Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

ASA-202104-10 - log back

ASA-202104-10 edited at 29 Apr 2021 21:47:23

Workaround

-	CVE-2021-25216 is not vulnerable in the default configuration. Disabling GSS-TSIG is a viable workaround for this vulnerability.
+	CVE-2021-25216 is not vulnerable in the default configuration.
+	Disabling GSS-TSIG is a viable workaround for this vulnerability.

ASA-202104-10 edited at 29 Apr 2021 15:44:31

Workaround

+	CVE-2021-25216 is not vulnerable in the default configuration. Disabling GSS-TSIG is a viable workaround for this vulnerability.

Impact

+

Attackers are able to crash the named process during an IXFR (incremental zone transfer) session via a malformed request or query record. In addition, an attacker is able to execute arbitrary code on a bind server that is configured to use GSS-TSIG features (such as those configurations enabled for networks using Samba and Kerberos).

ASA-202104-10 created at 29 Apr 2021 15:40:09