Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
A possible assertion failure when 'stale-answer-client-timeout' is set to '0'
Vulnerability Description
If a `named` caching resolver is configured with `serve-stale-enable` `yes`, and with `stale-answer-client-timeout` set to `0` (the only allowable value other than `disabled`), and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or authoritative records, the daemon will abort with an assertion failure. This issue affects BIND 9 versions 9.20.0 through 9.20.10, 9.21.0 through 9.21.9, and 9.20.9-S1 through 9.20.10-S1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
可达断言
Vulnerability Title
ISC BIND 9 安全漏洞
Vulnerability Description
ISC BIND 9是ISC组织的一个域名系统软件。 ISC BIND 9存在安全漏洞,该漏洞源于断言失败,可能导致服务中止。以下版本受到影响:9.20.0至9.20.10版本、9.21.0至9.21.9版本和9.20.9-S1至9.20.10-S1版本。
CVSS Information
N/A
Vulnerability Type
N/A