The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 prior to 9.8.6-P2 and 9.9 prior to 9.9.4-P2, and 9.6-ESV prior to 9.6-ESV-R10-P2, allows remote malicious users to cause a denial of service (INSIST assertion failure and daemon exit) via a crafted DNS query to an authoritative nameserver that uses the NSEC3 signing feature.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
isc bind 9.9.4 |
||
isc bind 9.8.6 |
||
isc bind 9.8.0 |
||
isc bind 9.8.1 |
||
isc bind 9.8.2 |
||
isc bind 9.8.5 |
||
isc bind 9.7.0 |
||
isc bind 9.7.1 |
||
isc bind 9.7.2 |
||
isc bind 9.7.4 |
||
isc bind 9.7.6 |
||
isc bind 9.6 |
||
isc bind 9.6.2 |
||
isc bind 9.7.5 |
||
isc bind 9.6.0 |
||
isc bind 9.6.1 |
||
isc bind 9.6.3 |
||
isc bind 9.8.3 |
||
isc bind 9.7.3 |
||
isc bind 9.7.7 |
||
isc bind 9.8.4 |
Vulmon