Home CVE Database CVE-2018-5740

CVE-2018-5740

Description

BIND through versions 9.8.8, 9.9.13, 9.10.8, 9.11.4, 9.12.2 and 9.13.2 have a flaw in the \"deny-answer-aliases\" feature that can cause an INSIST assertion failure in named. A remote attacker could exploit this to cause named to crash.

Priority: MEDIUM
CVSS v3: 7.5
Publish Date: Aug 30, 2018
Related ID: --
CVSS v2: HIGH
Modified Date: Aug 30, 2018

Find out more about CVE-2018-5740 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Product Name Status Defect Fixed Downloads
Linux
Wind River Linux LTS 17 Fixed LIN10-4593
10.17.41.12 Wind River Linux LTS 10.17.41.12
Wind River Linux LTS 10.17.41.13
Wind River Linux LTS 10.17.41.14
Wind River Linux LTS 10.17.41.15
Wind River Linux LTS 10.17.41.16
Wind River Linux LTS 10.17.41.17
Wind River Linux LTS 10.17.41.18
Wind River Linux LTS 10.17.41.20
Wind River Linux LTS 10.17.41.21
Wind River Linux LTS 10.17.41.22
Wind River Linux 9 Vulnerable LIN9-7369
-- --
Wind River Linux 8 Fixed LIN8-9703
8.0.0.31 --
Wind River Linux LTS 18 Fixed -- 10.18.44.1 --
Wind River Linux LTS 19 Not Vulnerable -- -- --
Wind River Linux CD release Not Vulnerable -- -- --
VxWorks
VxWorks 7 Not Vulnerable -- -- --
VxWorks 6.9 Not Vulnerable -- -- --

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

bind

Live chat
Online