Amazon Linux AMI : bind (ALAS-2018-954)
High Nessus Plugin ID 106931
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionImproper fetch cleanup sequencing in the resolver can cause named to crash :
A use-after-free flaw leading to denial of service was found in the way BIND internally handled cleanup operations on upstream recursion fetch contexts. A remote attacker could potentially use this flaw to make named, acting as a DNSSEC validating resolver, exit unexpectedly with an assertion failure via a specially crafted DNS request.(CVE-2017-3145)
SolutionRun 'yum update bind' to update your system.