cbcvebase.
CVE-2023-2911
published 2023-06-21

CVE-2023-2911: If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a…

high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a sequence of serve-stale-related lookups could cause `named` to loop and terminate unexpectedly due to a stack overflow. This issue affects BIND 9 versions 9.16.33 through 9.16.41, 9.18.7 through 9.18.15, 9.16.33-S1 through 9.16.41-S1, and 9.18.11-S1 through 9.18.15-S1.

Affected

23 ranges
VendorProductVersion rangeFixed in
debianbind9< bind9 1:9.18.16-1~deb12u1 (bookworm)bind9 1:9.18.16-1~deb12u1 (bookworm)
debiandebian_linux
debiandebian_linux
fedoraprojectfedora
fedoraprojectfedora
iscbind>= 0 < 9.16.42-r09.16.42-r0
iscbind9.16.33 – 9.16.41
iscbind9.18.11 – 9.18.15
iscbind9.18.7 – 9.18.15
iscbind9>= 0 < 1:9.16.42-1~deb11u11:9.16.42-1~deb11u1
iscbind9>= 0 < 1:9.18.16-1~deb12u11:9.18.16-1~deb12u1
iscbind9>= 0 < 1:9.18.16-11:9.18.16-1
iscbind9>= 0 < 1:9.18.16-11:9.18.16-1
iscbind9>= 0 < 1:9.16.1-0ubuntu2.151:9.16.1-0ubuntu2.15
iscbind9>= 0 < 1:9.18.12-0ubuntu0.22.04.21:9.18.12-0ubuntu0.22.04.2
iscbind9>= 0 < 1:9.9.5.dfsg-3ubuntu0.19+esm101:9.9.5.dfsg-3ubuntu0.19+esm10
iscbind9>= 0 < 1:9.10.3.dfsg.P4-8ubuntu1.19+esm61:9.10.3.dfsg.P4-8ubuntu1.19+esm6
iscbind9>= 0 < 1:9.11.3+dfsg-1ubuntu1.19+esm11:9.11.3+dfsg-1ubuntu1.19+esm1
iscbind_99.16.33 – 9.16.41
iscbind_99.16.33-S1 – 9.16.41-S1
iscbind_99.18.11-S1 – 9.18.15-S1
iscbind_99.18.7 – 9.18.15
msrccbl2_bind_9.16.44-1_on_cbl_mariner_2.0

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH