CVE-2009-0025

EPSS 0.96%

bind9 - cryptographic weakness

發布日:2009/1/7修改日:2026/4/28

描述

BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

受影響套件(2)

Debian/bind9from 0, < 1:9.5.1.dfsg.P1-1
Debian/bind9from 0, < 1:9.3.4-2etch4

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-0025