FreshPorts - VuXML

ISC reports:

An incorrect boundary check in openpgpkey_61.c can cause named to terminate due to a REQUIRE assertion failure. This defect can be deliberately exploited by an attacker who can provide a maliciously constructed response in answer to a query.

ge 9.9.7 lt 9.9.7P3

< 9.10.2P4

gt 0

ISC reports:

When configured to perform DNSSEC validation, named can crash when encountering a rare set of conditions in the managed trust anchors.

< 9.10.1P2

< 9.9.6P2

ge 9.3 lt 9.3_10

ge 8.4 lt 8.4_24

ISC reports:

An error in the handling of TKEY queries can be exploited by an attacker for use as a denial-of-service vector, as a constructed packet can use the defect to trigger a REQUIRE assertion failure, causing BIND to exit.

< 9.10.2P3

< 9.9.7P2

gt 0

ge 9.3 lt 9.3_21

ge 8.4 lt 8.4_35

ISC reports:

A very uncommon combination of zone data has been found that triggers a bug in BIND, with the result that named will exit with a "REQUIRE" failure in name.c when validating the data returned in answer to a recursive query.

A recursive resolver that is performing DNSSEC validation can be deliberately terminated by any attacker who can cause a query to be performed against a maliciously constructed zone. This will result in a denial of service to clients who rely on that resolver.

< 9.10.2P2

< 9.9.7P1

gt 0

ge 9.3 lt 9.3_19

ge 8.4 lt 8.4_33

ISC reports:

Parsing a malformed DNSSEC key can cause a validating resolver to exit due to a failed assertion in buffer.c. It is possible for a remote attacker to deliberately trigger this condition, for example by using a query which requires a response from a zone containing a deliberately malformed key.

< 9.9.7P3

ge 9.10.2 lt 9.10.2P4

gt 0

ge 9.3 lt 9.3_25