CVE-2023-5517

🗓️ 14 Feb 2024 20:32:22Reported by redhat.comType

A flaw in the bind package may result in Denial of Service in the `named` process due to a reachable assertion that prematurely terminates the process under specific conditions

Reporter	Title	Published	Views	Family All 183
IBM Security Bulletins	Security Bulletin: Vulnerabilities in bind and dnsmasq affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products	26 Feb 202515:47	–	ibm
IBM Security Bulletins	Security Bulletin: AIX is vulnerable to denial of service due to ISC BIND	5 Jun 202416:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable ISC BIND denial of service vulnerabilities.	6 Aug 202421:29	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Observability with Instana using third-party Kubernetes Operators is affected by Multiple Security Vulnerabilities	13 Jun 202406:21	–	ibm
IBM Security Bulletins	Security Bulletin: ISC BIND on IBM i is vulnerable to denial of service attacks due to multiple vulnerabilities.	1 Mar 202415:22	–	ibm
Tenable Nessus	Amazon Linux 2023 : bind, bind-chroot, bind-devel (ALAS2023-2024-550)	6 Mar 202400:00	–	nessus
Tenable Nessus	AlmaLinux 8 : bind9.16 (ALSA-2024:1781)	12 Apr 202400:00	–	nessus
Tenable Nessus	AlmaLinux 9 : bind (ALSA-2024:1789)	12 Apr 202400:00	–	nessus
Tenable Nessus	Azure Linux 3.0 Security Update: bind (CVE-2023-5517)	10 Feb 202500:00	–	nessus
Tenable Nessus	ISC BIND 9.12.0 < 9.16.48 / 9.16.8-S1 < 9.16.48-S1 / 9.18.0 < 9.18.24 / 9.18.11-S1 < 9.18.24-S1 / 9.19.0 < 9.19.21 Assertion Failure (cve-2023-5517)	13 Feb 202400:00	–	nessus

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-5517
kb	www.kb.isc.org/docs/cve-2023-5517
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

17 Nov 2024 14:07Current

7.3High risk

Vulners AI Score7.3

CVSS 3.17.5

EPSS0.00143

CWE-617