๐ ISC BIND up to 9.9.4 DNS Query bin/named/query.c query_findclosestnsec3 NSEC3-Signed Zones memory corruption
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in ISC BIND up to 9.9.4 (Domain Name Software) and classified as critical. Affected by this issue is the function query_findclosestnsec3
of the file bin/named/query.c of the component DNS Query Handler. Upgrading to version 9.6-ESV-R10-P2, 9.8.6-P2 or 9.9.4-P2 eliminates this vulnerability. A possible mitigation has been published 3 days after the disclosure of the vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 13705. ...