CVE-2015-5722

Опубликовано: 02 сент. 2015

Источник: redhat

CVSS2: 5

EPSS Средний

Описание

buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone.

A denial of service flaw was found in the way BIND parsed certain malformed DNSSEC keys. A remote attacker could use this flaw to send a specially crafted DNS query (for example, a query requiring a response from a zone containing a deliberately malformed key) that would cause named functioning as a validating resolver to crash.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 4	bind	Affected
Red Hat Enterprise Linux 5	bind	Fixed	RHSA-2015:1706	03.09.2015
Red Hat Enterprise Linux 5	bind97	Fixed	RHSA-2015:1707	03.09.2015
Red Hat Enterprise Linux 6	bind	Fixed	RHSA-2015:1705	03.09.2015
Red Hat Enterprise Linux 6.4 Advanced Update Support	bind	Fixed	RHSA-2016:0078	28.01.2016
Red Hat Enterprise Linux 6.5 Advanced Update Support	bind	Fixed	RHSA-2016:0078	28.01.2016
Red Hat Enterprise Linux 6.6 Extended Update Support	bind	Fixed	RHSA-2016:0079	28.01.2016
Red Hat Enterprise Linux 7	bind	Fixed	RHSA-2015:1705	03.09.2015

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-617

https://bugzilla.redhat.com/show_bug.cgi?id=1259087bind: malformed DNSSEC key failed assertion denial of service

EPSS

Процентиль: 98%

0.50782

Средний

5 Medium

CVSS2

Связанные уязвимости

CVE-2015-5722

ubuntu

почти 10 лет назад

CVE-2015-5722

nvd

почти 10 лет назад

CVE-2015-5722

debian

почти 10 лет назад

buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9. ...

SUSE-SU-2015:1496-1

suse-cvrf

почти 10 лет назад

Security update for bind

SUSE-SU-2015:1481-1

suse-cvrf

почти 10 лет назад

Security update for bind

EPSS

Процентиль: 98%

0.50782

Средний

5 Medium

CVSS2