NSD vulnerable to one-byte overflow

2009-05-20T00:00:00
ID VU:710316
Type cert
Reporter CERT
Modified 2009-06-01T19:41:00

Description

Overview

A vulnerability exists in the way NSD processes certain types of packets that may lead to a one-byte buffer overflow.

Description

Name server daemon (NSD) is an open source name server developed by NLnet Labs. NSD contains an off-by-one error that can cause a one-byte buffer overflow when certain packets are processed. The vulnerability exits in the packet_read_query_section() function in packet.c in versions 3.x and in the process_query_section() function in query.c in versions 2.x.

Note that this issue affects NSD versions 2.0.0 through 3.2.1.


Impact

A remote, unauthenticated attacker may be able to cause the DNS software to crash resulting in a denial-of-service condition.


Solution

Apply patch

NLnet Labs has released NSD version 3.2.2 and patches for versions 3.2.1 and 2.3.7. More information and links to these patches can be found in NLnet Labs NSD Announcement.

Users are encouraged to check with their vendor to determine the appropriate patch or update to apply.


Vendor Information

710316

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Vendor has issued information

__ Sort by: Status Alphabetical

Expand all

Affected Unknown __ Unaffected

Javascript is disabled. Click here to view vendors.

Debian GNU/Linux

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Debian is vulnerable in both the stable (lenny) and oldstable (etch) distributions. Debian is working on a fix for this issue.

__ Apple Computer, Inc.

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Computer Associates

Notified: May 19, 2009 Updated: May 22, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Computer Associates eTrust Security Management

Notified: May 19, 2009 Updated: May 22, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Cray Inc.

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Ericsson

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Extreme Networks

Notified: May 19, 2009 Updated: May 22, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Gentoo Linux

Notified: May 19, 2009 Updated: May 22, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

PePLink

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Not Vulnerable

Vendor Statement

Peplink products are not vulnerable.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Q1 Labs

Notified: May 19, 2009 Updated: June 01, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Red Hat, Inc.

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Not Vulnerable

Vendor Statement

Red Hat does not ship the NSD DNS name server in Red Hat Enterprise Linux 2.1, 3, 4, or 5.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ SafeNet

Notified: May 19, 2009 Updated: May 22, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ Sun Microsystems, Inc.

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ The SCO Group

Notified: May 19, 2009 Updated: May 20, 2009

Status

__ Not Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

__ 3com, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ ACCESS

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ AT&T

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Alcatel-Lucent

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Avaya, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Barracuda Networks

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Belkin, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Borderware Technologies

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Bro

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Charlotte's Web Networks

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Check Point Software Technologies

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Cisco Systems, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Clavister

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Conectiva Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ DragonFly BSD Project

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ EMC Corporation

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Engarde Secure Linux

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Enterasys Networks

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ F5 Networks, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Fedora Project

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Force10 Networks, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Fortinet, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Foundry Networks, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ FreeBSD, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Global Technology Associates

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Hewlett-Packard Company

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Hitachi

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ IBM Corporation

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ IBM eServer

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ IP Filter

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Internet Security Systems, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Intoto

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Juniper Networks, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Luminous Networks

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Mandriva S. A.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ McAfee

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ MontaVista Software, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Multitech, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ NEC Corporation

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ NLnet Labs

Notified: May 28, 2009 Updated: May 28, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ NetApp

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ NetBSD

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Nokia

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Nortel Networks, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Novell, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ OpenBSD

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Openwall GNU/*/Linux

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Process Software

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ QNX, Software Systems, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Quagga

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ RadWare, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Redback Networks, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ SUSE Linux

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Secureworx, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Silicon Graphics, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Slackware Linux Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ SmoothWall

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Snort

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Soapstone Networks

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Sony Corporation

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Sourcefire

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Stonesoft

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Symantec

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ TippingPoint, Technologies, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Turbolinux

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ U4EA Technologies, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Ubuntu

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Unisys

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Vyatta

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Watchguard Technologies, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ Wind River Systems, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ ZyXEL

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ eSoft, Inc.

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ m0n0wall

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

__ netfilter

Notified: May 19, 2009 Updated: May 19, 2009

Status

__ Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

View all 89 vendors View less vendors

CVSS Metrics

Group | Score | Vector
---|---|---
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | | N/A

References

<http://www.nlnetlabs.nl/publications/NSD_vulnerability_announcement.html>

Acknowledgements

This issue was reported in NLnet Labs NSD Announcement.

This document was written by Chris Taschner.

Other Information

CVE IDs: | None
---|---
Severity Metric:** | 8.40
Date Public:
| 2009-05-18
Date First Published: | 2009-05-20
Date Last Updated: | 2009-06-01 19:41 UTC
Document Revision: | 10