CVE-2014-8680: Input Validation
First published: Thu Dec 11 2014(Updated: )
The GeoIP functionality in ISC BIND 9.10.0 through 9.10.1 allows remote attackers to cause a denial of service (assertion failure and named exit) via vectors related to (1) the lack of GeoIP databases for both IPv4 and IPv6, or (2) IPv6 support with certain options.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| BIND 9 | =9.10.0 | |
| BIND 9 | =9.10.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-8680?
CVE-2014-8680 has a critical severity level as it allows remote attackers to cause denial of service.
How do I fix CVE-2014-8680?
To fix CVE-2014-8680, upgrade ISC BIND to version 9.10.2 or later where the GeoIP functionality has been patched.
What versions of ISC BIND are affected by CVE-2014-8680?
CVE-2014-8680 affects ISC BIND versions 9.10.0 and 9.10.1.
What types of attacks does CVE-2014-8680 enable?
CVE-2014-8680 enables remote denial of service attacks through assertion failures in the GeoIP functionality.
Is CVE-2014-8680 related to IPv4 or IPv6?
CVE-2014-8680 is related to both IPv4 and IPv6, specifically the lack of GeoIP databases and certain IPv6 options.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/references
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/isc
- canonical/bind 9
- version/bind 9/9.10.0
- version/bind 9/9.10.1