CVE-2022-38177

CWE-401Memory LeakCWE-34710 documents8 sources
Severity
7.5HIGH
EPSS
1.6%
top 18.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
ISC BindISC Bind9Debian Debian Linux+1 more
Timeline
PublishedSep 21
Latest updateSep 22

Description

By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

Debianbind9< 1:9.16.33-1~deb11u1+3
NVDisc/bind9.8.49.16.32+23
CVEListV5isc/bind9Open Source Branches 9.8 through 9.16 9.8.4 through versions before 9.16.33, Supported Preview Branch 9.16-S 9.16.8-S1 through versions before 9.16.33-S1, Supported Preview Branches 9.9-S through 9.11-S 9.9.4-S1 through versions up to and including 9.11.37-S1+2

Also affects: Debian Linux 10.0, 11.0, Fedora 35, 36, 37

Patches

Patch: www.openwall.comPatch: kb.isc.orgPatch: www.openwall.com

🔴Vulnerability Details

4
GHSA
GHSA-5vfq-rv44-c5ff: By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak2022-09-22
CVEList
Memory leak in ECDSA DNSSEC verification code2022-09-21
OSV
CVE-2022-38177: By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak2022-09-21
OSV
bind9 vulnerabilities2022-09-21

📋Vendor Advisories

5
Ubuntu
Bind vulnerabilities2022-09-21
Ubuntu
Bind vulnerabilities2022-09-21
Red Hat
bind: memory leak in ECDSA DNSSEC verification code2022-09-21
Microsoft
Memory leak in ECDSA DNSSEC verification code2022-09-13
Debian
CVE-2022-38177: bind9 - By spoofing the target resolver with responses that have a malformed ECDSA signa...2022
CVE-2022-38177 (HIGH CVSS 7.5) | By spoofing the target resolver wit | cvebase.io