CVE-2015-5722
published 2015-09-05CVE-2015-5722: buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and…
high7.8CVSS 3.1
AVNACLAuNCNINAC
buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x_server | — | — |
| apple | os_x_server | — | — |
| debian | bind9 | < bind9 1:9.9.5.dfsg-12 (bookworm) | bind9 1:9.9.5.dfsg-12 (bookworm) |
| isc | bind | <= 9.9.7 | — |
| isc | bind | <= 9.10.2 | — |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-12 | 1:9.9.5.dfsg-12 |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-12 | 1:9.9.5.dfsg-12 |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-12 | 1:9.9.5.dfsg-12 |
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-12 | 1:9.9.5.dfsg-12 |
CVSS provenance
nvd7.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH