CVE-2016-2775

Опубликовано: 18 июл. 2016

Источник: redhat

CVSS3: 5.9

CVSS2: 4.3

EPSS Средний

Описание

ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x before 9.11.0b2, when lwresd or the named lwres option is enabled, allows remote attackers to cause a denial of service (daemon crash) via a long request that uses the lightweight resolver protocol.

It was found that the lightweight resolver protocol implementation in BIND could enter an infinite recursion and crash when asked to resolve a query name which, when combined with a search list entry, exceeds the maximum allowable length. A remote attacker could use this flaw to crash lwresd or named when using the "lwres" statement in named.conf.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	bind	Will not fix
Red Hat Enterprise Linux 5	bind97	Will not fix
Red Hat Enterprise Linux 6	bind	Fixed	RHBA-2017:0651	21.03.2017
Red Hat Enterprise Linux 7	bind	Fixed	RHBA-2017:1767	01.08.2017
Red Hat Enterprise Linux 7.2 Extended Update Support	bind	Fixed	RHSA-2017:2533	24.08.2017
Red Hat Enterprise Linux 7.3 Extended Update Support	bind	Fixed	RHSA-2017:2533	24.08.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-20

https://bugzilla.redhat.com/show_bug.cgi?id=1357803bind: Too long query name causes segmentation fault in lwresd

EPSS

Процентиль: 97%

0.43295

Средний

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2016-2775

CVSS3: 5.9

ubuntu

больше 9 лет назад

CVE-2016-2775

CVSS3: 5.9

nvd

больше 9 лет назад

CVE-2016-2775

CVSS3: 5.9

debian

больше 9 лет назад

ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x befo ...

GHSA-c3hx-3ppq-fr4p

CVSS3: 5.9

github

больше 3 лет назад

openSUSE-SU-2017:1063-1

suse-cvrf

почти 9 лет назад

Security update for bind

EPSS

Процентиль: 97%

0.43295

Средний

5.9 Medium

CVSS3

4.3 Medium

CVSS2