CVE-2014-0591
published 2014-01-14CVE-2014-0591: The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before…
low2.6CVSS 3.1
AVNACHAuNCNINAP
The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via a crafted DNS query to an authoritative nameserver that uses the NSEC3 signing feature.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | bind9 | < bind9 1:9.9.5.dfsg-2 (bookworm) | bind9 1:9.9.5.dfsg-2 (bookworm) |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind | — | — |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-2 | 1:9.9.5.dfsg-2 |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-2 | 1:9.9.5.dfsg-2 |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-2 | 1:9.9.5.dfsg-2 |
CVSS provenance
nvd2.6LOWAV:N/AC:H/Au:N/C:N/I:N/A:P
osv2.6LOW