Описание
ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record.
A denial of service flaw was found in the way BIND handled packets with malformed options. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS packet.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 4 | bind | Will not fix | ||
| Red Hat Enterprise Linux 7 | bind | Not affected | ||
| Red Hat Enterprise Linux 5 | bind | Fixed | RHSA-2016:2093 | 20.10.2016 |
| Red Hat Enterprise Linux 5 | bind97 | Fixed | RHSA-2016:2094 | 20.10.2016 |
| Red Hat Enterprise Linux 6 | bind | Fixed | RHSA-2016:2093 | 20.10.2016 |
| Red Hat Enterprise Linux 6.2 Advanced Update Support | bind | Fixed | RHSA-2016:2099 | 25.10.2016 |
| Red Hat Enterprise Linux 6.4 Advanced Update Support | bind | Fixed | RHSA-2016:2099 | 25.10.2016 |
| Red Hat Enterprise Linux 6.5 Advanced Update Support | bind | Fixed | RHSA-2016:2099 | 25.10.2016 |
| Red Hat Enterprise Linux 6.5 Telco Extended Update Support | bind | Fixed | RHSA-2016:2099 | 25.10.2016 |
| Red Hat Enterprise Linux 6.6 Extended Update Support | bind | Fixed | RHSA-2016:2099 | 25.10.2016 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
5 Medium
CVSS2
Связанные уязвимости
ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record.
ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record.
ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remo ...
ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record.
EPSS
7.5 High
CVSS3
5 Medium
CVSS2