CVE - CVE-2011-4313

CVE-ID
CVE-2011-4313	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1026335 URL:http://www.securitytracker.com/id?1026335 MISC:46536 URL:http://secunia.com/advisories/46536 MISC:46829 URL:http://secunia.com/advisories/46829 MISC:46887 URL:http://secunia.com/advisories/46887 MISC:46890 URL:http://secunia.com/advisories/46890 MISC:46905 URL:http://secunia.com/advisories/46905 MISC:46906 URL:http://secunia.com/advisories/46906 MISC:46943 URL:http://secunia.com/advisories/46943 MISC:46984 URL:http://secunia.com/advisories/46984 MISC:47043 URL:http://secunia.com/advisories/47043 MISC:47075 URL:http://secunia.com/advisories/47075 MISC:48308 URL:http://secunia.com/advisories/48308 MISC:50690 URL:http://www.securityfocus.com/bid/50690 MISC:77159 URL:~~http://osvdb.org/77159~~ (Obsolete source) MISC:APPLE-SA-2012-09-19-2 URL:http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html MISC:DSA-2347 URL:http://www.debian.org/security/2011/dsa-2347 MISC:FEDORA-2011-16002 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069970.html MISC:FEDORA-2011-16036 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069975.html MISC:FEDORA-2011-16057 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069463.html MISC:FreeBSD-SA-11:06 URL:http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc MISC:HPSBOV02774 URL:http://marc.info/?l=bugtraq&m=133978480208466&w=2 MISC:HPSBOV03226 URL:http://marc.info/?l=bugtraq&m=141879471518471&w=2 MISC:HPSBUX02729 URL:http://marc.info/?l=bugtraq&m=132310123002302&w=2 MISC:IV11106 URL:http://www-01.ibm.com/support/docview.wss?uid=isg1IV11106 MISC:IV11248 URL:http://www.ibm.com/support/docview.wss?uid=isg1IV11248 MISC:MDVSA-2011:176 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2011:176~~ (Obsolete source) MISC:RHSA-2011:1458 URL:http://www.redhat.com/support/errata/RHSA-2011-1458.html MISC:RHSA-2011:1459 URL:http://www.redhat.com/support/errata/RHSA-2011-1459.html MISC:RHSA-2011:1496 URL:http://www.redhat.com/support/errata/RHSA-2011-1496.html MISC:SSRT100684 URL:http://marc.info/?l=bugtraq&m=133978480208466&w=2 MISC:SSRT100687 URL:http://marc.info/?l=bugtraq&m=132310123002302&w=2 MISC:SSRT101004 URL:http://marc.info/?l=bugtraq&m=141879471518471&w=2 MISC:SUSE-SU-2011:1268 URL:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00027.html MISC:SUSE-SU-2011:1270 URL:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00028.html MISC:USN-1264-1 URL:http://www.ubuntu.com/usn/USN-1264-1 MISC:VU#606539 URL:http://www.kb.cert.org/vuls/id/606539 MISC:http://blogs.oracle.com/sunsecurity/entry/cve_2011_4313_denial_of URL:http://blogs.oracle.com/sunsecurity/entry/cve_2011_4313_denial_of MISC:http://support.apple.com/kb/HT5501 URL:http://support.apple.com/kb/HT5501 MISC:http://www.isc.org/software/bind/advisories/cve-2011-4313 URL:http://www.isc.org/software/bind/advisories/cve-2011-4313 MISC:isc-bind-recursive-dos(71332) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/71332 MISC:openSUSE-SU-2011:1272 URL:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00029.html MISC:oval:org.mitre.oval:def:14343 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14343
Assigning CNA
Red Hat, Inc.
Date Record Created
20111104	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20111104)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)