MiracleLinux 7 : bind-9.9.4-61.1.0.1.el7.AXS7 (AXSA:2018-3317:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3317:03 advisory. bind: processing of certain records when deny-answer-aliases is in use may trigger an assert leading to a denial of service CVE-2018-5740 Tenable has extract...

MiracleLinux 4 : bind-9.8.2-0.68.1.0.1.rc1.AXS4 (AXSA:2018-3319:03)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3319:03 advisory. bind: processing of certain records when deny-answer-aliases is in use may trigger an assert leading to a denial of service CVE-2018-5740 Tenable has extract...

K98528405: BIG-IP BIND vulnerability CVE-2018-5740

Security Advisory Description A flaw in the "deny-answer-aliases" feature can cause an INSIST assertion failure in named. CVE-2018-5740 Impact A flaw in a rarely used BIND feature can cause an assertion failure in named. As a result, the bind process restarts. Security Advisory Status F5 Product...

SUSE CVE-2018-5740

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2019-1081)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : bind (openSUSE-2019-1533)

This update for bind fixes the following issues : Security issues fixed : - CVE-2019-6465: Fixed an issue where controls for zone transfers may not be properly applied to Dynamically Loadable Zones bsc1126069. - CVE-2018-5745: Fixed a denial of service vulnerability if a trust anchor rolls over t...

SUSE SLED15 / SLES15 Security Update : bind (SUSE-SU-2019:1407-1)

This update for bind fixes the following issues : Security issues fixed : CVE-2019-6465: Fixed an issue where controls for zone transfers may not be properly applied to Dynamically Loadable Zones bsc1126069. CVE-2018-5745: Fixed a denial of service vulnerability if a trust anchor rolls over to an...

The vulnerability of the deny-answer-aliases function in the open-source BIND DNS server implementation, which stems from insufficient input validation, allows attackers to trigger a service denial.

The vulnerability of the deny-answer-alias function in the open-source BIND DNS server implementation is related to a validation error that occurs in name.c when this function is used. Exploiting this vulnerability allows an attacker to cause a service failure...

ISC BIND deny-answer-aliases Assertion Failure Denial of Service (CVE-2018-5740)

A denial-of-service vulnerability has been reported in ISC BIND9. The vulnerability is due to improper handling of certain responses when BIND is configured to use the deny-answer-aliases feature. A remote attacker could exploit this vulnerability by providing a specific response to a DNAME or AN...

DEBIAN-CVE-2018-5740

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

ALPINE-CVE-2018-5740

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

Design/Logic Flaw

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

CVE-2018-5740

CVE-2018-5740 is a flaw in the deny-answer-aliases feature of BIND that can cause an assertion failure in named, potentially restarting the bind process (denial of service). Affected BIND versions include 9.7.0–9.8.8, 9.9.0–9.9.13, 9.10.0–9.10.8, 9.11.0–9.11.4, 9.12.0–9.12.2, and 9.13.0–9.13.2. R...

CVE-2018-5740 A flaw in the "deny-answer-aliases" feature can cause an assertion failure in named

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

CVE-2018-5740

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

F5 Networks BIG-IP : BIG-IP BIND vulnerability (K98528405)

A flaw in the 'deny-answer-aliases' feature can cause an INSIST assertion failure in named. CVE-2018-5740 Impact A flaw in a rarely used BIND feature can cause an assertion failure in named . As a result, the bind process restarts. C Tenable Network Security, Inc. The descriptive text and package...

USN-3769-2: Bind vulnerability

USN-3769-1 fixed a vulnerability in Bind. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: It was discovered that Bind incorrectly handled the deny-answer-aliases feature. If this feature is enabled, a remote attacker could use this issue to cause Bin...

USN-3769-1: Bind vulnerability

It was discovered that Bind incorrectly handled the deny-answer-aliases feature. If this feature is enabled, a remote attacker could use this issue to cause Bind to crash, resulting in a denial of service...

USN-3769-1 bind9 vulnerability

It was discovered that Bind incorrectly handled the deny-answer-aliases feature. If this feature is enabled, a remote attacker could use this issue to cause Bind to crash, resulting in a denial of service...

bind: processing of certain records when "deny-answer-aliases" is in use may trigger an assert leading to a denial of service

A denial of service flaw was discovered in bind versions that include the "deny-answer-aliases" feature. This flaw may allow a remote attacker to trigger an INSIST assert in named leading to termination of the process and a denial of service condition...