CVE-2015-5722

EPSS 65.9%

bind9 - security update

Published: 9/5/2015Modified: 4/28/2026

Description

buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone.

Affected packages (3)

Debian/bind9from 0, < 1:9.9.5.dfsg-12
Debian/bind9from 0, < 1:9.7.3.dfsg-1~squeeze17
Debian/bind9from 0, < 1:9.8.4.dfsg.P1-6+nmu2+deb7u7

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-5722