Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-4236

A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18 and 9.18.11-S1 through 9.18.18-S1.

Published

2023-09-20T13:15:12.313

Last Modified

2024-11-21T08:34:41.190

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
CWE-617

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	isc	bind	< 9.18.18	Yes
Application	isc	bind	9.18.11	Yes
Application	isc	bind	9.18.18	Yes
Operating System	fedoraproject	fedora	37	Yes
Operating System	fedoraproject	fedora	38	Yes
Operating System	fedoraproject	fedora	39	Yes
Operating System	debian	debian_linux	10.0	Yes
Operating System	debian	debian_linux	11.0	Yes
Operating System	netapp	h300s_firmware	-	Yes
Hardware	netapp	h300s	-	No
Operating System	netapp	h500s_firmware	-	Yes
Hardware	netapp	h500s	-	No
Operating System	netapp	h700s_firmware	-	Yes
Hardware	netapp	h700s	-	No
Operating System	netapp	h410s_firmware	-	Yes
Hardware	netapp	h410s	-	No
Operating System	netapp	h410c_firmware	-	Yes
Hardware	netapp	h410c	-	No

References

http://www.openwall.com/lists/oss-security/2023/09/20/2 Mailing List, Third Party Advisory ([email protected])
https://kb.isc.org/docs/cve-2023-4236 Vendor Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/IPJLLTJCSDJJII7IIZPLTBQNWP7MZH7F/ Mailing List ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/U35OARLQCPMVCBBPHWBXY5M6XJLD2TZ5/ Mailing List ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/VSK5V4W4OHPM3JTJGWAQD6CZW7SFD75B/ Mailing List, Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20231013-0004/ Third Party Advisory ([email protected])
https://www.debian.org/security/2023/dsa-5504 Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2023/09/20/2 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://kb.isc.org/docs/cve-2023-4236 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/IPJLLTJCSDJJII7IIZPLTBQNWP7MZH7F/ Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/U35OARLQCPMVCBBPHWBXY5M6XJLD2TZ5/ Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/VSK5V4W4OHPM3JTJGWAQD6CZW7SFD75B/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20231013-0004/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2023/dsa-5504 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)