Knowledge Base ISC Main Website Ask a Question/Contact ISC
Quick Jump Menu
21 CVE-2012-5166 FAQ and Supplemental Information

About This Document For up to date information on this vulnerability, patches, and other operational information, please see the official vulnerability announcement. This article is intended to supplement the information in that announcement and will be updated…

22 CVE-2012-5166: Specially crafted DNS data can cause a lockup in named

A nameserver can be locked up if it can be induced to load a specially crafted combination of resource records. CVE: CVE-2012-5166 Document Version: 2.1 Posting date: 9 October 2012 Program Impacted: BIND Versions affected: 9.2.x -> 9.6.x, 9.4-ESV->9.4-ESV-R5-P1,…

23 CVE-2012-4244: A specially crafted Resource Record could cause named to terminate

A nameserver can be caused to exit with a REQUIRE exception if it can be induced to load a specially crafted resource record. CVE: CVE-2012-4244 Document Version: 2.0 Posting date: 12 September 2012 Program Impacted: BIND Versions affected: 9.0.x -> 9.6.x,…

24 CVE-2012-3817 FAQ and Supplemental Information

About This Document For up to date information on this vulnerability, patches, and other operational information, please see the official vulnerability announcement. This article is intended to supplement the information in that announcement and will be updated…

25 CVE-2012-3868: High TCP Query Load Can Trigger a Memory Leak in BIND 9

Title: High TCP Query Load Can Trigger a Memory Leak in BIND 9 Summary: Under heavy incoming TCP query loads named experiences a memory leak which may lead to significant reductions in query response performance. Additionally, this can trigger an automatic…

26 CVE-2012-3817: Heavy DNSSEC Validation Load Can Cause a "Bad Cache" Assertion Failure in BIND9

Title: Heavy DNSSEC Validation Load Can Cause a "Bad Cache" Assertion Failure in BIND9 Summary: High numbers of queries with DNSSEC validation enabled can cause an assertion failure in named, caused by using a "bad cache" data structure before it has been…

27 CVE-2012-1667 FAQ and Supplemental Information

About This Document For up to date information on this vulnerability, patches, and other operational information, please see the official vulnerability announcement. This article is intended to supplement the information in that announcement and will be updated…

28 CVE-2012-1667: Handling of zero length rdata can cause named to terminate unexpectedly

Processing of DNS resource records where the rdata field is zero length may cause various issues for the servers handling them. CVE: CVE-2012-1667 Document Version: 1.4 Posting date: 04 Jun 2012 Program Impacted: BIND Versions affected: 9.0.x -> 9.6.x,…

29 CVE-2012-1033: Ghost Domain Names: Revoked Yet Still Resolvable

After completing our analysis of the DNS exploit reported by Professor Haixin Duan of Tsinghua University, ISC has determined that the behavior he describes, while verifiable, is due to design issues in the DNS protocol. No immediate steps are planned to…

30 CVE-2011-4313 FAQ and Supplemental Information

About This Document For up to date information on this vulnerability, patches, and other operational information, please see the official vulnerability announcement. This article is intended to supplement the information in that announcement and will be updated…