Wind River Support Network

HomeDefectsLIN6-14923
Not to be fixed

LIN6-14923 : Security Advisory - bind - CVE-2018-5740

Created: Aug 31, 2018    Updated: Feb 14, 2019
Resolved Date: Dec 18, 2018
Found In Version: 6.0.0.37
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

BIND through versions 9.8.8, 9.9.13, 9.10.8, 9.11.4, 9.12.2 and 9.13.2 have a flaw in the "deny-answer-aliases" feature that can cause an INSIST assertion failure in named. A remote attacker could exploit this to cause named to crash.

https://nvd.nist.gov/vuln/detail/CVE-2018-5740
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube