A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some cases cause undesirable behavior from named, such as a recursion loop or excessive logging. Deliberate exploitation of this condition could cause operational problems depending on the particular manifestation -- either degradation or denial of service. Affects BIND 9.12.0 and 9.12.1.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/104236 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1040942 | Third Party Advisory VDB Entry |
https://kb.isc.org/docs/aa-01606 | Vendor Advisory |
https://security.netapp.com/advisory/ntap-20180926-0004/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: isc
Published: 2018-05-18T00:00:00
Updated: 2019-01-17T10:57:01
Reserved: 2018-01-17T00:00:00
Link: CVE-2018-5737
JSON object: View
NVD Information
Status : Modified
Published: 2019-01-16T20:29:00.877
Modified: 2019-10-09T23:41:33.157
Link: CVE-2018-5737
JSON object: View
Redhat Information
No data.
CWE