CVE - CVE-2011-4313

CVE-ID
CVE-2011-4313	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:http://blogs.oracle.com/sunsecurity/entry/cve_2011_4313_denial_of CONFIRM:http://www.isc.org/software/bind/advisories/cve-2011-4313 CONFIRM:http://support.apple.com/kb/HT5501 AIXAPAR:IV11106 URL:http://www-01.ibm.com/support/docview.wss?uid=isg1IV11106 AIXAPAR:IV11248 URL:http://www.ibm.com/support/docview.wss?uid=isg1IV11248 APPLE:APPLE-SA-2012-09-19-2 URL:http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html DEBIAN:DSA-2347 URL:http://www.debian.org/security/2011/dsa-2347 FEDORA:FEDORA-2011-16002 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069970.html FEDORA:FEDORA-2011-16036 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069975.html FEDORA:FEDORA-2011-16057 URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069463.html FREEBSD:FreeBSD-SA-11:06 URL:http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc HP:HPSBUX02729 URL:http://marc.info/?l=bugtraq&m=132310123002302&w=2 HP:SSRT100687 URL:http://marc.info/?l=bugtraq&m=132310123002302&w=2 HP:HPSBOV03226 URL:http://marc.info/?l=bugtraq&m=141879471518471&w=2 HP:SSRT101004 URL:http://marc.info/?l=bugtraq&m=141879471518471&w=2 HP:HPSBOV02774 URL:http://marc.info/?l=bugtraq&m=133978480208466&w=2 HP:SSRT100684 URL:http://marc.info/?l=bugtraq&m=133978480208466&w=2 MANDRIVA:MDVSA-2011:176 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2011:176 REDHAT:RHSA-2011:1458 URL:http://www.redhat.com/support/errata/RHSA-2011-1458.html REDHAT:RHSA-2011:1459 URL:http://www.redhat.com/support/errata/RHSA-2011-1459.html REDHAT:RHSA-2011:1496 URL:http://www.redhat.com/support/errata/RHSA-2011-1496.html SUSE:SUSE-SU-2011:1268 URL:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00027.html SUSE:SUSE-SU-2011:1270 URL:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00028.html SUSE:openSUSE-SU-2011:1272 URL:http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00029.html UBUNTU:USN-1264-1 URL:http://www.ubuntu.com/usn/USN-1264-1 CERT-VN:VU#606539 URL:http://www.kb.cert.org/vuls/id/606539 BID:50690 URL:http://www.securityfocus.com/bid/50690 OSVDB:77159 URL:http://osvdb.org/77159 OVAL:oval:org.mitre.oval:def:14343 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14343 SECTRACK:1026335 URL:http://www.securitytracker.com/id?1026335 SECUNIA:46536 URL:http://secunia.com/advisories/46536 SECUNIA:46829 URL:http://secunia.com/advisories/46829 SECUNIA:46887 URL:http://secunia.com/advisories/46887 SECUNIA:46890 URL:http://secunia.com/advisories/46890 SECUNIA:46905 URL:http://secunia.com/advisories/46905 SECUNIA:46906 URL:http://secunia.com/advisories/46906 SECUNIA:46943 URL:http://secunia.com/advisories/46943 SECUNIA:46984 URL:http://secunia.com/advisories/46984 SECUNIA:47043 URL:http://secunia.com/advisories/47043 SECUNIA:47075 URL:http://secunia.com/advisories/47075 SECUNIA:48308 URL:http://secunia.com/advisories/48308 XF:isc-bind-recursive-dos(71332) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/71332
Assigning CNA
N/A
Date Entry Created
20111104	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20111104)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Use of the Common Vulnerabilities and Exposures (CVE®) List and the associated references from this website are subject to the terms of use. CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation. For more information, please contact us.