[BlueOnyx:18909] Re: CVE-2015-8461
Matt James
matt at rainstorminc.com
Wed Dec 30 08:56:45 -05 2015
Hi Hisao,
OK, got it - thanks! I was a bit confused because I didn’t think that CVE-2015-8000 affected our version either, but then we received an update from RH. That said, I just looked at the 8000 notice and I must have read over it too quickly - it does say that all 9.x branches of BIND are affected before 9.9.8-P2.
Thanks again for the reply!
--
Matt James
> On Dec 30, 2015, at 2:36 AM, Hisao SHIBUYA <shibuya at alpha.or.jp> wrote:
>
> Hi Matt,
>
> The CVE-2015-8461 affects the following version.
> 9.9.8 -> 9.9.8-P1, 9.9.8-S1 -> 9.9.8-S2, 9.10.3 -> 9.10.3-P1
> And, bind of 5107R is 9.8.2.
>
> This CVE doesn’t affect to 5107R.
> So, you don’t need to do anything.
>
> Thanks,
> Hisao
>
>
>> On Dec 30, 2015, at 3:17 AM, Matt James <matt at rainstorminc.com <mailto:matt at rainstorminc.com>> wrote:
>>
>> Hey everyone,
>>
>> I’ve been monitoring the changelog for BIND on my 5107R box looking for updates to fix a few CVE notices. While it looks like we received the RH update for CVE-2015-8000, there appear to be no updates referencing a fix to CVE-2015-8461 <https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8461>.
>>
>> Can anyone tell me if 5107R’s are not susceptible to CVE-2015-8461? Just wondering if I should stop waiting as one might not be needed.
>>
>> Thanks for any help!
>>
>> -Matt
>> _______________________________________________
>> Blueonyx mailing list
>> Blueonyx at mail.blueonyx.it <mailto:Blueonyx at mail.blueonyx.it>
>> http://mail.blueonyx.it/mailman/listinfo/blueonyx
>
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at mail.blueonyx.it
> http://mail.blueonyx.it/mailman/listinfo/blueonyx
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20151230/00d3e8f9/attachment.html>
More information about the Blueonyx
mailing list