libbind9.so is vulnerable to denial of service. The deny-answer-aliases
feature which is used to protect end users against DNS rebinding attacks is affected by an assertion failure in name.c
, which would allow a remote attacker to crash the process.
CPE | Name | Operator | Version |
---|---|---|---|
libbind9.so | le | 90.0.8 | |
libbind9.so | le | 90.0.8 |
lists.opensuse.org/opensuse-security-announce/2019-06/msg00026.html
lists.opensuse.org/opensuse-security-announce/2019-06/msg00027.html
www.securityfocus.com/bid/105055
www.securitytracker.com/id/1041436
access.redhat.com/errata/RHSA-2018:2570
access.redhat.com/errata/RHSA-2018:2571
kb.isc.org/docs/aa-01639
lists.debian.org/debian-lts-announce/2018/08/msg00033.html
lists.debian.org/debian-lts-announce/2021/11/msg00001.html
security.gentoo.org/glsa/201903-13
security.netapp.com/advisory/ntap-20180926-0003/
support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03927en_us
usn.ubuntu.com/3769-1/
usn.ubuntu.com/3769-2/