Lucene search
K

20 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.50 views

K75501540: BIND vulnerability CVE-2018-5738

Security Advisory Description Change 4777 introduced in October 2017 introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended and documented behavior is that if an operator has...

7.5CVSS6.3AI score0.1107EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.15 views

Slackware: Security Advisory (SSA:2018-192-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.1107EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2019-2321)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.1107EPSS
Exploits0References2
OSV
OSV
added 2019/01/16 8:29 p.m.4 views

DEBIAN-CVE-2018-5738

Change 4777 introduced in October 2017 introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended and documented behavior is that if an operator has not specified a value for the...

7.5CVSS6.9AI score0.1107EPSS
Exploits0References1
NVD
NVD
added 2019/01/16 8:29 p.m.20 views

CVE-2018-5738

Change 4777 introduced in October 2017 introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended and documented behavior is that if an operator has not specified a value for the...

7.5CVSS6.2AI score0.1107EPSS
Exploits0References5
CVE
CVE
added 2019/01/16 8:0 p.m.195 views

CVE-2018-5738

The CVE-2018-5738 issue in BIND stems from Change #4777, causing a regression where, when recursion is enabled, recursion could be allowed to all clients if no match lists are set for allow-query-cache/allow-query. Affected: BIND 9.9.12, 9.10.7, 9.11.3, 9.12.0→9.12.1-P2, 9.13.0 (development), plu...

7.5CVSS6.2AI score0.1107EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2019/01/16 8:0 p.m.34 views

CVE-2018-5738 Some versions of BIND can improperly permit recursive query service to unauthorized clients

Change 4777 introduced in October 2017 introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended and documented behavior is that if an operator has not specified a value for the...

5.3CVSS6.1AI score0.1107EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2019/01/16 8:0 p.m.21 views

CVE-2018-5738

Change 4777 introduced in October 2017 introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended and documented behavior is that if an operator has not specified a value for the...

7.5CVSS6.3AI score0.1107EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.28 views

Fedora 28 : 32:bind (2018-bfec61fb2f)

Fix CVE-2018-5738 - Remove named.iscdlv.key Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.5CVSS6.4AI score0.1107EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.34 views

Fedora 28 : 32:bind (2018-5417ca3713)

Update to last security release - Fixes CVE-2018-5738 - Adds root key sentinel mechanism support - incremental zone transfer limit to prevent journal corruption - rndc reload memory leak Note that Tenable Network Security has extracted the preceding description block directly from the Fedora upda...

7.5CVSS6.6AI score0.59353EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/08/23 12:0 a.m.41 views

Fedora 27 : 32:bind (2018-90f8fbd58e)

Update to 9.11.4-P1 - Fixes CVE-2018-5738 - Adds root key sentinel mechanism support - incremental zone transfer limit to prevent journal corruption - rndc reload memory leak Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...

7.5CVSS6.6AI score0.59353EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/08/23 12:0 a.m.31 views

Fedora Update for bind FEDORA-2018-90f8fbd58e

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.1107EPSS
Exploits0References2
ALT Linux
ALT Linux
added 2018/08/13 12:0 a.m.88 views

Security fix for the ALT Linux 9 package bind version 9.11.4.P1-alt1

Aug. 13, 2018 Stanislav Levin 9.11.4.P1-alt1 - 9.11.3 - 9.11.4.P1 fixes: CVE-2018-5738, CVE-2018-5740...

5CVSS7.8AI score0.59353EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/08/02 12:0 a.m.30 views

Fedora 27 : 32:bind / bind-dyndb-ldap / dnsperf (2018-c0f12f789e)

Update to bind 9.11.4 ---- - Fix CVE-2018-5738 - Remove named.iscdlv.key - Make home writeable - Use invalid shell /bin/false for bind Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

7.5CVSS6.4AI score0.1107EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/08/02 12:0 a.m.24 views

Fedora Update for bind-dyndb-ldap FEDORA-2018-c0f12f789e

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.1107EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/08/02 12:0 a.m.24 views

Fedora Update for bind FEDORA-2018-c0f12f789e

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.27725EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/07/03 12:0 a.m.36 views

Fedora Update for bind FEDORA-2018-bfec61fb2f

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.1107EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.29 views

ISC BIND Access Control Vulnerability (Jun 2018) - Windows

Some versions of BIND can improperly permit recursive query service to unauthorized clients. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CP...

7.5CVSS7.5AI score0.1107EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.31 views

ISC BIND Access Control Vulnerability (Jun 2018) - Linux

Some versions of BIND can improperly permit recursive query service to unauthorized clients. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CP...

7.5CVSS7.5AI score0.1107EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/06/12 12:0 a.m.29 views

CVE-2018-5738

Change 4777 introduced in October 2017 introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended and documented behavior is that if an operator has not specified a value for the...

7.5CVSS6.8AI score0.1107EPSS
Exploits0References3
Rows per page
Query Builder