"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an assertion failure in name.c. Affects BIND 9.7.0->9.8.8, 9.9.0->9.9.13, 9.10.0->9.10.8, 9.11.0->9.11.4, 9.12.0->9.12.2, 9.13.0->9.13.2.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
isc bind |
||
redhat enterprise linux server eus 7.5 |
||
redhat enterprise linux server eus 7.6 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux workstation 7.0 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
netapp data ontap edge - |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 16.04 |
||
hp hp-ux - |
||
opensuse leap 15.0 |
||
opensuse leap 15.1 |
||
opensuse leap 42.3 |
Vulmon