Описание
named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c.
A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 4 | bind | Will not fix | ||
| Red Hat Enterprise Linux 5 | bind | Fixed | RHSA-2016:2141 | 02.11.2016 |
| Red Hat Enterprise Linux 5 | bind97 | Fixed | RHSA-2016:2142 | 02.11.2016 |
| Red Hat Enterprise Linux 6 | bind | Fixed | RHSA-2016:2141 | 02.11.2016 |
| Red Hat Enterprise Linux 6.2 Advanced Update Support | bind | Fixed | RHSA-2016:2871 | 06.12.2016 |
| Red Hat Enterprise Linux 6.4 Advanced Update Support | bind | Fixed | RHSA-2016:2871 | 06.12.2016 |
| Red Hat Enterprise Linux 6.5 Advanced Update Support | bind | Fixed | RHSA-2016:2871 | 06.12.2016 |
| Red Hat Enterprise Linux 6.5 Telco Extended Update Support | bind | Fixed | RHSA-2016:2871 | 06.12.2016 |
| Red Hat Enterprise Linux 6.6 Advanced Update Support | bind | Fixed | RHSA-2016:2871 | 06.12.2016 |
| Red Hat Enterprise Linux 6.6 Telco Extended Update Support | bind | Fixed | RHSA-2016:2871 | 06.12.2016 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
5 Medium
CVSS2
Связанные уязвимости
named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c.
named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c.
named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9. ...
EPSS
7.5 High
CVSS3
5 Medium
CVSS2