CVE-2015-1349

EPSS 8.7%

bind9 - security update

Published: 2/19/2015Modified: 4/28/2026

Description

named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use.

Affected packages (3)

Debian/bind9from 0, < 1:9.9.5.dfsg-9
Debian/bind9from 0, < 1:9.7.3.dfsg-1~squeeze14
Debian/bind9from 0, < 1:9.8.4.dfsg.P1-6+nmu2+deb7u4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-1349