Test Kennung:	1.3.6.1.4.1.25623.1.0.124170
Kategorie:	Denial of Service
Titel:	ISC BIND DoS Vulnerability (CVE-2022-3080) - Linux
Zusammenfassung:	ISC BIND is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: ISC BIND is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: BIND 9 resolver can crash when stale cache and stale answers are enabled, option stale-answer-client-timeout is set to 0 and there is a stale CNAME in the cache for an incoming query. Vulnerability Impact: By sending specific queries to the resolver, an attacker can cause named to crash. Affected Software/OS: ISC BIND versions 9.16.14 through 9.16.32, 9.18.0 through 9.18.6, 9.19.0 through 9.19.4 and 9.16.14-S1 through 9.16.32-S1. Solution: Update to version 9.16.33, 9.18.7, 9.19.5, 9.16.33-S1 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2022-3080 https://kb.isc.org/docs/cve-2022-3080 Debian Security Information: DSA-5235 (Google Search) https://www.debian.org/security/2022/dsa-5235 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRHB6J4Z7BKH4HPEKG5D35QGRD6ANNMT/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YZJQNUASODNVAWZV6STKG5SD6XIJ446S/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CV4GQWBPF7Y52J2FA24U6UMHQAOXZEF7/ https://security.gentoo.org/glsa/202210-25 http://www.openwall.com/lists/oss-security/2022/09/21/3
Copyright	Copyright (C) 2022 Greenbone Networks GmbH

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.