Vulnerability CVE-2022-3736: Information
Description
BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.
Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
bind | sisyphus | 9.16.37-alt1 | 9.18.27-alt1 | ALT-PU-2023-1130-1 | 314153 | Fixed |
bind | sisyphus_e2k | 9.16.37-alt1 | 9.18.27-alt1 | ALT-PU-2023-2364-1 | - | Fixed |
bind | sisyphus_riscv64 | 9.16.37-alt1 | 9.18.27-alt1 | ALT-PU-2023-2358-1 | - | Fixed |
bind | p10 | 9.16.37-alt1 | 9.16.48-alt1 | ALT-PU-2023-1185-1 | 314185 | Fixed |
bind | p10_e2k | 9.16.37-alt1 | 9.16.48-alt1 | ALT-PU-2023-2443-1 | - | Fixed |
bind | c10f1 | 9.16.37-alt1 | 9.16.48-alt0.c10f2.1 | ALT-PU-2023-1185-1 | 314185 | Fixed |
bind | p11 | 9.16.37-alt1 | 9.18.27-alt1 | ALT-PU-2023-1130-1 | 314153 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://kb.isc.org/docs/cve-2022-3736 |
|