CVE-2014-0591 Buffer Errors vulnerability in Bind

Posted by Ritwik Ghoshal on Oracle Blogs See other posts from Oracle Blogs or by Ritwik Ghoshal
Published on Tue, 10 Jun 2014 19:20:41 +0000 Indexed on 2014/06/11 3:37 UTC
Read the original article Hit count: 373

Filed under:

/Alerts

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2014-0591 Buffer Errors vulnerability

2.6

Bind

Solaris 10	Patches planned but not yet available
Solaris 11.1	11.1.19.6.0
Solaris 8	Patches planned but not yet available
Solaris 9	Patches planned but not yet available

Please Note: The patches mentioned above will upgrade Bind to 9.6-ESV-R11. The fix for CVE-2014-0591 was initially distributed via 9.6-ESV-R10-P2 as described at our previous blog post.

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

© Oracle Blogs or respective owner

CVE-2014-0591 Buffer Errors vulnerability in Bind

Posted by Ritwik Ghoshal on Oracle Blogs See other posts from Oracle Blogs or by Ritwik Ghoshal
Published on Tue, 10 Jun 2014 18:40:19 +0000 Indexed on 2014/06/11 3:37 UTC
Read the original article Hit count: 373

Filed under:

/Alerts

CVE Description

CVSSv2 Base Score

Component

Product and Resolution

CVE-2014-0591 Buffer Errors vulnerability

2.6

Bind

Solaris 10	SPARC: 119783-28 X86: 119784-28
Solaris 11.1	11.1.16.5.0
Solaris 9	SPARC: 112837-30 X86: 114265-29

Please Note: The patches mentioned above will upgrade Bind to 9.6-ESV-R10-P2.

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

© Oracle Blogs or respective owner

Related posts about /Alerts

Alerts for when Login Failures Strike

as seen on SQL Team - Search for 'SQL Team'
When repeated SQL Server login failures occur, a DBA should investigate. It could just be someone repeatedly typing in the wrong password. Worst case is a virus attack flooding your network with connection requests. Receiving an e-mail while login failures are occurring allows DBAs to investigate… >>> More
Nagios Statistics for Notifications/Alerts

as seen on Server Fault - Search for 'Server Fault'
We have had our Nagios installation up for a year, and we are now required to give some statistics on how much it has worked and what it has done in the environment. As such, I was wondering if anyone knows if Nagios also holds data records on how many alerts and notifications it sends out? I am… >>> More
CVE-2006-3744 Multiple Integer overflow vulnerabilities in ImageMagick

as seen on Oracle Blogs - Search for 'Oracle Blogs'
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution CVE-2006-3744 Numeric Errors vulnerability 5.1 ImageMagick Solaris 10 SPARC: 136882-03 X86: 136883-03 This notification describes vulnerabilities fixed in third-party components that are included in Sun's product distribution.Information… >>> More
CVE-2014-3520 Privilege Escalation vulnerability in OpenStack Keystone

as seen on Oracle Blogs - Search for 'Oracle Blogs'
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution CVE-2014-3520 Privilege Escalation vulnerability 3.5 OpenStack Identity (Keystone) Solaris 11.2 11.2.1.5.0 This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product… >>> More
CVE-2011-2896 Buffer overflow vulnerability in GIMP

as seen on Oracle Blogs - Search for 'Oracle Blogs'
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution CVE-2011-2896 Buffer Overflow vulnerability 5.1 GIMP Image Editor Solaris 10 SPARC: 147988-01 X86: 147989-01 Solaris 11 Express snv_151a + 7079990 This notification describes vulnerabilities fixed in third-party components that… >>> More