{"id":"MGASA-2016-0030","summary":"Updated bind packages fix security vulnerability","details":"In ISC BIND before 9.10.3-P3, a buffer size check used to guard against\noverflow could cause named to exit with an INSIST failure In apl_42.c\n(CVE-2015-8704).\n\nIn ISC BIND before 9.10.3-P3, errors can occur when OPT pseudo-RR data or\nECS options are formatted to text.  In 9.10.3 through 9.10.3-P2, the issue\nmay result in a REQUIRE assertion failure in buffer.c, causing a crash.\nThis can be avoided in named by disabling debug logging (CVE-2015-8705).\n","modified":"2026-04-16T01:48:21.752976002Z","published":"2016-01-20T17:53:26Z","upstream":["CVE-2015-8704","CVE-2015-8705"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2016-0030.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=17541"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01335"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01336"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01346"}],"affected":[{"package":{"name":"bind","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/bind?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.10.3.P3-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0030.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}