DSA-5504-1 bind9 -- bind9ID: oval:org.secpod.oval:def:612676 | Date: (C)2023-10-20 (M)2024-04-25 |
Class: PATCH | Family: unix |
Several vulnerabilities were discovered in BIND, a DNS server implementation. CVE-2023-3341 A stack exhaustion flaw was discovered in the control channel code which may result in denial of service . CVE-2023-4236 Robert Story discovered that a flaw in the networking code handling DNS-over-TLS queries could cause named to terminate unexpectedly due to an assertion failure, resulting in denial of service when under high DNS-over-TLS query load conditions.
Platform: |
Debian 12.x |
Debian 11.x |