First published: Tue Apr 09 2024(Updated: )
Elias Heftrig, Haya Schulmann, Niklas Vogel, and Michael Waidner discovered that Bind icorrectly handled validating DNSSEC messages. A remote attacker could possibly use this issue to cause Bind to consume resources, leading to a denial of service. (CVE-2023-50387) It was discovered that Bind incorrectly handled preparing an NSEC3 closest encloser proof. A remote attacker could possibly use this issue to cause Bind to consume resources, leading to a denial of service. (CVE-2023-50868)
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/bind9 | <1:9.11.3+dfsg-1ubuntu1.19+esm3 | 1:9.11.3+dfsg-1ubuntu1.19+esm3 |
Ubuntu Ubuntu | =18.04 | |
All of | ||
ubuntu/bind9 | <1:9.10.3.dfsg.P4-8ubuntu1.19+esm8 | 1:9.10.3.dfsg.P4-8ubuntu1.19+esm8 |
Ubuntu Ubuntu | =16.04 | |
All of | ||
ubuntu/bind9 | <1:9.9.5.dfsg-3ubuntu0.19+esm12 | 1:9.9.5.dfsg-3ubuntu0.19+esm12 |
Ubuntu Ubuntu | =14.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.