Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-4408

The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. This issue affects both authoritative servers and recursive resolvers. This issue affects BIND 9 versions 9.0.0 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

Published

2024-02-13T14:15:45.253

Last Modified

2025-03-14T17:15:40.310

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo
Type: Secondary
CWE-407

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	netapp	ontap	9.14.1	Yes
Application	netapp	ontap	9.15.1	Yes
Operating System	fedoraproject	fedora	38	Yes
Operating System	fedoraproject	fedora	39	Yes
Application	isc	bind	≤ 9.16.45	Yes
Application	isc	bind	≤ 9.18.21	Yes
Application	isc	bind	≤ 9.19.19	Yes
Application	isc	bind	9.9.3	Yes
Application	isc	bind	9.16.8	Yes
Application	isc	bind	9.16.11	Yes
Application	isc	bind	9.16.12	Yes
Application	isc	bind	9.16.13	Yes
Application	isc	bind	9.16.14	Yes
Application	isc	bind	9.16.21	Yes
Application	isc	bind	9.16.32	Yes
Application	isc	bind	9.16.36	Yes
Application	isc	bind	9.16.43	Yes
Application	isc	bind	9.18.0	Yes
Application	isc	bind	9.18.11	Yes
Application	isc	bind	9.18.18	Yes

References

http://www.openwall.com/lists/oss-security/2024/02/13/1 Mailing List, Third Party Advisory ([email protected])
https://kb.isc.org/docs/cve-2023-4408 Vendor Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/ Mailing List, Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/ Mailing List, Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/ Mailing List, Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/[email protected]/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/ Mailing List, Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20240426-0001/ Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2024/02/13/1 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://kb.isc.org/docs/cve-2023-4408 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/[email protected]/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/ Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20240426-0001/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)