817/ SUSE CVE CVE-2012-3817 page https://www.suse.com/security/cve/CVE-2012-3868/ SUSE CVE CVE-2012-3868 page https://www.suse.com/security/cve/CVE-2012-4244/ SUSE CVE CVE-2012-4244 page https://www.suse.com/security/cve/CVE-2012-5166/ SUSE CVE CVE-2012-5166 page https://www.suse.com/security/cve/CVE-2012-5688/ SUSE CVE CVE-2012-5688 page https://www.suse.com/security/cve/CVE-2012-5689/ SUSE CVE CVE-2012-5689 page https://www.suse.com/security/cve/CVE-2013-2266/ SUSE CVE CVE-2013-2266 page https://www.suse.com/security/cve/CVE-2013-4854/ SUSE CVE CVE-2013-4854 page https://www.suse.com/security/cve/CVE-2014-0591/ SUSE CVE CVE-2014-0591 page https://www.suse.com/security/cve/CVE-2014-3214/ SUSE CVE CVE-2014-3214 page https://www.suse.com/security/cve/CVE-2014-3859/ SUSE CVE CVE-2014-3859 page https://www.suse.com/security/cve/CVE-2014-8500/ SUSE CVE CVE-2014-8500 page https://www.suse.com/security/cve/CVE-2014-8680/ SUSE CVE CVE-2014-8680 page https://www.suse.com/security/cve/CVE-2015-1349/ SUSE CVE CVE-2015-1349 page https://www.suse.com/security/cve/CVE-2015-4620/ SUSE CVE CVE-2015-4620 page https://www.suse.com/security/cve/CVE-2015-5477/ SUSE CVE CVE-2015-5477 page https://www.suse.com/security/cve/CVE-2015-5722/ SUSE CVE CVE-2015-5722 page https://www.suse.com/security/cve/CVE-2015-5986/ SUSE CVE CVE-2015-5986 page https://www.suse.com/security/cve/CVE-2015-8000/ SUSE CVE CVE-2015-8000 page https://www.suse.com/security/cve/CVE-2015-8704/ SUSE CVE CVE-2015-8704 page https://www.suse.com/security/cve/CVE-2015-8705/ SUSE CVE CVE-2015-8705 page https://www.suse.com/security/cve/CVE-2016-1285/ SUSE CVE CVE-2016-1285 page https://www.suse.com/security/cve/CVE-2016-1286/ SUSE CVE CVE-2016-1286 page https://www.suse.com/security/cve/CVE-2016-2088/ SUSE CVE CVE-2016-2088 page https://www.suse.com/security/cve/CVE-2016-2776/ SUSE CVE CVE-2016-2776 page https://www.suse.com/security/cve/CVE-2016-8864/ SUSE CVE CVE-2016-8864 page openSUSE Tumbleweed bind-9.10.3P4-21.1 bind-chrootenv-9.10.3P4-21.1 bind-devel-9.10.3P4-21.1 bind-devel-32bit-9.10.3P4-21.1 bind-doc-9.10.3P4-21.1 bind-lwresd-9.10.3P4-21.1 bind-utils-9.10.3P4-21.1 idnkit-1.0-21.1 idnkit-devel-1.0-21.1 idnkit-devel-32bit-1.0-21.1 libbind9-140-9.10.3P4-21.1 libbind9-140-32bit-9.10.3P4-21.1 libdns162-9.10.3P4-21.1 libdns162-32bit-9.10.3P4-21.1 libidnkit1-1.0-21.1 libidnkit1-32bit-1.0-21.1 libidnkitlite1-1.0-21.1 libidnkitlite1-32bit-1.0-21.1 libidnkitres1-1.0-21.1 libidnkitres1-32bit-1.0-21.1 libirs-devel-9.10.3P4-21.1 libirs141-9.10.3P4-21.1 libirs141-32bit-9.10.3P4-21.1 libisc160-9.10.3P4-21.1 libisc160-32bit-9.10.3P4-21.1 libisccc140-9.10.3P4-21.1 libisccc140-32bit-9.10.3P4-21.1 libisccfg140-9.10.3P4-21.1 libisccfg140-32bit-9.10.3P4-21.1 liblwres141-9.10.3P4-21.1 liblwres141-32bit-9.10.3P4-21.1 bind-9.10.3P4-21.1 as a component of openSUSE Tumbleweed bind-chrootenv-9.10.3P4-21.1 as a component of openSUSE Tumbleweed bind-devel-9.10.3P4-21.1 as a component of openSUSE Tumbleweed bind-devel-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed bind-doc-9.10.3P4-21.1 as a component of openSUSE Tumbleweed bind-lwresd-9.10.3P4-21.1 as a component of openSUSE Tumbleweed bind-utils-9.10.3P4-21.1 as a component of openSUSE Tumbleweed idnkit-1.0-21.1 as a component of openSUSE Tumbleweed idnkit-devel-1.0-21.1 as a component of openSUSE Tumbleweed idnkit-devel-32bit-1.0-21.1 as a component of openSUSE Tumbleweed libbind9-140-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libbind9-140-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libdns162-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libdns162-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libidnkit1-1.0-21.1 as a component of openSUSE Tumbleweed libidnkit1-32bit-1.0-21.1 as a component of openSUSE Tumbleweed libidnkitlite1-1.0-21.1 as a component of openSUSE Tumbleweed libidnkitlite1-32bit-1.0-21.1 as a component of openSUSE Tumbleweed libidnkitres1-1.0-21.1 as a component of openSUSE Tumbleweed libidnkitres1-32bit-1.0-21.1 as a component of openSUSE Tumbleweed libirs-devel-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libirs141-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libirs141-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libisc160-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libisc160-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libisccc140-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libisccc140-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libisccfg140-9.10.3P4-21.1 as a component of openSUSE Tumbleweed libisccfg140-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed liblwres141-9.10.3P4-21.1 as a component of openSUSE Tumbleweed liblwres141-32bit-9.10.3P4-21.1 as a component of openSUSE Tumbleweed The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message, as exploited in the wild in July 2009. CVE-2009-0696 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0696.html CVE-2009-0696 https://bugzilla.suse.com/526185 SUSE Bug 526185 Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438. CVE-2009-4022 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4022.html CVE-2009-4022 https://bugzilla.suse.com/558260 SUSE Bug 558260 https://bugzilla.suse.com/570912 SUSE Bug 570912 https://bugzilla.suse.com/644911 SUSE Bug 644911 named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data. CVE-2010-3613 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3613.html CVE-2010-3613 https://bugzilla.suse.com/657129 SUSE Bug 657129 named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3 does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which might allow remote attackers to cause a denial of service (DNSSEC validation error) by triggering a rollover. CVE-2010-3614 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3614.html CVE-2010-3614 https://bugzilla.suse.com/657102 SUSE Bug 657102 named in ISC BIND 9.7.2-P2 does not check all intended locations for allow-query ACLs, which might allow remote attackers to make successful requests for private DNS records via the standard DNS query mechanism. CVE-2010-3615 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3615.html CVE-2010-3615 https://bugzilla.suse.com/657120 SUSE Bug 657120 ISC BIND 9.7.1 through 9.7.2-P3, when configured as an authoritative server, allows remote attackers to cause a denial of service (deadlock and daemon hang) by sending a query at the time of (1) an IXFR transfer or (2) a DDNS update. CVE-2011-0414 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0414.html CVE-2011-0414 https://bugzilla.suse.com/674431 SUSE Bug 674431 ISC BIND 9.8.x before 9.8.0-P1, when Response Policy Zones (RPZ) RRset replacement is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an RRSIG query. CVE-2011-1907 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1907.html CVE-2011-1907 https://bugzilla.suse.com/692210 SUSE Bug 692210 Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service (assertion failure and daemon exit) via a negative response containing large RRSIG RRsets. CVE-2011-1910 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1910.html CVE-2011-1910 https://bugzilla.suse.com/696585 SUSE Bug 696585 https://bugzilla.suse.com/698286 SUSE Bug 698286 Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request. CVE-2011-2464 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2464.html CVE-2011-2464 https://bugzilla.suse.com/703907 SUSE Bug 703907 query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver. CVE-2011-4313 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4313.html CVE-2011-4313 https://bugzilla.suse.com/730995 SUSE Bug 730995 https://bugzilla.suse.com/738156 SUSE Bug 738156 ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service (daemon crash or data corruption) or obtain sensitive information from process memory via a crafted record. CVE-2012-1667 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1667.html CVE-2012-1667 https://bugzilla.suse.com/765315 SUSE Bug 765315 https://bugzilla.suse.com/792926 SUSE Bug 792926 ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) by sending many queries. CVE-2012-3817 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-3817.html CVE-2012-3817 https://bugzilla.suse.com/772945 SUSE Bug 772945 https://bugzilla.suse.com/792926 SUSE Bug 792926 https://bugzilla.suse.com/986950 SUSE Bug 986950 Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of TCP queries. CVE-2012-3868 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-3868.html CVE-2012-3868 https://bugzilla.suse.com/772946 SUSE Bug 772946 https://bugzilla.suse.com/792926 SUSE Bug 792926 ISC BIND 9.x before 9.7.6-P3, 9.8.x before 9.8.3-P3, 9.9.x before 9.9.1-P3, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P3 allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for a long resource record. CVE-2012-4244 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-4244.html CVE-2012-4244 https://bugzilla.suse.com/780157 SUSE Bug 780157 https://bugzilla.suse.com/792926 SUSE Bug 792926 ISC BIND 9.x before 9.7.6-P4, 9.8.x before 9.8.3-P4, 9.9.x before 9.9.1-P4, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P4 allows remote attackers to cause a denial of service (named daemon hang) via unspecified combinations of resource records. CVE-2012-5166 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-5166.html CVE-2012-5166 https://bugzilla.suse.com/784602 SUSE Bug 784602 https://bugzilla.suse.com/792926 SUSE Bug 792926 ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. CVE-2012-5688 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-5688.html CVE-2012-5688 https://bugzilla.suse.com/792926 SUSE Bug 792926 ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for an AAAA record. CVE-2012-5689 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-5689.html CVE-2012-5689 https://bugzilla.suse.com/800822 SUSE Bug 800822 libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service (memory consumption) via a crafted regular expression, as demonstrated by a memory-exhaustion attack against a machine running a named process. CVE-2013-2266 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-2266.html CVE-2013-2266 https://bugzilla.suse.com/811876 SUSE Bug 811876 https://bugzilla.suse.com/811934 SUSE Bug 811934 The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013. CVE-2013-4854 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-4854.html CVE-2013-4854 https://bugzilla.suse.com/831899 SUSE Bug 831899 The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via a crafted DNS query to an authoritative nameserver that uses the NSEC3 signing feature. CVE-2014-0591 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0591.html CVE-2014-0591 https://bugzilla.suse.com/858639 SUSE Bug 858639 The prefetch implementation in named in ISC BIND 9.10.0, when a recursive nameserver is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a DNS query that triggers a response with unspecified attributes. CVE-2014-3214 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3214.html CVE-2014-3214 libdns in ISC BIND 9.10.0 before P2 does not properly handle EDNS options, which allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted packet, as demonstrated by an attack against named, dig, or delv. CVE-2014-3859 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-3859.html CVE-2014-3859 ISC BIND 9.0.x through 9.8.x, 9.9.0 through 9.9.6, and 9.10.0 through 9.10.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory consumption and named crash) via a large or infinite number of referrals. CVE-2014-8500 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8500.html CVE-2014-8500 https://bugzilla.suse.com/908994 SUSE Bug 908994 https://bugzilla.suse.com/986950 SUSE Bug 986950 The GeoIP functionality in ISC BIND 9.10.0 through 9.10.1 allows remote attackers to cause a denial of service (assertion failure and named exit) via vectors related to (1) the lack of GeoIP databases for both IPv4 and IPv6, or (2) IPv6 support with certain options. CVE-2014-8680 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8680.html CVE-2014-8680 https://bugzilla.suse.com/908995 SUSE Bug 908995 named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use. CVE-2015-1349 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1349.html CVE-2015-1349 https://bugzilla.suse.com/918330 SUSE Bug 918330 name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) by constructing crafted zone data and then making a query for a name in that zone. CVE-2015-4620 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-4620.html CVE-2015-4620 https://bugzilla.suse.com/936476 SUSE Bug 936476 named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via TKEY queries. CVE-2015-5477 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5477.html CVE-2015-5477 https://bugzilla.suse.com/1000362 SUSE Bug 1000362 https://bugzilla.suse.com/939567 SUSE Bug 939567 https://bugzilla.suse.com/980168 SUSE Bug 980168 buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone. CVE-2015-5722 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5722.html CVE-2015-5722 https://bugzilla.suse.com/944066 SUSE Bug 944066 https://bugzilla.suse.com/944107 SUSE Bug 944107 https://bugzilla.suse.com/954983 SUSE Bug 954983 https://bugzilla.suse.com/958861 SUSE Bug 958861 openpgpkey_61.c in named in ISC BIND 9.9.7 before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted DNS response. CVE-2015-5986 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5986.html CVE-2015-5986 https://bugzilla.suse.com/944066 SUSE Bug 944066 https://bugzilla.suse.com/944107 SUSE Bug 944107 db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute. CVE-2015-8000 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8000.html CVE-2015-8000 https://bugzilla.suse.com/944066 SUSE Bug 944066 https://bugzilla.suse.com/958861 SUSE Bug 958861 apl_42.c in ISC BIND 9.x before 9.9.8-P3, 9.9.x, and 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed Address Prefix List (APL) record. CVE-2015-8704 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8704.html CVE-2015-8704 https://bugzilla.suse.com/962189 SUSE Bug 962189 https://bugzilla.suse.com/962190 SUSE Bug 962190 https://bugzilla.suse.com/986950 SUSE Bug 986950 buffer.c in named in ISC BIND 9.10.x before 9.10.3-P3, when debug logging is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit, or daemon crash) or possibly have unspecified other impact via (1) OPT data or (2) an ECS option. CVE-2015-8705 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8705.html CVE-2015-8705 https://bugzilla.suse.com/962189 SUSE Bug 962189 https://bugzilla.suse.com/962190 SUSE Bug 962190 named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 does not properly handle DNAME records when parsing fetch reply messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed packet to the rndc (aka control channel) interface, related to alist.c and sexpr.c. CVE-2016-1285 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1285.html CVE-2016-1285 https://bugzilla.suse.com/970072 SUSE Bug 970072 https://bugzilla.suse.com/981200 SUSE Bug 981200 named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted signature record for a DNAME record, related to db.c and resolver.c. CVE-2016-1286 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1286.html CVE-2016-1286 https://bugzilla.suse.com/970073 SUSE Bug 970073 https://bugzilla.suse.com/981200 SUSE Bug 981200 resolver.c in named in ISC BIND 9.10.x before 9.10.3-P4, when DNS cookies are enabled, allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed packet with more than one cookie option. CVE-2016-2088 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2088.html CVE-2016-2088 https://bugzilla.suse.com/970074 SUSE Bug 970074 buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. CVE-2016-2776 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2776.html CVE-2016-2776 https://bugzilla.suse.com/1000362 SUSE Bug 1000362 https://bugzilla.suse.com/1001595 SUSE Bug 1001595 https://bugzilla.suse.com/1001597 SUSE Bug 1001597 https://bugzilla.suse.com/1007829 SUSE Bug 1007829 named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c. CVE-2016-8864 openSUSE Tumbleweed:bind-9.10.3P4-21.1 openSUSE Tumbleweed:bind-chrootenv-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:bind-devel-9.10.3P4-21.1 openSUSE Tumbleweed:bind-doc-9.10.3P4-21.1 openSUSE Tumbleweed:bind-lwresd-9.10.3P4-21.1 openSUSE Tumbleweed:bind-utils-9.10.3P4-21.1 openSUSE Tumbleweed:idnkit-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-1.0-21.1 openSUSE Tumbleweed:idnkit-devel-32bit-1.0-21.1 openSUSE Tumbleweed:libbind9-140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libbind9-140-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libdns162-9.10.3P4-21.1 openSUSE Tumbleweed:libidnkit1-1.0-21.1 openSUSE Tumbleweed:libidnkit1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-1.0-21.1 openSUSE Tumbleweed:libidnkitlite1-32bit-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-1.0-21.1 openSUSE Tumbleweed:libidnkitres1-32bit-1.0-21.1 openSUSE Tumbleweed:libirs-devel-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libirs141-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisc160-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccc140-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:libisccfg140-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-32bit-9.10.3P4-21.1 openSUSE Tumbleweed:liblwres141-9.10.3P4-21.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8864.html CVE-2016-8864 https://bugzilla.suse.com/1007829 SUSE Bug 1007829 https://bugzilla.suse.com/1018700 SUSE Bug 1018700 https://bugzilla.suse.com/1018701 SUSE Bug 1018701 https://bugzilla.suse.com/1018702 SUSE Bug 1018702 https://bugzilla.suse.com/1020526 SUSE Bug 1020526 https://bugzilla.suse.com/1024130 SUSE Bug 1024130 https://bugzilla.suse.com/1033466 SUSE Bug 1033466