Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-25218

In BIND before version 9.16.20, if "named" attempts to respond over UDP with a response that is larger than the current effective interface maximum transmission unit (MTU), and if response-rate limiting (RRL) is active, an assertion failure is triggered (resulting in termination of the "named" server process).

Source

Severity Medium

Remote Yes

Type Denial of service

Description

In BIND before version 9.16.20, if "named" attempts to respond over UDP with a response that is larger than the current effective interface maximum transmission unit (MTU), and if response-rate limiting (RRL) is active, an assertion failure is triggered (resulting in termination of the "named" server process).

AVG-2303 bind 9.16.19-1 9.16.20-1 Medium Fixed

https://kb.isc.org/docs/cve-2021-25218
https://downloads.isc.org/isc/bind9/9.16.20/patches/CVE-2021-25218.patch
https://github.com/isc-projects/bind9/commit/f9571bbc5fd7ca7067e80058758fc7b5be8b951a

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Vulmon Search

About

Products

Connect