Wind River Support Network

HomeDefectsLIN7-8089

Fixed

LIN7-8089 : Security Advisory - bind - CVE-2017-3136

Created: Apr 26, 2017 Updated: Feb 12, 2019

Resolved Date: May 19, 2017

Found In Version: 7.0.0.24

Fix Version: 7.0.0.25

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

A denial of service flaw was found in the way BIND handled query requests when using DNS64 with "break-dnssec yes" option. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS request. unexpectedly with an assertion failure via a specially crafted command.

https://nvd.nist.gov/vuln/detail/CVE-2017-3136

Other Downloads

Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2017-3136