CVE-2022-0635
First published: Wed Mar 23 2022(Updated: )
Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific queries, the named process will eventually terminate due to a failed assertion check.
Credit: security-officer@isc.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ISC BIND 9 | =9.18.0 | |
| NetApp Baseboard Management Controller Firmware | ||
| NetApp Baseboard Management Controller H300S | ||
| NetApp Baseboard Management Controller Firmware | ||
| NetApp Baseboard Management Controller H500S | ||
| NetApp Baseboard Management Controller Firmware | ||
| NetApp Baseboard Management Controller H700S | ||
| NetApp Baseboard Management Controller Firmware | ||
| NetApp Baseboard Management Controller H300E | ||
| NetApp Baseboard Management Controller H500E Firmware | ||
| NetApp Baseboard Management Controller H500E Firmware | ||
| NetApp Baseboard Management Controller H700E Firmware | ||
| NetApp Baseboard Management Controller H700E Firmware | ||
| NetApp Baseboard Management Controller Firmware | ||
| NetApp Baseboard Management Controller H410S | ||
| NetApp Baseboard Management Controller H410C | ||
| NetApp Baseboard Management Controller H410C Firmware | ||
| NetApp H300S Firmware | ||
| NetApp H300S Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H700S | ||
| NetApp H700S | ||
| NetApp H300E | ||
| NetApp H300E Firmware | ||
| NetApp H500S Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H700E | ||
| NetApp H700E | ||
| NetApp H410S | ||
| NetApp H410S Firmware | ||
| NetApp H410C | ||
| NetApp H410C Firmware |
Remedy
Users of BIND 9.18.0 should upgrade to BIND 9.18.1
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-0635?
The severity of CVE-2022-0635 is high, with a severity value of 7.5.
Which versions of BIND are affected by CVE-2022-0635?
BIND 9.18.0 is affected by CVE-2022-0635.
What is the impact of CVE-2022-0635?
CVE-2022-0635 can cause the named process in BIND to terminate due to a failed assertion check.
How can I fix CVE-2022-0635 in BIND?
Updating BIND to a non-vulnerable version, such as upgrading to a version beyond 9.18.0, can fix CVE-2022-0635.
Are Netapp Baseboard Management Controller (BMC) devices vulnerable to CVE-2022-0635?
No, Netapp Baseboard Management Controller (BMC) devices, including H300s, H500s, H700s, H300e, H500e, H700e, H410s, and H410c, are not vulnerable to CVE-2022-0635.
- agent/references
- agent/type
- agent/weakness
- agent/description
- agent/severity
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- agent/event
- agent/source
- agent/author
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- vendor/isc
- canonical/isc bind 9
- version/isc bind 9/9.18.0
- vendor/netapp
- canonical/netapp baseboard management controller firmware
- canonical/netapp baseboard management controller h300s
- canonical/netapp baseboard management controller h500s
- canonical/netapp baseboard management controller h700s
- canonical/netapp baseboard management controller h300e
- canonical/netapp baseboard management controller h500e firmware
- canonical/netapp baseboard management controller h700e firmware
- canonical/netapp baseboard management controller h410s
- canonical/netapp baseboard management controller h410c
- canonical/netapp baseboard management controller h410c firmware
- canonical/netapp h300s firmware
- canonical/netapp h500e firmware
- canonical/netapp h700s
- canonical/netapp h300e
- canonical/netapp h300e firmware
- canonical/netapp h500s firmware
- canonical/netapp h700e
- canonical/netapp h410s
- canonical/netapp h410s firmware
- canonical/netapp h410c
- canonical/netapp h410c firmware