CVE-2014-0591

Priority
Medium
Description
The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6,
9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before
9.6-ESV-R10-P2, allows remote attackers to cause a denial of service
(INSIST assertion failure and daemon exit) via a crafted DNS query to an
authoritative nameserver that uses the NSEC3 signing feature.
References
Assigned-to
mdeslaur
Package
Source: bind9 (LP Ubuntu Debian)
Upstream:released (9.9.4-P2)
Ubuntu 10.04 LTS (Lucid Lynx):released (1:9.7.0.dfsg.P1-1ubuntu0.11)
Ubuntu 12.04 LTS (Precise Pangolin):released (1:9.8.1.dfsg.P1-4ubuntu0.8)
Ubuntu 12.10 (Quantal Quetzal):released (1:9.8.1.dfsg.P1-4.2ubuntu3.4)
Ubuntu 13.04 (Raring Ringtail):released (1:9.9.2.dfsg.P1-2ubuntu2.2)
Ubuntu 13.10 (Saucy Salamander):released (1:9.9.3.dfsg.P2-4ubuntu1.1)
Ubuntu 14.04 LTS (Trusty Tahr):released (9.9.3.dfsg.P2-4ubuntu3)
More Information

Valid XHTML 1.0 Strict

Updated: 2014-01-15 18:14:43 UTC (commit 7645)