Wind River Support Network

HomeDefectsLIN1021-5138
Fixed

LIN1021-5138 : Security Advisory - bind - CVE-2022-3736

Created: Jan 29, 2023    Updated: Mar 1, 2023
Resolved Date: Mar 1, 2023
Found In Version: 10.21.20.1
Fix Version: 10.21.20.17
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.

CREATE(Triage):(User=admin) CVE-2022-3736 (https://nvd.nist.gov/vuln/detail/CVE-2022-3736)

CVEs


Live chat
Online