CVE-2020-8618

Priority
Description
An attacker who is permitted to send zone data to a server via zone
transfer can exploit this to intentionally trigger the assertion failure
with a specially constructed zone, denying service to clients.
Assigned-to
mdeslaur
Notes
amurrayAffects version 9.16.0 through 9.16.3
Package
Source: bind9 (LP Ubuntu Debian)
Upstream:released (9.16.4)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (code not present)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (code not present)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (code not present)
Ubuntu 19.10 (Eoan Ermine):not-affected (code not present)
Ubuntu 20.04 LTS (Focal Fossa):released (1:9.16.1-0ubuntu2.2)
Ubuntu 20.10 (Groovy Gorilla):released (1:9.16.3-1ubuntu2)
More Information

Updated: 2020-07-01 14:28:42 UTC (commit f2a40e02a46fe0d2c9d7b8b97047199f18432424)