CVE-2014-0591

Priority
Description
The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6,
9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before
9.6-ESV-R10-P2, allows remote attackers to cause a denial of service
(INSIST assertion failure and daemon exit) via a crafted DNS query to an
authoritative nameserver that uses the NSEC3 signing feature.
Assigned-to
mdeslaur
Package
Source: bind9 (LP Ubuntu Debian)
Upstream:released (9.9.4-P2)
Ubuntu 14.04 LTS (Trusty Tahr):released (9.9.3.dfsg.P2-4ubuntu3)
More Information

Updated: 2019-03-19 12:14:03 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)