Wind River Support Network

HomeDefectsLIN8-9703
Fixed

LIN8-9703 : Security Advisory - bind - CVE-2018-5740

Created: Aug 31, 2018    Updated: Aug 21, 2019
Resolved Date: Jun 13, 2019
Found In Version: 8.0.0.27
Fix Version: 8.0.0.31
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

BIND through versions 9.8.8, 9.9.13, 9.10.8, 9.11.4, 9.12.2 and 9.13.2 have a flaw in the "deny-answer-aliases" feature that can cause an INSIST assertion failure in named. A remote attacker could exploit this to cause named to crash.

https://nvd.nist.gov/vuln/detail/CVE-2018-5740

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube