CVE-2011-4313 — Reachable Assertion in Bind

9 documents9 sources

Severity

5.0MEDIUMNVD

EPSS

6.9%

top 8.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ISC Bind9 ISC Bind

Timeline

PublishedNov 29

Latest updateMay 14

Description

query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶Debianisc/bind9< 1:9.8.1.dfsg.P1-1+3

▶NVDisc/bind49 versions+48

Patches

Patch: www.isc.org ↗Patch: www.isc.org ↗

🔴Vulnerability Details

GHSA

GHSA-57gh-wgq6-m27j: query↗2022-05-14

▶

OSV

CVE-2011-4313: query↗2011-11-29

▶

CVEList

CVE-2011-4313: query↗2011-11-29

▶

📋Vendor Advisories

BSD

FreeBSD-SA-11:06.bind: Remote packet Denial of Service against named(8) servers↗2011-12-23

▶

Red Hat

bind: Remote denial of service against recursive servers via logging negative cache entry↗2011-11-16

▶

Ubuntu

Bind vulnerability↗2011-11-16

▶

Debian

CVE-2011-4313: bind9 - query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV thr...↗2011

▶

💬Community

Bugzilla

CVE-2011-4313 bind: Remote denial of service against recursive servers via logging negative cache entry↗2011-11-16

▶