logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-25214

Description

In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a malformed IXFR triggering the flaw described above, the named process will terminate due to a failed assertion the next time the transferred secondary zone is refreshed.


Affected Package


OS OS Version Package Name Package Version
Debian 12 bind9 1:9.18.8-1
Debian 11 bind9 1:9.16.27-1~deb11u1
Debian 10 bind9 1:9.11.5.P4+dfsg-5.1+deb10u7
Debian 999 bind9 1:9.18.8-1

Related