Exceeding the recursive-clients quota may cause named to terminate unexpectedly when stale-answer-client-timeout is set to 0
CVE-2023-2911

7.5HIGH

Key Information:

Vendor: Isc
Status: Bind 9
Vendor: CVE Published:; 21 June 2023

Badges

👾 Exploit Exists

Summary

A critical issue has been identified in BIND 9 resolvers, where if the 'recursive-clients' quota is met alongside configurations that enable stale answers, a series of related queries can lead to an unexpected loop and crash of the 'named' service due to stack overflow. This affects multiple versions of BIND 9, necessitating immediate attention from system administrators to mitigate potential disruptions.

Affected Version(s)

BIND 9 9.16.33 <= 9.16.41

BIND 9 9.18.7 <= 9.18.15

BIND 9 9.16.33-S1 <= 9.16.41-S1

References

https://kb.isc.org/docs/cve-2023-2911

vendor-advisory

http://www.openwall.com/lists/oss-security/2023/06/21/6

https://lists.fedoraproject.org/archives/list/package-ann...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Dec 6, 2024
Vulnerability published
Jun 21, 2023
Vulnerability Reserved
May 26, 2023