Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-3341

The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing `named` to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary. This issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.

Published

2023-09-20T13:15:11.770

Last Modified

2024-11-21T08:17:03.370

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	isc	bind	< 9.16.44	Yes
Application	isc	bind	< 9.18.19	Yes
Application	isc	bind	< 9.19.17	Yes
Application	isc	bind	9.9.3	Yes
Application	isc	bind	9.9.12	Yes
Application	isc	bind	9.9.13	Yes
Application	isc	bind	9.10.5	Yes
Application	isc	bind	9.10.7	Yes
Application	isc	bind	9.11.3	Yes
Application	isc	bind	9.11.3	Yes
Application	isc	bind	9.11.4	Yes
Application	isc	bind	9.11.5	Yes
Application	isc	bind	9.11.5	Yes
Application	isc	bind	9.11.5	Yes
Application	isc	bind	9.11.6	Yes
Application	isc	bind	9.11.7	Yes
Application	isc	bind	9.11.8	Yes
Application	isc	bind	9.11.12	Yes
Application	isc	bind	9.11.21	Yes
Application	isc	bind	9.11.27	Yes
Application	isc	bind	9.11.29	Yes
Application	isc	bind	9.11.35	Yes
Application	isc	bind	9.11.37	Yes
Application	isc	bind	9.16.8	Yes
Application	isc	bind	9.16.11	Yes
Application	isc	bind	9.16.12	Yes
Application	isc	bind	9.16.13	Yes
Application	isc	bind	9.16.14	Yes
Application	isc	bind	9.16.21	Yes
Application	isc	bind	9.16.32	Yes
Application	isc	bind	9.16.36	Yes
Application	isc	bind	9.16.43	Yes
Application	isc	bind	9.18.0	Yes
Application	isc	bind	9.18.18	Yes
Operating System	fedoraproject	fedora	37	Yes
Operating System	fedoraproject	fedora	38	Yes
Operating System	debian	debian_linux	10.0	Yes
Operating System	debian	debian_linux	11.0	Yes

References

http://www.openwall.com/lists/oss-security/2023/09/20/2 Mailing List, Patch ([email protected])
https://kb.isc.org/docs/cve-2023-3341 Vendor Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2024/01/msg00021.html Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/IPJLLTJCSDJJII7IIZPLTBQNWP7MZH7F/ Mailing List ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/U35OARLQCPMVCBBPHWBXY5M6XJLD2TZ5/ Mailing List ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/VSK5V4W4OHPM3JTJGWAQD6CZW7SFD75B/ Mailing List, Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20231013-0003/ Third Party Advisory ([email protected])
https://www.debian.org/security/2023/dsa-5504 Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2023/09/20/2 Mailing List, Patch (af854a3a-2127-422b-91ae-364da2661108)
https://kb.isc.org/docs/cve-2023-3341 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2024/01/msg00021.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/IPJLLTJCSDJJII7IIZPLTBQNWP7MZH7F/ Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/U35OARLQCPMVCBBPHWBXY5M6XJLD2TZ5/ Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/VSK5V4W4OHPM3JTJGWAQD6CZW7SFD75B/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20231013-0003/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2023/dsa-5504 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)