Article Details
Scrape Timestamp (UTC): 2023-09-23 01:01:42.138
Source: https://thehackernews.com/2023/09/high-severity-flaws-uncovered-in.html
Original Article Text
Click to Toggle View
High-Severity Flaws Uncovered in Atlassian Products and ISC BIND Server. Atlassian and the Internet Systems Consortium (ISC) have disclosed several security flaws impacting their products that could be exploited to achieve denial-of-service (DoS) and remote code execution. The Australian software services provider said that the four high-severity flaws were fixed in new versions shipped last month. This includes - The flaws have been addressed in the following versions - Two High-Severity Flaws in BIND Fixed In a related development, ISC has released fixes for two high-severity bugs affecting the Berkeley Internet Name Domain (BIND) 9 Domain Name System (DNS) software suite that could pave the way for a DoS condition - The latest patches arrive three months after ISC rolled out fixes for three other flaws in the software (CVE-2023-2828, CVE-2023-2829, and CVE-2023-2911, CVSS scores: 7.5) that could result in a DoS condition.
Daily Brief Summary
Several high-severity security flaws have been discovered in products by Atlassian and the Internet Systems Consortium (ISC), potentially allowing for denial-of-service (DoS) attacks and remote code execution.
Atlassian, an Australian software services provider, confirmed the existence of four such vulnerabilities but stated that they have been addressed in the new versions of their software released last month.
Separately, ISC has disclosed and issued fixes for two major vulnerabilities in their Berkeley Internet Name Domain (BIND) 9 Domain Name System (DNS) software suite. These bugs could have permitted a DoS condition.
These patches from ISC come three months after they remedied three other flaws in the BIND software, also capable of creating a DoS situation.
Both companies' quick response to the discoveries of these flaws and the speedy roll-out of their updates mitigated any potential impacts on their clients. They show the importance of keeping software and systems updated to mitigate security risks.