CVE-2007-0494

EPSS 41.5%

bind9

發布日:2007/1/25修改日:2026/4/28

描述

ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (exit) via a type * (ANY) DNS query response that contains multiple RRsets, which triggers an assertion error, aka the "DNSSEC Validation" vulnerability.

受影響套件(2)

Debian/bind9from 0, < 1:9.3.4-2
Debian/bind9from 0, < 1:9.2.4-1sarge2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-0494