CVE-2020-8618
Summary
| CVE | CVE-2020-8618 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2020-06-17 22:15:00 UTC |
|---|
| Updated | 2022-10-07 13:08:00 UTC |
|---|
| Description | An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clients. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| [security-announce] openSUSE-SU-2020:1699-1: moderate: Security update f |
SUSE |
lists.opensuse.org |
|
| CVE-2020-8618: A buffer boundary check assertion in rdataset.c can fail incorrectly during zone transfer - Security Advisories |
CONFIRM |
kb.isc.org |
Vendor Advisory |
| USN-4399-1: Bind vulnerabilities | Ubuntu security notices | Ubuntu |
UBUNTU |
usn.ubuntu.com |
|
| June 2020 ISC BIND Vulnerabilities in NetApp Products | NetApp Product Security |
CONFIRM |
security.netapp.com |
|
| [security-announce] openSUSE-SU-2020:1701-1: moderate: Security update f |
SUSE |
lists.opensuse.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 296073 Oracle Solaris 11.4 Support Repository Update (SRU) 24.75.2 Missing (CPUJUL2020)
- 500063 Alpine Linux Security Update for bind
- 503742 Alpine Linux Security Update for bind
- 900157 CBL-Mariner Linux Security Update for bind 9.16.3
- 903541 Common Base Linux Mariner (CBL-Mariner) Security Update for bind (1833)
