CVE-2018-5740
A flaw in the "deny-answer-aliases" feature can cause an assertion failure in named
In short
A bug in BIND's "deny-answer-aliases" security feature causes the DNS server to crash unexpectedly. This feature is designed to protect users from DNS rebinding attacks, but the flaw makes it unstable when enabled.
Technical detail
The "deny-answer-aliases" feature in BIND contains a logic defect that triggers an assertion failure in name.c, causing denial of service. An attacker can craft DNS queries to exploit this flaw when the feature is active, resulting in server crash. Affects BIND 9.7.0–9.8.8, 9.9.0–9.9.13, 9.10.0–9.10.8, 9.11.0–9.11.4, 9.12.0–9.12.2, and 9.13.0–9.13.2.
Summary generated and translated by AI from the official description.
"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an assertion failure in name.c. Affects BIND 9.7.0->9.8.8, 9.9.0->9.9.13, 9.10.0->9.10.8, 9.11.0->9.11.4, 9.12.0->9.12.2, 9.13.0->9.13.2.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
ISC · BIND 9Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00026.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-06/msg00027.htmlhttps://access.redhat.com/errata/RHSA-2018:2570https://access.redhat.com/errata/RHSA-2018:2571https://kb.isc.org/docs/aa-01639https://lists.debian.org/debian-lts-announce/2018/08/msg00033.htmlhttps://lists.debian.org/debian-lts-announce/2021/11/msg00001.htmlhttps://security.gentoo.org/glsa/201903-13https://security.netapp.com/advisory/ntap-20180926-0003/https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03927en_ushttps://usn.ubuntu.com/3769-1/https://usn.ubuntu.com/3769-2/