Amazon Linux: Security Advisory (ALAS-2015-566)

Severity

High

Family

Amazon Linux Local Security Checks

CVSSv2 Base

7.8

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Solution Type

Vendor Patch

Created

6 years ago

Modified

5 months ago

Share on Facebook
Share on LinkedIn
Share on Twitter

The remote host is missing an update announced via the referenced Security Advisory.

Insight

A flaw was found in the way BIND performed DNSSEC validation. An attacker able to make BIND (functioning as a DNS resolver with DNSSEC validation enabled) resolve a name in an attacker-controlled domain could cause named to exit unexpectedly with an assertion failure.

Solution

Run yum update bind to update your system.

Common Vulnerabilities and Exposures (CVE)

CVE-2015-4620

References

https://alas.aws.amazon.com/ALAS-2015-566.html

Free Vulnerability Scanner

Mageni can help you to scan, assess and manage your vulnerabilities.

Processing. Please wait...

We care about the protection of your data. Read our Privacy Policy.

Amazon Linux: Security Advisory (ALAS-2015-566)

Severity

Family

CVSSv2 Base

CVSSv2 Vector

Solution Type

Created

Modified

Share

Insight

Solution

Common Vulnerabilities and Exposures (CVE)

References

Free Vulnerability Scanner

Product

Customer Service

Company

Compliance

Amazon Linux: Security Advisory (ALAS-2015-566)

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Solution

Solution

Common Vulnerabilities and Exposures (CVE)

References

Free Vulnerability Scanner