CVE-2018-5737

A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some cases cause undesirable behavior from named, such as a recursion loop or excessive logging. Deliberate exploitation of this condition could cause operational problems depending on the particular manifestation -- either degradation or denial of service. Affects BIND 9.12.0 and 9.12.1.
References
Link Resource
http://www.securityfocus.com/bid/104236 Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1040942 Third Party Advisory VDB Entry
https://kb.isc.org/docs/aa-01606 Vendor Advisory
https://security.netapp.com/advisory/ntap-20180926-0004/ Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:isc:bind:9.12.0:*:*:*:*:*:*:*
cpe:2.3:a:isc:bind:9.12.1:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:data_ontap_edge:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-01-16 20:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-5737

Mitre link : CVE-2018-5737

CVE.ORG link : CVE-2018-5737


JSON object : View

Products Affected

netapp

  • cloud_backup
  • data_ontap_edge

isc

  • bind
CWE
CWE-617

Reachable Assertion