ID de Prueba:	1.3.6.1.4.1.25623.1.0.104925
Categoría:	Denial of Service
Título:	ISC BIND DoS Vulnerability (CVE-2023-4236) - Linux
Resumen:	ISC BIND is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: ISC BIND is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. Vulnerability Impact: A named instance vulnerable to this flaw may terminate unexpectedly when subjected to significant DNS-over-TLS query load. This flaw does not affect DNS-over-HTTPS code, as that uses a different TLS implementation. Affected Software/OS: ISC BIND versions 9.18.0 through 9.18.18 and 9.18.11-S1 through 9.18.18-S1. Solution: Update to version 9.18.19, 9.18.19-S1 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-4236 Debian Security Information: DSA-5504 (Google Search) https://www.debian.org/security/2023/dsa-5504 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U35OARLQCPMVCBBPHWBXY5M6XJLD2TZ5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPJLLTJCSDJJII7IIZPLTBQNWP7MZH7F/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSK5V4W4OHPM3JTJGWAQD6CZW7SFD75B/ CVE-2023-4236 https://kb.isc.org/docs/cve-2023-4236 http://www.openwall.com/lists/oss-security/2023/09/20/2
Copyright	Copyright (C) 2023 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.