A `named` instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache (RFC 8198) option (`synth-from-dnssec`) enabled can be remotely terminated using a zone with a malformed NSEC record. This issue affects BIND 9 versions 9.16.8-S1 up to and including 9.16.41-S1 and 9.18.11-S1 up to and including 9.18.15-S1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
isc bind |
||
netapp active iq unified manager - |
||
netapp h500s_firmware - |
||
netapp h700s_firmware - |
||
netapp h410s_firmware - |
||
netapp h410c_firmware - |
||
netapp h300s_firmware - |