ISC reports that query.c in BIND may allow remote attackers to cause a denial-of-service (assertion failure and named exit). The vulnerability uses unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver. The affected versions of BIND are as follows:

9.0.x through 9.6.x
9.4-ESV through 9.4-ESV-R5
9.6-ESV through 9.6-ESV-R5
9.7.0 through 9.7.4
9.8.0 through 9.8.1
9.9.0a1 through 9.9.0b1

Impact

This issue may cause recursive name servers to crash.

This issue may affect BIG-IP systems in which BIND is configured as a recursive name server.

CPENameOperatorVersion
big-ip afmeq11.3.0
big-ip afmeq11.4.0
big-ip analyticseq11.0.0
big-ip analyticseq11.1.0
big-ip analyticseq11.2.0
big-ip analyticseq11.2.1
big-ip analyticseq11.3.0
big-ip analyticseq11.4.0
big-ip aameq11.4.0
big-ip apmeq10.1.0

Name	Operator	Version
big-ip afm	eq	11.3.0
big-ip afm	eq	11.4.0
big-ip analytics	eq	11.0.0
big-ip analytics	eq	11.1.0
big-ip analytics	eq	11.2.0
big-ip analytics	eq	11.2.1
big-ip analytics	eq	11.3.0
big-ip analytics	eq	11.4.0
big-ip aam	eq	11.4.0
big-ip apm	eq	10.1.0

Rows per page:

1-10 of 2491

fedora 9

nessus 39

openvas 55

oraclelinux 3

cisa 1

debian 1

cve 2

suse 5

freebsd_advisory 1

cert 1

redhat 3

threatpost 1

ubuntu 1

freebsd 1

thn 1

veracode 1

prion 1

securityvulns 3

amazon 1

centos 3

debiancve 1

f5 1

ubuntucve 1

altlinux 4

gentoo 1

fedora

[SECURITY] Fedora 16 Update: bind-9.8.1-4.P1.fc16

2011-11-19 06:03:27

[SECURITY] Fedora 15 Update: bind-9.8.1-3.P1.fc15

2011-11-25 23:25:02

[SECURITY] Fedora 16 Update: bind-9.8.3-2.P1.fc16

2012-06-15 12:24:27

nessus

ISC BIND 9 Query.c Logging Resolver Denial of Service

2011-11-17 00:00:00

F5 Networks BIG-IP : BIND vulnerability (SOL14204)

2014-10-10 00:00:00

Oracle Linux 5 : bind97 (ELSA-2011-1459)

2013-07-12 00:00:00

openvas

Mandriva Update for bind MDVSA-2011:176 (bind)

2011-11-18 00:00:00

CentOS Update for bind97 CESA-2011:1459 centos5 x86_64

2012-07-30 00:00:00

FreeBSD Ports: bind96

2012-02-13 00:00:00

oraclelinux

bind97 security update

2011-11-17 00:00:00

bind security update

2011-11-29 00:00:00

bind security update

2011-11-17 00:00:00

cisa

Internet Systems Consortium Releases BIND-P1 Patches

2011-11-17 00:00:00

debian

[SECURITY] [DSA 2347-1] bind9 security update

2011-11-16 20:44:22

cve

CVE-2011-4313

2011-11-29 17:55:00

CVE-2011-4456

2011-11-16 19:55:00

suse

Security update for bind (important)

2011-11-23 05:08:36

bind (important)

2011-11-22 13:08:45

Security update for bind (important)

2011-11-22 01:08:39

freebsd_advisory

FreeBSD-SA-11:06.bind

2011-12-23 00:00:00

cert

ISC BIND 9 resolver denial of service vulnerability

2011-11-22 00:00:00

redhat

(RHSA-2011:1458) Important: bind security update

2011-11-17 00:00:00

(RHSA-2011:1459) Important: bind97 security update

2011-11-17 00:00:00

(RHSA-2011:1496) Important: bind security update

2011-11-29 00:00:00

threatpost

New Flaw in BIND Causing Server Crashes

2011-11-16 19:29:10

ubuntu

Bind vulnerability

2011-11-16 00:00:00

freebsd

BIND -- Remote DOS

2011-11-16 00:00:00

thn

Patches Released for BIND Denial-of-service Vulnerability

2011-11-17 21:43:00

veracode

Denial Of Service(DoS)

2020-04-10 01:04:31

prion

Design/Logic Flaw

2011-11-29 17:55:00

securityvulns

[USN-1264-1] Bind vulnerability

2011-11-20 00:00:00

bind DNS server DoS

2011-11-20 00:00:00

APPLE-SA-2012-09-19-2 OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004

2012-09-24 00:00:00

amazon

Important: bind

2011-11-30 21:59:00

centos

bind97 security update

2011-11-18 13:25:41

bind, caching security update

2011-11-18 13:24:22

bind security update

2011-11-29 18:31:45

debiancve

CVE-2011-4313

2011-11-29 17:55:00

SOL14204 - BIND vulnerability CVE-2011-4313

2013-02-12 00:00:00

ubuntucve

CVE-2011-4313

2011-11-16 00:00:00

altlinux

Security fix for the ALT Linux 9 package bind version 9.3.6-alt7

2011-12-16 00:00:00

Security fix for the ALT Linux 6 package bind version 9.3.6-alt7

2011-12-16 00:00:00

Security fix for the ALT Linux 7 package bind version 9.3.6-alt7

2011-12-16 00:00:00

gentoo

BIND: Multiple vulnerabilities

2012-06-02 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.3 Medium

AI Score

Confidence

Low

JSON

Related for F5:K14204