CVE-2014-0591: Buffer Overflow
First published: Sat Jan 11 2014(Updated: )
It was reported that a defect in how BIND handled queries for NSEC3-signed zones could cause a crash of the named daemon with an "INSIST" failure when processing queries that possessed certain properties. A remote attacker could exploit this defect by constructing a carefully-crafted query against an authoritative nameserver that served NSEC3-signed zones. Note that this flaw affects BIND versions 9.6.0 and higher (NSEC3 was introduced in BIND 9.6.0 but is not automatically enabled). Authoritative nameservers that are serving at least one NSEC3-signed zone are vulnerable. Authoritative nameservers that are NOT serving at least one NSEC3-signed zone are not vulnerable, nor are recursive-only servers. Servers running versions of BIND older than 9.6.0 are also not vulnerable. There are no workarounds for this issue.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ISC BIND | =9.6 | |
| ISC BIND | =9.6-r5_p1 | |
| ISC BIND | =9.6-r6_b1 | |
| ISC BIND | =9.6-r6_rc1 | |
| ISC BIND | =9.6-r6_rc2 | |
| ISC BIND | =9.6-r7_p1 | |
| ISC BIND | =9.6-r7_p2 | |
| ISC BIND | =9.6-r9_p1 | |
| ISC BIND | =9.6.0 | |
| ISC BIND | =9.6.0-p1 | |
| ISC BIND | =9.6.0-rc1 | |
| ISC BIND | =9.6.0-rc2 | |
| ISC BIND | =9.6.1 | |
| ISC BIND | =9.6.1-p1 | |
| ISC BIND | =9.6.1-p2 | |
| ISC BIND | =9.6.1-p3 | |
| ISC BIND | =9.6.1-rc1 | |
| ISC BIND | =9.6.2 | |
| ISC BIND | =9.6.2-rc1 | |
| ISC BIND | =9.6.3 | |
| ISC BIND | =9.6.3-rc1 | |
| ISC BIND | =9.7.0 | |
| ISC BIND | =9.7.0-b1 | |
| ISC BIND | =9.7.0-p1 | |
| ISC BIND | =9.7.0-p2 | |
| ISC BIND | =9.7.0-rc1 | |
| ISC BIND | =9.7.0-rc2 | |
| ISC BIND | =9.7.1 | |
| ISC BIND | =9.7.1-p1 | |
| ISC BIND | =9.7.1-p2 | |
| ISC BIND | =9.7.1-rc1 | |
| ISC BIND | =9.7.2 | |
| ISC BIND | =9.7.2-p1 | |
| ISC BIND | =9.7.2-p2 | |
| ISC BIND | =9.7.2-p3 | |
| ISC BIND | =9.7.2-rc1 | |
| ISC BIND | =9.7.3 | |
| ISC BIND | =9.7.3-b1 | |
| ISC BIND | =9.7.3-p1 | |
| ISC BIND | =9.7.3-rc1 | |
| ISC BIND | =9.7.4 | |
| ISC BIND | =9.7.4-b1 | |
| ISC BIND | =9.7.4-p1 | |
| ISC BIND | =9.7.4-rc1 | |
| ISC BIND | =9.7.5 | |
| ISC BIND | =9.7.5-b1 | |
| ISC BIND | =9.7.5-rc1 | |
| ISC BIND | =9.7.5-rc2 | |
| ISC BIND | =9.7.6 | |
| ISC BIND | =9.7.6-p1 | |
| ISC BIND | =9.7.6-p2 | |
| ISC BIND | =9.7.7 | |
| ISC BIND | =9.8.0 | |
| ISC BIND | =9.8.0-a1 | |
| ISC BIND | =9.8.0-b1 | |
| ISC BIND | =9.8.0-p1 | |
| ISC BIND | =9.8.0-p2 | |
| ISC BIND | =9.8.0-p4 | |
| ISC BIND | =9.8.0-rc1 | |
| ISC BIND | =9.8.1 | |
| ISC BIND | =9.8.1-b1 | |
| ISC BIND | =9.8.1-b2 | |
| ISC BIND | =9.8.1-b3 | |
| ISC BIND | =9.8.1-p1 | |
| ISC BIND | =9.8.1-rc1 | |
| ISC BIND | =9.8.2-b1 | |
| ISC BIND | =9.8.2-rc1 | |
| ISC BIND | =9.8.2-rc2 | |
| ISC BIND | =9.8.3 | |
| ISC BIND | =9.8.3-p1 | |
| ISC BIND | =9.8.3-p2 | |
| ISC BIND | =9.8.4 | |
| ISC BIND | =9.8.5 | |
| ISC BIND | =9.8.5-b1 | |
| ISC BIND | =9.8.5-b2 | |
| ISC BIND | =9.8.5-p1 | |
| ISC BIND | =9.8.5-p2 | |
| ISC BIND | =9.8.5-rc1 | |
| ISC BIND | =9.8.5-rc2 | |
| ISC BIND | =9.8.6 | |
| ISC BIND | =9.8.6-b1 | |
| ISC BIND | =9.8.6-p1 | |
| ISC BIND | =9.8.6-rc1 | |
| ISC BIND | =9.8.6-rc2 | |
| ISC BIND | =9.9.4 | |
| ISC BIND | =9.9.4-p1 | |
| ISC BIND | =9.9.4-rc1 | |
| ISC BIND | =9.9.4-rc2 | |
| redhat/bind | <9.6 | 9.6 |
| redhat/bind | <9.8.6 | 9.8.6 |
| redhat/bind | <9.9.4 | 9.9.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archives.neohapsis.com/archives/bugtraq/2014-10/0103.html
- http://linux.oracle.com/errata/ELSA-2014-1244
- http://lists.fedoraproject.org/pipermail/package-announce/2014-January/126761.html
- http://lists.fedoraproject.org/pipermail/package-announce/2014-January/126772.html
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00009.html
- http://lists.opensuse.org/opensuse-updates/2014-02/msg00016.html
- http://lists.opensuse.org/opensuse-updates/2014-02/msg00019.html
- http://marc.info/?l=bugtraq&m=138995561732658&w=2
- http://osvdb.org/101973
- http://rhn.redhat.com/errata/RHSA-2014-0043.html
- http://secunia.com/advisories/56425
- http://secunia.com/advisories/56427
- http://secunia.com/advisories/56442
- http://secunia.com/advisories/56493
- http://secunia.com/advisories/56522
- http://secunia.com/advisories/56574
- http://secunia.com/advisories/56871
- http://secunia.com/advisories/61117
- http://secunia.com/advisories/61199
- http://secunia.com/advisories/61343
- http://www.debian.org/security/2014/dsa-3023
- http://www.freebsd.org/security/advisories/FreeBSD-SA-14:04.bind.asc
- http://www.mandriva.com/security/advisories?name=MDVSA-2014:002
- http://www.securityfocus.com/bid/64801
- http://www.securitytracker.com/id/1029589
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.518391
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.524465
- http://www.ubuntu.com/usn/USN-2081-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1051717
- https://kb.isc.org/article/AA-01078
- https://kb.isc.org/article/AA-01085
- https://support.apple.com/kb/HT6536
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=848662&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=848662&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=848664&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=848664&action=edit
- https://kb.isc.org/article/AA-01078/0
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1052708
- https://rhn.redhat.com/errata/RHSA-2014-0043.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1051717#c10
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1051717#c25
- https://sourceware.org/bugzilla/show_bug.cgi?id=12518
- http://article.gmane.org/gmane.comp.lib.glibc.alpha/15278
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=638477
- https://rhn.redhat.com/errata/RHSA-2014-1244.html
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2014-0591
- agent/software-canonical-lookup
- vendor/isc
- canonical/isc bind
- version/isc bind/9.6
- version/isc bind/9.6-r5_p1
- version/isc bind/9.6-r6_b1
- version/isc bind/9.6-r6_rc1
- version/isc bind/9.6-r6_rc2
- version/isc bind/9.6-r7_p1
- version/isc bind/9.6-r7_p2
- version/isc bind/9.6-r9_p1
- version/isc bind/9.6.0
- version/isc bind/9.6.0-p1
- version/isc bind/9.6.0-rc1
- version/isc bind/9.6.0-rc2
- version/isc bind/9.6.1
- version/isc bind/9.6.1-p1
- version/isc bind/9.6.1-p2
- version/isc bind/9.6.1-p3
- version/isc bind/9.6.1-rc1
- version/isc bind/9.6.2
- version/isc bind/9.6.2-rc1
- version/isc bind/9.6.3
- version/isc bind/9.6.3-rc1
- version/isc bind/9.7.0
- version/isc bind/9.7.0-b1
- version/isc bind/9.7.0-p1
- version/isc bind/9.7.0-p2
- version/isc bind/9.7.0-rc1
- version/isc bind/9.7.0-rc2
- version/isc bind/9.7.1
- version/isc bind/9.7.1-p1
- version/isc bind/9.7.1-p2
- version/isc bind/9.7.1-rc1
- version/isc bind/9.7.2
- version/isc bind/9.7.2-p1
- version/isc bind/9.7.2-p2
- version/isc bind/9.7.2-p3
- version/isc bind/9.7.2-rc1
- version/isc bind/9.7.3
- version/isc bind/9.7.3-b1
- version/isc bind/9.7.3-p1
- version/isc bind/9.7.3-rc1
- version/isc bind/9.7.4
- version/isc bind/9.7.4-b1
- version/isc bind/9.7.4-p1
- version/isc bind/9.7.4-rc1
- version/isc bind/9.7.5
- version/isc bind/9.7.5-b1
- version/isc bind/9.7.5-rc1
- version/isc bind/9.7.5-rc2
- version/isc bind/9.7.6
- version/isc bind/9.7.6-p1
- version/isc bind/9.7.6-p2
- version/isc bind/9.7.7
- version/isc bind/9.8.0
- version/isc bind/9.8.0-a1
- version/isc bind/9.8.0-b1
- version/isc bind/9.8.0-p1
- version/isc bind/9.8.0-p2
- version/isc bind/9.8.0-p4
- version/isc bind/9.8.0-rc1
- version/isc bind/9.8.1
- version/isc bind/9.8.1-b1
- version/isc bind/9.8.1-b2
- version/isc bind/9.8.1-b3
- version/isc bind/9.8.1-p1
- version/isc bind/9.8.1-rc1
- version/isc bind/9.8.2-b1
- version/isc bind/9.8.2-rc1
- version/isc bind/9.8.2-rc2
- version/isc bind/9.8.3
- version/isc bind/9.8.3-p1
- version/isc bind/9.8.3-p2
- version/isc bind/9.8.4
- version/isc bind/9.8.5
- version/isc bind/9.8.5-b1
- version/isc bind/9.8.5-b2
- version/isc bind/9.8.5-p1
- version/isc bind/9.8.5-p2
- version/isc bind/9.8.5-rc1
- version/isc bind/9.8.5-rc2
- version/isc bind/9.8.6
- version/isc bind/9.8.6-b1
- version/isc bind/9.8.6-p1
- version/isc bind/9.8.6-rc1
- version/isc bind/9.8.6-rc2
- version/isc bind/9.9.4
- version/isc bind/9.9.4-p1
- version/isc bind/9.9.4-rc1
- version/isc bind/9.9.4-rc2
- package-manager/redhat