CVE-2020-8616, CVE-2020-8617: BIND vulnerabilities
Website hosted in Plesk shows Web Server's Default Page: Domain is resolved to the wrong IP address from the same server.
[FIXED BUG] TXT record for _acme-challenge.example.com is not added automatically on Windows when Bind is used as DNS server
Plesk Email Security: DNS caching is disabled! Please use a local DNS server to improve SPAM recognition via blocklists (for instance systemd-resolved)
Plesk domain is not resolved from some countries: DNS_PROBE_FINISHED_NXDOMAIN
[BUG] Old AWstats txt data files are not removed with web statistics cleanup
[BUG] Plesk allows to create records with empty values in DNS template
How to enable DKIM for newly created domains automatically in Plesk on Linux?
[BUG] The DigitalOcean DNS extension loads slowly
[FIXED BUG] Plesk CLI tool (plesk bin server_dns) creates NS records without A record

See more

CVE-2020-8616, CVE-2020-8617: BIND vulnerabilities

Ekaterina Babenko

Updated June 15, 2020 10:13

kb: technical

Situation

Following vulnerabilities have been discovered in BIND:

Due to these vulnerabilities a malicious actor can potentially degrade the performance of BIND server and cause service denial.

Affected OSes

All operating systems supported by Plesk Onyx and Plesk Obsidian are affected.

Call to Action

Update BIND to the latest version:

Debian-based operating systems

Login server via SSH;
Run the following command to update BIND9 package:

# apt-get update && apt-get upgrade bind9
Restart DNS service:

# service bind9 restart

Red Hat-based operating systems

Login server via SSH;
Run the following command to update BIND9 package:

# yum update bind
Restart DNS service:

# service named-chroot restart

Windows-based operating systems

There is no fix available so far. Subscribe to the article by clicking Follow to be notified about fix.

Comments

0 comments

Please sign in to leave a comment.

Have more questions? Submit a request