Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-3736 (GCVE-0-2022-3736)
Vulnerability from cvelistv5 – Published: 2023-01-25 21:39 – Updated: 2025-04-01 14:10
VLAI
EPSS
Title
named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries
Summary
BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.
This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.
Severity
7.5 (High)
CWE
- n/a
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://kb.isc.org/docs/cve-2022-3736 | vendor-advisory |
Impacted products
Date Public
2023-01-25 00:00
Credits
ISC would like to thank Borja Marcos from Sarenet (with assistance by Iratxe Niño from Fundación Sarenet) for bringing this vulnerability to our attention.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T01:20:57.535Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "CVE-2022-3736",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://kb.isc.org/docs/cve-2022-3736"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-3736",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-01T14:10:30.864635Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-01T14:10:47.439Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "BIND 9",
"vendor": "ISC",
"versions": [
{
"lessThanOrEqual": "9.16.36",
"status": "affected",
"version": "9.16.12",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.18.10",
"status": "affected",
"version": "9.18.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.19.8",
"status": "affected",
"version": "9.19.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.16.36-S1",
"status": "affected",
"version": "9.16.12-S1",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "ISC would like to thank Borja Marcos from Sarenet (with assistance by Iratxe Ni\u00f1o from Fundaci\u00f3n Sarenet) for bringing this vulnerability to our attention."
}
],
"datePublic": "2023-01-25T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.\nThis issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1."
}
],
"exploits": [
{
"lang": "en",
"value": "We are not aware of any active exploits."
}
],
"impacts": [
{
"descriptions": [
{
"lang": "en",
"value": "By sending specific queries to the resolver, an attacker can cause `named` to crash."
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-01-26T06:03:10.975Z",
"orgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"shortName": "isc"
},
"references": [
{
"name": "CVE-2022-3736",
"tags": [
"vendor-advisory"
],
"url": "https://kb.isc.org/docs/cve-2022-3736"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to the patched release most closely related to your current version of BIND 9: 9.16.37, 9.18.11, 9.19.9, or 9.16.37-S1."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries",
"workarounds": [
{
"lang": "en",
"value": "Setting `stale-answer-client-timeout` to `0` or to `off/disabled` will prevent BIND from crashing due to this issue."
}
]
}
},
"cveMetadata": {
"assignerOrgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"assignerShortName": "isc",
"cveId": "CVE-2022-3736",
"datePublished": "2023-01-25T21:39:18.187Z",
"dateReserved": "2022-10-28T07:04:32.966Z",
"dateUpdated": "2025-04-01T14:10:47.439Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-3736",
"date": "2026-05-29",
"epss": "0.02526",
"percentile": "0.85677"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-3736\",\"sourceIdentifier\":\"security-officer@isc.org\",\"published\":\"2023-01-26T21:15:57.940\",\"lastModified\":\"2025-04-01T15:15:53.150\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.\\nThis issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.\"},{\"lang\":\"es\",\"value\":\"El solucionador BIND 9 puede fallar cuando el cach\u00e9 obsoleto y las respuestas obsoletas est\u00e1n habilitados, la opci\u00f3n `stale-answer-client-timeout` est\u00e1 configurada en un entero positivo y el solucionador recibe una consulta RRSIG. Este problema afecta a las versiones de BIND 9, 9.16.12 a 9.16.36, 9.18.0 a 9.18.10, 9.19.0 a 9.19.8 y 9.16.12-S1 a 9.16.36-S1.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-officer@isc.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"9.16.12\",\"versionEndExcluding\":\"9.16.37\",\"matchCriteriaId\":\"FC5F91EF-B660-42FF-9B48-880299C9A128\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"9.18.0\",\"versionEndExcluding\":\"9.18.11\",\"matchCriteriaId\":\"92119B97-ADE6-47C0-B3E2-3B05C08A0B99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"9.19.0\",\"versionEndExcluding\":\"9.19.9\",\"matchCriteriaId\":\"CB820E6D-F56C-4222-A3FF-3A02266FD68B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.16.11:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"3595F024-F910-4356-8B5B-D478960FF574\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.16.13:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"94661BA2-27F8-4FFE-B844-9404F735579D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.16.14:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"53593603-E2AF-4925-A6E6-109F097A0FF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.16.21:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"751E37C2-8BFD-4306-95C1-8C01CE495FA4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.16.32:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"CC432820-F1A2-4132-A673-2620119553C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:9.16.36:s1:*:*:supported_preview:*:*:*\",\"matchCriteriaId\":\"F70347F2-6750-4497-B8F4-2036F4F4443A\"}]}]}],\"references\":[{\"url\":\"https://kb.isc.org/docs/cve-2022-3736\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://kb.isc.org/docs/cve-2022-3736\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://kb.isc.org/docs/cve-2022-3736\", \"name\": \"CVE-2022-3736\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T01:20:57.535Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-3736\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-01T14:10:30.864635Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20 Improper Input Validation\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-01T14:10:42.808Z\"}}], \"cna\": {\"title\": \"named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"value\": \"ISC would like to thank Borja Marcos from Sarenet (with assistance by Iratxe Ni\\u00f1o from Fundaci\\u00f3n Sarenet) for bringing this vulnerability to our attention.\"}], \"impacts\": [{\"descriptions\": [{\"lang\": \"en\", \"value\": \"By sending specific queries to the resolver, an attacker can cause `named` to crash.\"}]}], \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"ISC\", \"product\": \"BIND 9\", \"versions\": [{\"status\": \"affected\", \"version\": \"9.16.12\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.16.36\"}, {\"status\": \"affected\", \"version\": \"9.18.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.18.10\"}, {\"status\": \"affected\", \"version\": \"9.19.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.19.8\"}, {\"status\": \"affected\", \"version\": \"9.16.12-S1\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.16.36-S1\"}], \"defaultStatus\": \"unaffected\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"We are not aware of any active exploits.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Upgrade to the patched release most closely related to your current version of BIND 9: 9.16.37, 9.18.11, 9.19.9, or 9.16.37-S1.\"}], \"datePublic\": \"2023-01-25T00:00:00.000Z\", \"references\": [{\"url\": \"https://kb.isc.org/docs/cve-2022-3736\", \"name\": \"CVE-2022-3736\", \"tags\": [\"vendor-advisory\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Setting `stale-answer-client-timeout` to `0` or to `off/disabled` will prevent BIND from crashing due to this issue.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.\\nThis issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"404fd4d2-a609-4245-b543-2c944a302a22\", \"shortName\": \"isc\", \"dateUpdated\": \"2023-01-26T06:03:10.975Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-3736\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-01T14:10:47.439Z\", \"dateReserved\": \"2022-10-28T07:04:32.966Z\", \"assignerOrgId\": \"404fd4d2-a609-4245-b543-2c944a302a22\", \"datePublished\": \"2023-01-25T21:39:18.187Z\", \"assignerShortName\": \"isc\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
alsa-2023:2261
Vulnerability from osv_almalinux
Published
2023-05-09 00:00
Modified
2023-05-12 07:55
Summary
Moderate: bind security and bug fix update
Details
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
- bind: processing large delegations may severely degrade resolver performance (CVE-2022-2795)
- bind: flooding with UPDATE requests may lead to DoS (CVE-2022-3094)
- bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3736)
- bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3924)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References
{
"affected": [
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-chroot"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-dnssec-doc"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-dnssec-utils"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-doc"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-libs"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-license"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "bind-utils"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:9",
"name": "python3-bind"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-11.el9"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"details": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nSecurity Fix(es):\n\n* bind: processing large delegations may severely degrade resolver performance (CVE-2022-2795)\n* bind: flooding with UPDATE requests may lead to DoS (CVE-2022-3094)\n* bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3736)\n* bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3924)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.",
"id": "ALSA-2023:2261",
"modified": "2023-05-12T07:55:18Z",
"published": "2023-05-09T00:00:00Z",
"references": [
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2023:2261"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-2795"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-3094"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-3736"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-3924"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2128584"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2164032"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2164038"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2164039"
},
{
"type": "ADVISORY",
"url": "https://errata.almalinux.org/9/ALSA-2023-2261.html"
}
],
"related": [
"CVE-2022-2795",
"CVE-2022-3094",
"CVE-2022-3736",
"CVE-2022-3924"
],
"summary": "Moderate: bind security and bug fix update"
}
alsa-2023:2792
Vulnerability from osv_almalinux
Published
2023-05-16 00:00
Modified
2023-05-19 22:09
Summary
Moderate: bind9.16 security and bug fix update
Details
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
- bind: processing large delegations may severely degrade resolver performance (CVE-2022-2795)
- bind: flooding with UPDATE requests may lead to DoS (CVE-2022-3094)
- bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3736)
- bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3924)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References
| URL | Type | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"affected": [
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16-chroot"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16-dnssec-utils"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16-doc"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16-libs"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16-license"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "bind9.16-utils"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "python3-bind9.16"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "32:9.16.23-0.14.el8"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"details": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nSecurity Fix(es):\n\n* bind: processing large delegations may severely degrade resolver performance (CVE-2022-2795)\n* bind: flooding with UPDATE requests may lead to DoS (CVE-2022-3094)\n* bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3736)\n* bind: sending specific queries to the resolver may cause a DoS (CVE-2022-3924)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.",
"id": "ALSA-2023:2792",
"modified": "2023-05-19T22:09:48Z",
"published": "2023-05-16T00:00:00Z",
"references": [
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2023:2792"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-2795"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-3094"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-3736"
},
{
"type": "REPORT",
"url": "https://access.redhat.com/security/cve/CVE-2022-3924"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2128584"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2164032"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2164038"
},
{
"type": "REPORT",
"url": "https://bugzilla.redhat.com/2164039"
},
{
"type": "ADVISORY",
"url": "https://errata.almalinux.org/8/ALSA-2023-2792.html"
}
],
"related": [
"CVE-2022-2795",
"CVE-2022-3094",
"CVE-2022-3736",
"CVE-2022-3924"
],
"summary": "Moderate: bind9.16 security and bug fix update"
}
Title
Уязвимость сервера DNS BIND, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость сервера DNS BIND связана с недостаточной проверкой вводимых данных. Эксплуатация уязвимости позволяет нарушителю, действующему удаленно, вызвать отказ в обслуживании
Severity
Vendor
Сообщество свободного программного обеспечения, ООО «РусБИТех-Астра», Internet Systems Consortium, АО "НППКТ"
Software Name
Debian GNU/Linux, Astra Linux Special Edition для «Эльбрус» (запись в едином реестре российских программ №11156), BIND, ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913)
Software Version
10 (Debian GNU/Linux), 8.1 «Ленинград» (Astra Linux Special Edition для «Эльбрус»), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), от 9.18.0 до 9.18.11 (BIND), от 9.19.0 до 9.19.9 (BIND), до 2.7 (ОСОН ОСнова Оnyx), от 9.16.12 до 9.16.37 (BIND)
Possible Mitigations
Для BIND:
использование рекомендаций производителя: https://kb.isc.org/docs/cve-2022-3736
Для Debian:
использование рекомендаций производителя: https://security-tracker.debian.org/tracker/CVE-2022-3736
Для ОС Astra Linux:
обновить пакет bind9 до 1:9.11.3+dfsg-1ubuntu1.18+ci202211281326+astra1 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81
Для ОСОН ОСнова Оnyx:
Обновление программного обеспечения bind9 до версии 1:9.16.37-1~deb11u1.osnova1
Reference
https://kb.isc.org/docs/cve-2022-3736
https://nvd.nist.gov/vuln/detail/CVE-2022-3736
https://security-tracker.debian.org/tracker/CVE-2022-3736
https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.7/
CWE
CWE-20
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, Internet Systems Consortium, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\"",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "10 (Debian GNU/Linux), 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb (Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), \u043e\u0442 9.18.0 \u0434\u043e 9.18.11 (BIND), \u043e\u0442 9.19.0 \u0434\u043e 9.19.9 (BIND), \u0434\u043e 2.7 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx), \u043e\u0442 9.16.12 \u0434\u043e 9.16.37 (BIND)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0414\u043b\u044f BIND:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://kb.isc.org/docs/cve-2022-3736\n\n\u0414\u043b\u044f Debian:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://security-tracker.debian.org/tracker/CVE-2022-3736\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n\u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 bind9 \u0434\u043e 1:9.11.3+dfsg-1ubuntu1.18+ci202211281326+astra1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81\n\n\u0414\u043b\u044f \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f bind9 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1:9.16.37-1~deb11u1.osnova1",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "25.01.2023",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "11.01.2024",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "14.11.2023",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2023-07832",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2022-3736",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Debian GNU/Linux, Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211611156), BIND, \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211611156), \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u0430 DNS BIND, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u0430 DNS BIND \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://kb.isc.org/docs/cve-2022-3736\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-3736\nhttps://security-tracker.debian.org/tracker/CVE-2022-3736\nhttps://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.7/",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}
CERTFR-2023-AVI-0059
Vulnerability from certfr_avis - Published: 2023-01-26 - Updated: 2023-01-26
De multiples vulnérabilités ont été découvertes dans ISC Bind. Elles permettent à un attaquant de provoquer un déni de service à distance.
Solution
L'éditeur ne propose aucun correctif de sécurité pour les produits BIND ayant une version 9.11.x et BIND Supported Preview Edition ayant une version entre 9.11.4-S1 et 9.11.37-S1.
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| ISC | BIND | BIND versions 9.19.x antérieures à 9.19.9 | ||
| ISC | BIND | BIND versions 9.18.x antérieures à 9.18.11 | ||
| ISC | BIND | BIND versions 9.11.x | ||
| ISC | BIND | BIND Supported Preview Edition versions 9.11.4-S1 à 9.11.37-S1 | ||
| ISC | BIND | BIND Supported Preview Edition versions 9.16.8-S1 et suivantes antérieures à 9.16.37-S1 | ||
| ISC | BIND | BIND versions 9.16.x antérieures à 9.16.37 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BIND versions 9.19.x ant\u00e9rieures \u00e0 9.19.9",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND versions 9.18.x ant\u00e9rieures \u00e0 9.18.11",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND versions 9.11.x",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND Supported Preview Edition versions 9.11.4-S1 \u00e0 9.11.37-S1",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND Supported Preview Edition versions 9.16.8-S1 et suivantes ant\u00e9rieures \u00e0 9.16.37-S1",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND versions 9.16.x ant\u00e9rieures \u00e0 9.16.37",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nL\u0027\u00e9diteur ne propose aucun correctif de s\u00e9curit\u00e9 pour les produits BIND\nayant une version 9.11.x et BIND Supported Preview Edition ayant une\nversion entre 9.11.4-S1 et 9.11.37-S1.\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2022-3488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3488"
},
{
"name": "CVE-2022-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3736"
},
{
"name": "CVE-2022-3924",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3924"
},
{
"name": "CVE-2022-3094",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3094"
}
],
"initial_release_date": "2023-01-26T00:00:00",
"last_revision_date": "2023-01-26T00:00:00",
"links": [],
"reference": "CERTFR-2023-AVI-0059",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-01-26T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans\u00a0ISC Bind. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans ISC BIND",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 ISC cve-2022-3488 du 25 janvier 2023",
"url": "https://kb.isc.org/v1/docs/cve-2022-3488"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 ISC cve-2022-3924 du 25 janvier 2023",
"url": "https://kb.isc.org/v1/docs/cve-2022-3924"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 ISC cve-2022-3094 du 25 janvier 2023",
"url": "https://kb.isc.org/v1/docs/cve-2022-3094"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 ISC cve-2022-3736 du 25 janvier 2023",
"url": "https://kb.isc.org/v1/docs/cve-2022-3736"
}
]
}
CERTFR-2023-AVI-0574
Vulnerability from certfr_avis - Published: 2023-07-21 - Updated: 2023-07-21
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | QRadar SIEM | IBM QRadar SIEM version 7.5.0 sans le correctif de sécurité 7.5.0-QRADAR-PROTOCOL-MQJMS-7.5-20230327175444 | ||
| IBM | Sterling Control Center | IBM Sterling Control Center versions 6.1.3.x antérieures à 6.1.3.0 iFix18 | ||
| IBM | Cognos Analytics | IBM Cognos Analytics versions 11.1.x antérieures à 11.1.7 Fix Pack 7 | ||
| IBM | Cognos Analytics | IBM Cognos Analytics versions 11.2.x antérieures à 11.2.4 Fix Pack 2 | ||
| IBM | Sterling Connect:Direct | IBM Sterling Connect:Direct Browser User Interface versions 1.4.1.1 à 1.5.0.2.x antérieures à 1.5.0.2.iFix36 | ||
| IBM | Db2 | IBM Db2 Web Query for i versions 2.3.0 et 2.4.0 sans le correctif de sécurité | ||
| IBM | N/A | AIX versions 7.2. et 7.3 et VIOS version 3.1 avec un fichier bind.rte versions 7.1.916.0 à 7.1.916.2601 sans le dernier correctif de sécurité | ||
| IBM | QRadar SIEM | IBM QRadar SIEM version 7.4.0 sans le correctif de sécurité 7.4.0-QRADAR-PROTOCOL-MQJMS-7.4-20230327175451 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM QRadar SIEM version 7.5.0 sans le correctif de s\u00e9curit\u00e9 7.5.0-QRADAR-PROTOCOL-MQJMS-7.5-20230327175444",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Sterling Control Center versions 6.1.3.x ant\u00e9rieures \u00e0 6.1.3.0 iFix18",
"product": {
"name": "Sterling Control Center",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Cognos Analytics versions 11.1.x ant\u00e9rieures \u00e0 11.1.7 Fix Pack 7",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Cognos Analytics versions 11.2.x ant\u00e9rieures \u00e0 11.2.4 Fix Pack 2",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Sterling Connect:Direct Browser User Interface versions 1.4.1.1 \u00e0 1.5.0.2.x ant\u00e9rieures \u00e0 1.5.0.2.iFix36",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Db2 Web Query for i versions 2.3.0 et 2.4.0 sans le correctif de s\u00e9curit\u00e9",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX versions 7.2. et 7.3 et VIOS version 3.1 avec un fichier bind.rte versions 7.1.916.0 \u00e0 7.1.916.2601 sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM QRadar SIEM version 7.4.0 sans le correctif de s\u00e9curit\u00e9 7.4.0-QRADAR-PROTOCOL-MQJMS-7.4-20230327175451",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-21938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
},
{
"name": "CVE-2023-25929",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25929"
},
{
"name": "CVE-2019-4378",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4378"
},
{
"name": "CVE-2023-1370",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1370"
},
{
"name": "CVE-2023-21954",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21954"
},
{
"name": "CVE-2023-21939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
},
{
"name": "CVE-2021-39034",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39034"
},
{
"name": "CVE-2020-4320",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-4320"
},
{
"name": "CVE-2019-4049",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4049"
},
{
"name": "CVE-2021-38949",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38949"
},
{
"name": "CVE-2019-4055",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4055"
},
{
"name": "CVE-2022-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3736"
},
{
"name": "CVE-2020-4682",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-4682"
},
{
"name": "CVE-2023-28530",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28530"
},
{
"name": "CVE-2022-24999",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24999"
},
{
"name": "CVE-2019-4614",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4614"
},
{
"name": "CVE-2019-4762",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4762"
},
{
"name": "CVE-2019-4655",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4655"
},
{
"name": "CVE-2023-21937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
},
{
"name": "CVE-2020-4338",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-4338"
},
{
"name": "CVE-2019-4656",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4656"
},
{
"name": "CVE-2023-2597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2597"
},
{
"name": "CVE-2022-3924",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3924"
},
{
"name": "CVE-2019-4227",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4227"
},
{
"name": "CVE-2022-3094",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3094"
},
{
"name": "CVE-2023-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
},
{
"name": "CVE-2023-21930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
},
{
"name": "CVE-2023-24998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24998"
},
{
"name": "CVE-2019-4619",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4619"
},
{
"name": "CVE-2022-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1471"
},
{
"name": "CVE-2019-4261",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4261"
},
{
"name": "CVE-2019-4719",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-4719"
},
{
"name": "CVE-2023-21967",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21967"
},
{
"name": "CVE-2020-4310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-4310"
}
],
"initial_release_date": "2023-07-21T00:00:00",
"last_revision_date": "2023-07-21T00:00:00",
"links": [],
"reference": "CERTFR-2023-AVI-0574",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-07-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7013143 du 19 juillet 2023",
"url": "https://www.ibm.com/support/pages/node/7013143"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7011771 du 13 juillet 2023",
"url": "https://www.ibm.com/support/pages/node/7011771"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7013297 du 19 juillet 2023",
"url": "https://www.ibm.com/support/pages/node/7013297"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7012711 du 18 juillet 2023",
"url": "https://www.ibm.com/support/pages/node/7012711"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7012621 du 19 juillet 2023",
"url": "https://www.ibm.com/support/pages/node/7012621"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7012395 du 17 juillet 2023",
"url": "https://www.ibm.com/support/pages/node/7012395"
}
]
}
FKIE_CVE-2022-3736
Vulnerability from fkie_nvd - Published: 2023-01-26 21:15 - Updated: 2025-04-01 15:15
Severity
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.
This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.
References
| URL | Tags | ||
|---|---|---|---|
| security-officer@isc.org | https://kb.isc.org/docs/cve-2022-3736 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kb.isc.org/docs/cve-2022-3736 | Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
"matchCriteriaId": "FC5F91EF-B660-42FF-9B48-880299C9A128",
"versionEndExcluding": "9.16.37",
"versionStartIncluding": "9.16.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
"matchCriteriaId": "92119B97-ADE6-47C0-B3E2-3B05C08A0B99",
"versionEndExcluding": "9.18.11",
"versionStartIncluding": "9.18.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
"matchCriteriaId": "CB820E6D-F56C-4222-A3FF-3A02266FD68B",
"versionEndExcluding": "9.19.9",
"versionStartIncluding": "9.19.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.16.11:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "3595F024-F910-4356-8B5B-D478960FF574",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.16.13:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "94661BA2-27F8-4FFE-B844-9404F735579D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.16.14:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "53593603-E2AF-4925-A6E6-109F097A0FF2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.16.21:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "751E37C2-8BFD-4306-95C1-8C01CE495FA4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.16.32:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "CC432820-F1A2-4132-A673-2620119553C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:9.16.36:s1:*:*:supported_preview:*:*:*",
"matchCriteriaId": "F70347F2-6750-4497-B8F4-2036F4F4443A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.\nThis issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1."
},
{
"lang": "es",
"value": "El solucionador BIND 9 puede fallar cuando el cach\u00e9 obsoleto y las respuestas obsoletas est\u00e1n habilitados, la opci\u00f3n `stale-answer-client-timeout` est\u00e1 configurada en un entero positivo y el solucionador recibe una consulta RRSIG. Este problema afecta a las versiones de BIND 9, 9.16.12 a 9.16.36, 9.18.0 a 9.18.10, 9.19.0 a 9.19.8 y 9.16.12-S1 a 9.16.36-S1."
}
],
"id": "CVE-2022-3736",
"lastModified": "2025-04-01T15:15:53.150",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "security-officer@isc.org",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2023-01-26T21:15:57.940",
"references": [
{
"source": "security-officer@isc.org",
"tags": [
"Vendor Advisory"
],
"url": "https://kb.isc.org/docs/cve-2022-3736"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://kb.isc.org/docs/cve-2022-3736"
}
],
"sourceIdentifier": "security-officer@isc.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-5V6F-5GPQ-2628
Vulnerability from github – Published: 2023-01-26 21:30 – Updated: 2023-02-03 18:30
VLAI
Details
BIND 9 resolver can crash when stale cache and stale answers are enabled, option stale-answer-client-timeout is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.
Severity
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2022-3736"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-01-26T21:15:00Z",
"severity": "HIGH"
},
"details": "BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.",
"id": "GHSA-5v6f-5gpq-2628",
"modified": "2023-02-03T18:30:23Z",
"published": "2023-01-26T21:30:23Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3736"
},
{
"type": "WEB",
"url": "https://kb.isc.org/docs/cve-2022-3736"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2022-3736
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-3736",
"id": "GSD-2022-3736",
"references": [
"https://www.debian.org/security/2023/dsa-5329",
"https://www.suse.com/security/cve/CVE-2022-3736.html",
"https://ubuntu.com/security/CVE-2022-3736"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-3736"
],
"details": "BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.",
"id": "GSD-2022-3736",
"modified": "2023-12-13T01:19:40.467363Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-officer@isc.org",
"ID": "CVE-2022-3736",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "BIND 9",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "9.16.12"
},
{
"version_affected": "=",
"version_value": "9.18.0"
},
{
"version_affected": "=",
"version_value": "9.19.0"
},
{
"version_affected": "=",
"version_value": "9.16.12-S1"
}
]
}
}
]
},
"vendor_name": "ISC"
}
]
}
},
"credits": [
{
"lang": "en",
"value": "ISC would like to thank Borja Marcos from Sarenet (with assistance by Iratxe Ni\u00f1o from Fundaci\u00f3n Sarenet) for bringing this vulnerability to our attention."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1."
}
]
},
"exploit": [
{
"lang": "en",
"value": "We are not aware of any active exploits."
}
],
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.isc.org/docs/cve-2022-3736",
"refsource": "MISC",
"url": "https://kb.isc.org/docs/cve-2022-3736"
}
]
},
"solution": [
{
"lang": "en",
"value": "Upgrade to the patched release most closely related to your current version of BIND 9: 9.16.37, 9.18.11, 9.19.9, or 9.16.37-S1."
}
],
"source": {
"discovery": "EXTERNAL"
},
"work_around": [
{
"lang": "en",
"value": "Setting `stale-answer-client-timeout` to `0` or to `off/disabled` will prevent BIND from crashing due to this issue."
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.16.11:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.16.13:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.16.21:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.16.32:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.16.14:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.19.9",
"versionStartIncluding": "9.19.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.18.11",
"versionStartIncluding": "9.18.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:9.16.36:s1:*:*:supported_preview:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.16.37",
"versionStartIncluding": "9.16.12",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security-officer@isc.org",
"ID": "CVE-2022-3736"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.isc.org/docs/cve-2022-3736",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://kb.isc.org/docs/cve-2022-3736"
}
]
}
},
"impact": {
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-02-03T18:26Z",
"publishedDate": "2023-01-26T21:15Z"
}
}
}
MSRC_CVE-2022-3736
Vulnerability from csaf_microsoft - Published: 2023-01-04 00:00 - Updated: 2023-02-04 00:00Summary
named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
7.5 (High)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 18456-16820 | — | ||
| Unresolved product id: 18457-17086 | — |
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2023/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2023/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2022-3736 named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2023/msrc_cve-2022-3736.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries",
"tracking": {
"current_release_date": "2023-02-04T00:00:00.000Z",
"generator": {
"date": "2025-12-07T13:26:39.075Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2022-3736",
"initial_release_date": "2023-01-04T00:00:00.000Z",
"revision_history": [
{
"date": "2023-02-04T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0",
"product_id": "16820"
}
},
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccm1 bind 9.16.37-1",
"product": {
"name": "\u003ccm1 bind 9.16.37-1",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "cm1 bind 9.16.37-1",
"product": {
"name": "cm1 bind 9.16.37-1",
"product_id": "18456"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 bind 9.16.37-2",
"product": {
"name": "\u003ccbl2 bind 9.16.37-2",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cbl2 bind 9.16.37-2",
"product": {
"name": "cbl2 bind 9.16.37-2",
"product_id": "18457"
}
}
],
"category": "product_name",
"name": "bind"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccm1 bind 9.16.37-1 as a component of CBL Mariner 1.0",
"product_id": "16820-2"
},
"product_reference": "2",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cm1 bind 9.16.37-1 as a component of CBL Mariner 1.0",
"product_id": "18456-16820"
},
"product_reference": "18456",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 bind 9.16.37-2 as a component of CBL Mariner 2.0",
"product_id": "17086-1"
},
"product_reference": "1",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 bind 9.16.37-2 as a component of CBL Mariner 2.0",
"product_id": "18457-17086"
},
"product_reference": "18457",
"relates_to_product_reference": "17086"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-3736",
"notes": [
{
"category": "general",
"text": "isc",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"18456-16820",
"18457-17086"
],
"known_affected": [
"16820-2",
"17086-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-3736 named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2023/msrc_cve-2022-3736.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2023-02-04T00:00:00.000Z",
"details": "9.16.37-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"16820-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2023-02-04T00:00:00.000Z",
"details": "9.16.37-2:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"16820-2",
"17086-1"
]
}
],
"title": "named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries"
}
]
}
OPENSUSE-SU-2024:12641-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
bind-9.18.11-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: bind-9.18.11-1.1 on GA media
Description of the patch: These are all security issues fixed in the bind-9.18.11-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-12641
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
13 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2022-3094/ | self |
| https://www.suse.com/security/cve/CVE-2022-3736/ | self |
| https://www.suse.com/security/cve/CVE-2022-3924/ | self |
| https://www.suse.com/security/cve/CVE-2022-3094 | external |
| https://bugzilla.suse.com/1207471 | external |
| https://www.suse.com/security/cve/CVE-2022-3736 | external |
| https://bugzilla.suse.com/1207473 | external |
| https://www.suse.com/security/cve/CVE-2022-3924 | external |
| https://bugzilla.suse.com/1207475 | external |
| https://bugzilla.suse.com/1212544 | external |
| https://bugzilla.suse.com/1212567 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "bind-9.18.11-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the bind-9.18.11-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12641",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12641-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3094 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3736 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3924 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3924/"
}
],
"title": "bind-9.18.11-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12641-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.11-1.1.aarch64",
"product": {
"name": "bind-9.18.11-1.1.aarch64",
"product_id": "bind-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-doc-9.18.11-1.1.aarch64",
"product": {
"name": "bind-doc-9.18.11-1.1.aarch64",
"product_id": "bind-doc-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"product": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"product_id": "bind-modules-bdbhpt-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.18.11-1.1.aarch64",
"product": {
"name": "bind-modules-generic-9.18.11-1.1.aarch64",
"product_id": "bind-modules-generic-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.18.11-1.1.aarch64",
"product": {
"name": "bind-modules-ldap-9.18.11-1.1.aarch64",
"product_id": "bind-modules-ldap-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.18.11-1.1.aarch64",
"product": {
"name": "bind-modules-mysql-9.18.11-1.1.aarch64",
"product_id": "bind-modules-mysql-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.18.11-1.1.aarch64",
"product": {
"name": "bind-modules-perl-9.18.11-1.1.aarch64",
"product_id": "bind-modules-perl-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.18.11-1.1.aarch64",
"product": {
"name": "bind-modules-sqlite3-9.18.11-1.1.aarch64",
"product_id": "bind-modules-sqlite3-9.18.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.11-1.1.aarch64",
"product": {
"name": "bind-utils-9.18.11-1.1.aarch64",
"product_id": "bind-utils-9.18.11-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-9.18.11-1.1.ppc64le",
"product_id": "bind-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-doc-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-doc-9.18.11-1.1.ppc64le",
"product_id": "bind-doc-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"product_id": "bind-modules-bdbhpt-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-modules-generic-9.18.11-1.1.ppc64le",
"product_id": "bind-modules-generic-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-modules-ldap-9.18.11-1.1.ppc64le",
"product_id": "bind-modules-ldap-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-modules-mysql-9.18.11-1.1.ppc64le",
"product_id": "bind-modules-mysql-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-modules-perl-9.18.11-1.1.ppc64le",
"product_id": "bind-modules-perl-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"product_id": "bind-modules-sqlite3-9.18.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.11-1.1.ppc64le",
"product": {
"name": "bind-utils-9.18.11-1.1.ppc64le",
"product_id": "bind-utils-9.18.11-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.11-1.1.s390x",
"product": {
"name": "bind-9.18.11-1.1.s390x",
"product_id": "bind-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-doc-9.18.11-1.1.s390x",
"product": {
"name": "bind-doc-9.18.11-1.1.s390x",
"product_id": "bind-doc-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.18.11-1.1.s390x",
"product": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.s390x",
"product_id": "bind-modules-bdbhpt-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.18.11-1.1.s390x",
"product": {
"name": "bind-modules-generic-9.18.11-1.1.s390x",
"product_id": "bind-modules-generic-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.18.11-1.1.s390x",
"product": {
"name": "bind-modules-ldap-9.18.11-1.1.s390x",
"product_id": "bind-modules-ldap-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.18.11-1.1.s390x",
"product": {
"name": "bind-modules-mysql-9.18.11-1.1.s390x",
"product_id": "bind-modules-mysql-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.18.11-1.1.s390x",
"product": {
"name": "bind-modules-perl-9.18.11-1.1.s390x",
"product_id": "bind-modules-perl-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.18.11-1.1.s390x",
"product": {
"name": "bind-modules-sqlite3-9.18.11-1.1.s390x",
"product_id": "bind-modules-sqlite3-9.18.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.11-1.1.s390x",
"product": {
"name": "bind-utils-9.18.11-1.1.s390x",
"product_id": "bind-utils-9.18.11-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.11-1.1.x86_64",
"product": {
"name": "bind-9.18.11-1.1.x86_64",
"product_id": "bind-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-doc-9.18.11-1.1.x86_64",
"product": {
"name": "bind-doc-9.18.11-1.1.x86_64",
"product_id": "bind-doc-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"product": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"product_id": "bind-modules-bdbhpt-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.18.11-1.1.x86_64",
"product": {
"name": "bind-modules-generic-9.18.11-1.1.x86_64",
"product_id": "bind-modules-generic-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.18.11-1.1.x86_64",
"product": {
"name": "bind-modules-ldap-9.18.11-1.1.x86_64",
"product_id": "bind-modules-ldap-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.18.11-1.1.x86_64",
"product": {
"name": "bind-modules-mysql-9.18.11-1.1.x86_64",
"product_id": "bind-modules-mysql-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.18.11-1.1.x86_64",
"product": {
"name": "bind-modules-perl-9.18.11-1.1.x86_64",
"product_id": "bind-modules-perl-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.18.11-1.1.x86_64",
"product": {
"name": "bind-modules-sqlite3-9.18.11-1.1.x86_64",
"product_id": "bind-modules-sqlite3-9.18.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.11-1.1.x86_64",
"product": {
"name": "bind-utils-9.18.11-1.1.x86_64",
"product_id": "bind-utils-9.18.11-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64"
},
"product_reference": "bind-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.18.11-1.1.s390x"
},
"product_reference": "bind-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64"
},
"product_reference": "bind-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64"
},
"product_reference": "bind-doc-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-doc-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x"
},
"product_reference": "bind-doc-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64"
},
"product_reference": "bind-doc-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64"
},
"product_reference": "bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x"
},
"product_reference": "bind-modules-bdbhpt-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64"
},
"product_reference": "bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64"
},
"product_reference": "bind-modules-generic-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-modules-generic-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x"
},
"product_reference": "bind-modules-generic-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64"
},
"product_reference": "bind-modules-generic-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64"
},
"product_reference": "bind-modules-ldap-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-modules-ldap-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x"
},
"product_reference": "bind-modules-ldap-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64"
},
"product_reference": "bind-modules-ldap-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64"
},
"product_reference": "bind-modules-mysql-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-modules-mysql-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x"
},
"product_reference": "bind-modules-mysql-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64"
},
"product_reference": "bind-modules-mysql-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64"
},
"product_reference": "bind-modules-perl-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-modules-perl-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x"
},
"product_reference": "bind-modules-perl-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64"
},
"product_reference": "bind-modules-perl-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64"
},
"product_reference": "bind-modules-sqlite3-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x"
},
"product_reference": "bind-modules-sqlite3-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64"
},
"product_reference": "bind-modules-sqlite3-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64"
},
"product_reference": "bind-utils-9.18.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le"
},
"product_reference": "bind-utils-9.18.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x"
},
"product_reference": "bind-utils-9.18.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
},
"product_reference": "bind-utils-9.18.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-3094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3094"
}
],
"notes": [
{
"category": "general",
"text": "Sending a flood of dynamic DNS updates may cause `named` to allocate large amounts of memory. This, in turn, may cause `named` to exit due to a lack of free memory. We are not aware of any cases where this has been exploited.\n\nMemory is allocated prior to the checking of access permissions (ACLs) and is retained during the processing of a dynamic update from a client whose access credentials are accepted. Memory allocated to clients that are not permitted to send updates is released immediately upon rejection. The scope of this vulnerability is limited therefore to trusted clients who are permitted to make dynamic zone changes.\n\nIf a dynamic update is REFUSED, memory will be released again very quickly. Therefore it is only likely to be possible to degrade or stop `named` by sending a flood of unaccepted dynamic updates comparable in magnitude to a query flood intended to achieve the same detrimental outcome.\n\nBIND 9.11 and earlier branches are also affected, but through exhaustion of internal resources rather than memory constraints. This may reduce performance but should not be a significant problem for most servers. Therefore we don\u0027t intend to address this for BIND versions prior to BIND 9.16.\nThis issue affects BIND 9 versions 9.16.0 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.8-S1 through 9.16.36-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3094",
"url": "https://www.suse.com/security/cve/CVE-2022-3094"
},
{
"category": "external",
"summary": "SUSE Bug 1207471 for CVE-2022-3094",
"url": "https://bugzilla.suse.com/1207471"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2022-3094"
},
{
"cve": "CVE-2022-3736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3736"
}
],
"notes": [
{
"category": "general",
"text": "BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.\nThis issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3736",
"url": "https://www.suse.com/security/cve/CVE-2022-3736"
},
{
"category": "external",
"summary": "SUSE Bug 1207473 for CVE-2022-3736",
"url": "https://bugzilla.suse.com/1207473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-3736"
},
{
"cve": "CVE-2022-3924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3924"
}
],
"notes": [
{
"category": "general",
"text": "This issue can affect BIND 9 resolvers with `stale-answer-enable yes;` that also make use of the option `stale-answer-client-timeout`, configured with a value greater than zero.\n\nIf the resolver receives many queries that require recursion, there will be a corresponding increase in the number of clients that are waiting for recursion to complete. If there are sufficient clients already waiting when a new client query is received so that it is necessary to SERVFAIL the longest waiting client (see BIND 9 ARM `recursive-clients` limit and soft quota), then it is possible for a race to occur between providing a stale answer to this older client and sending an early timeout SERVFAIL, which may cause an assertion failure.\nThis issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3924",
"url": "https://www.suse.com/security/cve/CVE-2022-3924"
},
{
"category": "external",
"summary": "SUSE Bug 1207475 for CVE-2022-3924",
"url": "https://bugzilla.suse.com/1207475"
},
{
"category": "external",
"summary": "SUSE Bug 1212544 for CVE-2022-3924",
"url": "https://bugzilla.suse.com/1212544"
},
{
"category": "external",
"summary": "SUSE Bug 1212567 for CVE-2022-3924",
"url": "https://bugzilla.suse.com/1212567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.18.11-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.18.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-3924"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…