7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.4%
To keep its cache database efficient, named
running as a recursive
resolver occasionally attempts to clean up the database. It uses several
methods, including some that are asynchronous: a small chunk of memory
pointing to the cache element that can be cleaned up is first allocated and
then queued for later processing. It was discovered that if the resolver is
continuously processing query patterns triggering this type of
cache-database maintenance, named
may not be able to handle the cleanup
events in a timely manner. This in turn enables the list of queued cleanup
events to grow infinitely large over time, allowing the configured
max-cache-size
limit to be significantly exceeded. This issue affects
BIND 9 versions 9.16.0 through 9.16.45 and 9.16.8-S1 through 9.16.45-S1.
Author | Note |
---|---|
alexmurray | As of isc-dhcp-4.4.3-1, isc-dhcp vendors bind9 libs |
mdeslaur | only affects 9.16.x |
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.4%