FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-22 18:21:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
cb252f01-7c43-11e3-b0a6-005056a37f68	bind -- denial of service vulnerability ISC reports: Because of a defect in handling queries for NSEC3-signed zones, BIND can crash with an "INSIST" failure in name.c when processing queries possessing certain properties. By exploiting this defect an attacker deliberately constructing a query with the right properties could achieve denial of service against an authoritative nameserver serving NSEC3-signed zones. Discovery 2014-01-08 Entry 2014-01-13 Modified 2016-08-09 bind99 < 9.9.4.2 bind99-base < 9.9.4.2 bind98 < 9.8.6.2 bind98-base < 9.8.6.2 bind96 < 9.6.3.2.ESV.R10.2 bind96-base < 9.6.3.2.ESV.R10.2 FreeBSD ge 9.2 lt 9.2_3 ge 9.1 lt 9.1_10 ge 8.4 lt 8.4_7 ge 8.3 lt 8.3_14 CVE-2014-0591 SA-14:04.bind https://kb.isc.org/article/AA-01078/74/

VuXML ID

Description

cb252f01-7c43-11e3-b0a6-005056a37f68

bind -- denial of service vulnerability

ISC reports:

Because of a defect in handling queries for NSEC3-signed zones, BIND can crash with an "INSIST" failure in name.c when processing queries possessing certain properties. By exploiting this defect an attacker deliberately constructing a query with the right properties could achieve denial of service against an authoritative nameserver serving NSEC3-signed zones.

Discovery 2014-01-08
Entry 2014-01-13
Modified 2016-08-09
bind99

< 9.9.4.2

bind99-base

< 9.9.4.2

bind98

< 9.8.6.2

bind98-base

< 9.8.6.2

bind96

< 9.6.3.2.ESV.R10.2

bind96-base

< 9.6.3.2.ESV.R10.2

FreeBSD

ge 9.2 lt 9.2_3

ge 9.1 lt 9.1_10

ge 8.4 lt 8.4_7

ge 8.3 lt 8.3_14

CVE-2014-0591
SA-14:04.bind
https://kb.isc.org/article/AA-01078/74/