exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 6 of 6 RSS Feed

CVE-2018-5745

Status Candidate

Overview

"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertion failure if, during key rollover, a trust anchor's keys are replaced with keys which use an unsupported algorithm. Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.5-P1, 9.12.0 -> 9.12.3-P1, and versions 9.9.3-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2018-5745.

Related Files

Red Hat Security Advisory 2020-1277-01
Posted Apr 8, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1277-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a memory exhaustion vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2018-5745, CVE-2019-6465, CVE-2019-6477, CVE-2020-8551
SHA-256 | e78a3f5bd1906258b16f8c88b1ff05f08a6927930880ae41d263adbc06c45948
Download | Favorite | View
Red Hat Security Advisory 2020-1061-01
Posted Apr 1, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1061-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2018-5745, CVE-2019-6465, CVE-2019-6477
SHA-256 | 4be107c7daae6d560e0c19069871e3ae2114fd301c531cf841a98c520a0f85bf
Download | Favorite | View
Red Hat Security Advisory 2019-3552-01
Posted Nov 6, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3552-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. An assertion failure and incorrect controls for zone transfers were addressed.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2018-5745, CVE-2019-6465
SHA-256 | 02b54c68b16961c7a1dfea8b30cf5a3b55f4b453f7cc45c1c6c0b687184a43f2
Download | Favorite | View
Debian Security Advisory 4440-1
Posted May 9, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4440-1 - Multiple vulnerabilities were found in the BIND DNS server.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2018-5743, CVE-2018-5745, CVE-2019-6465
SHA-256 | f70a908b954d4b5ace79a2dea1e66f41bfc723be1ea3c500239d6be2254e57ad
Download | Favorite | View
Ubuntu Security Notice USN-3893-2
Posted Feb 25, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3893-2 - USN-3893-1 fixed a vulnerability in Bind. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that Bind incorrectly handled certain trust anchors when used with the "managed-keys" feature. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-5745, CVE-2019-6465
SHA-256 | 5778c1cb4220b77f63b382b2f6f6fefc45a291726a7d9add67768de05ae881ab
Download | Favorite | View
Ubuntu Security Notice USN-3893-1
Posted Feb 22, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3893-1 - Toshifumi Sakaguchi discovered that Bind incorrectly handled memory. A remote attacker could possibly use this issue to cause Bind to consume resources, leading to a denial of service. This issue only affected Ubuntu 18.04 LTS and Ubuntu 18.10. It was discovered that Bind incorrectly handled certain trust anchors when used with the "managed-keys" feature. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-5744, CVE-2018-5745, CVE-2019-6465
SHA-256 | d764a48abf0e545fcb7ac51dfc66b540808772988998742ed8bf5aa6f538b5b8
Download | Favorite | View
Page 1 of 1
Back1Next

File Archive:

May 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    44 Files
  • 2
    May 2nd
    5 Files
  • 3
    May 3rd
    11 Files
  • 4
    May 4th
    0 Files
  • 5
    May 5th
    0 Files
  • 6
    May 6th
    28 Files
  • 7
    May 7th
    3 Files
  • 8
    May 8th
    4 Files
  • 9
    May 9th
    54 Files
  • 10
    May 10th
    12 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    17 Files
  • 14
    May 14th
    11 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    13 Files
  • 17
    May 17th
    0 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    0 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close