Back to bug 1378380
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Dhiru Kholia | 2016-09-22 10:11:33 UTC | CC | security-response-team | |
| Dhiru Kholia | 2016-09-22 10:11:44 UTC | Blocks | 1378299 | |
| Dhiru Kholia | 2016-09-26 04:57:53 UTC | Depends On | 1379214 | |
| Dhiru Kholia | 2016-09-26 04:58:00 UTC | Depends On | 1379215 | |
| Dhiru Kholia | 2016-09-26 05:14:30 UTC | Depends On | 1379219 | |
| Dhiru Kholia | 2016-09-26 05:14:37 UTC | Depends On | 1379220 | |
| Dhiru Kholia | 2016-09-26 07:58:10 UTC | Depends On | 1379247 | |
| Dhiru Kholia | 2016-09-26 08:11:16 UTC | Depends On | 1379249 | |
| Dhiru Kholia | 2016-09-27 04:20:49 UTC | Doc Text | A denial of service flaw was found in the way BIND constructed a response to a query that met certain criteria. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS request packet. | |
| Dhiru Kholia | 2016-09-27 04:29:35 UTC | Fixed In Version | bind 9.9.9-P3, bind 9.10.4-P3 | |
| Mark J. Cox | 2016-09-27 07:28:32 UTC | CC | mjc | |
| Martin Prpič | 2016-09-27 18:06:00 UTC | Whiteboard | impact=important,public=20160928,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected |
| Martin Prpič | 2016-09-27 18:06:03 UTC | Summary | EMBARGOED CVE-2016-2776 bind: remote denial-of-service attack | CVE-2016-2776 bind: remote denial-of-service attack |
| Martin Prpič | 2016-09-27 18:06:06 UTC | Group | security, qe_staff | |
| Martin Prpič | 2016-09-27 18:07:57 UTC | Depends On | 1379818 | |
| Martin Prpič | 2016-09-27 18:08:10 UTC | Depends On | 1379819 | |
| Martin Prpič | 2016-09-27 18:12:04 UTC | Summary | CVE-2016-2776 bind: remote denial-of-service attack | CVE-2016-2776 bind: malformed request processing leading to crash on assertion failure |
| Martin Prpič | 2016-09-27 18:14:10 UTC | Summary | CVE-2016-2776 bind: malformed request processing leading to crash on assertion failure | CVE-2016-2776 bind: assertion failure in buffer.c while building responses to a specifically constructed request |
| Florian Weimer | 2016-09-27 19:42:58 UTC | CC | fweimer | |
| Yasuhiro Ozone | 2016-09-28 01:06:33 UTC | CC | yozone | |
| Ján Rusnačko | 2016-09-28 06:00:40 UTC | CC | jrusnack | |
| Whiteboard | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected,cwe=CWE-617 | ||
| Martin Lindner | 2016-09-28 06:08:20 UTC | CC | mlindner | |
| Jeremy Harris | 2016-09-28 08:33:05 UTC | CC | jeharris | |
| Muhammad Azhar Shaikh | 2016-09-28 08:39:21 UTC | CC | mdshaikh | |
| Slawomir Czarko | 2016-09-28 08:39:56 UTC | CC | slawomir | |
| Tomas Hoger | 2016-09-28 20:03:24 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-09-28 16:03:24 UTC | |||
| Tomas Hoger | 2016-10-04 07:25:44 UTC | Comment 13 is private | 1 | 0 |
| Adam Mariš | 2016-10-13 15:36:52 UTC | Whiteboard | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected,cwe=CWE-617 | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-6.2.z/bind=affected,rhel-6.4.z/bind=affected,rhel-6.5.z/bind=affected,rhel-6.6.z/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected |
| Adam Mariš | 2016-10-13 15:38:51 UTC | Depends On | 1384591 | |
| Adam Mariš | 2016-10-13 15:38:56 UTC | Depends On | 1384592 | |
| Adam Mariš | 2016-10-13 15:39:03 UTC | Depends On | 1384593 | |
| Adam Mariš | 2016-10-13 15:39:08 UTC | Depends On | 1384594 | |
| Adam Mariš | 2016-10-14 08:28:45 UTC | Whiteboard | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-6.2.z/bind=affected,rhel-6.4.z/bind=affected,rhel-6.5.z/bind=affected,rhel-6.6.z/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-6.2.z/bind=affected,rhel-6.4.z/bind=affected,rhel-6.5.z/bind=affected,rhel-6.6.z/bind=affected,rhel-6.7.z/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected |
| Adam Mariš | 2016-10-14 08:30:02 UTC | Depends On | 1384808 | |
| Martin Lindner | 2016-10-14 08:31:52 UTC | CC | mlindner | |
| Adam Mariš | 2017-03-07 15:07:11 UTC | Depends On | 1429957 | |
| Product Security DevOps Team | 2019-09-29 13:57:05 UTC | Whiteboard | impact=important,public=20160927,reported=20160922,source=upstream,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-617,rhel-4/bind=wontfix,rhel-5/bind=affected,rhel-5/bind97=affected,rhel-6/bind=affected,rhel-6.2.z/bind=affected,rhel-6.4.z/bind=affected,rhel-6.5.z/bind=affected,rhel-6.6.z/bind=affected,rhel-6.7.z/bind=affected,rhel-7/bind=affected,fedora-all/bind=affected,fedora-all/bind99=affected |
Back to bug 1378380