Lucene search
Ubuntu.comUB:CVE-2013-2266HistoryMar 26, 2013 - 12:00 a.m.
CVE-2013-2266
2013-03-2600:00:00
ubuntu.com
ubuntu.com
10
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.943 High
EPSS
Percentile
99.2%
libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2,
9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows
remote attackers to cause a denial of service (memory consumption) via a
crafted regular expression, as demonstrated by a memory-exhaustion attack
against a machine running a named process.
Bugs
Notes
| Author | Note |
|---|---|
| seth-arnold | No patch will be provided for 9.7. The suggested workaround is re-compile without regex support. |
Related
nessus
nessus
FreeBSD : dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion (7a282e49-95b6-11e2-8433-0800273fe665)
2013-04-08 00:00:00
Amazon Linux AMI : bind (ALAS-2013-176)
2013-09-04 00:00:00
Debian DSA-2656-1 : bind9 - denial of service
2013-04-01 00:00:00
redhat
redhat
(RHSA-2013:0689) Important: bind security and bug fix update
2013-03-28 00:00:00
(RHSA-2013:0690) Important: bind97 security update
2013-03-28 00:00:00
(RHSA-2013:0746) Important: rhev-hypervisor6 security and bug fix update
2013-04-23 00:00:00
openvas
openvas
Fedora Update for bind FEDORA-2013-4525
2013-04-08 00:00:00
Fedora Update for bind FEDORA-2013-4525
2013-04-08 00:00:00
RedHat Update for bind97 RHSA-2013:0690-01
2013-04-02 00:00:00
oraclelinux
oraclelinux
bind97 security update
2013-03-28 00:00:00
bind security and bug fix update
2013-03-28 00:00:00
bind97 security and bug fix update
2014-09-17 00:00:00
amazon
amazon
Important: bind
2013-04-04 11:09:00
freebsd
freebsd
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
2013-03-11 00:00:00
FreeBSD -- BIND remote denial of service
2013-04-02 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: bind-9.9.2-10.P2.fc18
2013-04-05 23:08:28
[SECURITY] Fedora 17 Update: bind-9.9.2-7.P2.fc17
2013-04-07 00:25:01
[SECURITY] Fedora 18 Update: bind-9.9.3-4.P2.fc18
2013-08-04 00:13:45
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:51:10
prion
prion
Code injection
2013-03-28 16:55:00
Design/Logic Flaw
2013-03-28 16:55:00
f5
f5
SOL14386 - BIND vulnerability CVE-2013-2266
2013-05-01 00:00:00
K14386 : BIND vulnerability CVE-2013-2266
2014-08-26 00:00:00
securityvulns
securityvulns
[USN-1783-1] Bind vulnerability
2013-04-01 00:00:00
bind / dhcp DoS
2013-04-01 00:00:00
[slackware-security] dhcp (SSA:2013-086-02)
2013-04-01 00:00:00
seebug
seebug
ISC BIND 9 'libdns' θΏη¨ζη»ζε‘ζΌζ΄(CVE-2013-2266)
2013-03-29 00:00:00
debiancve
debiancve
CVE-2013-2266
2013-03-28 16:55:00
CVE-2013-2494
2013-03-28 16:55:00
ubuntu
ubuntu
Bind vulnerability
2013-03-29 00:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND Regular Expression Handling Denial of Service (CVE-2013-2266)
2013-06-30 00:00:00
debian
debian
[SECURITY] [DSA 2656-1] bind9 security update
2013-03-30 15:42:49
cve
cve
CVE-2013-2266
2013-03-28 16:55:00
CVE-2013-2494
2013-03-28 16:55:00
centos
centos
bind97 security update
2013-03-28 23:25:41
bind security update
2013-03-29 00:19:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:04.bind
2013-04-02 00:00:00
ubuntucve
ubuntucve
CVE-2013-2494
2013-03-28 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1822
2021-07-02 16:37:55
gentoo
gentoo
BIND: Denial of service
2014-01-29 00:00:00
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.943 High
EPSS
Percentile
99.2%
Related for UB:CVE-2013-2266