Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2020-8617 - log back

CVE-2020-8617 edited at 19 May 2020 09:37:10

Severity

-	Unknown
+	High

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Denial of service

Description

+	An error in bind before 9.16.3 in the code which checks the validity of messages containing TSIG resource records can be exploited by an attacker to trigger an assertion failure in tsig.c, resulting in denial of service to clients.

References

+	https://kb.isc.org/docs/cve-2020-8617
+	https://kb.isc.org/docs/cve-2020-8617-faq-and-supplemental-information

Notes

CVE-2020-8617 created at 19 May 2020 09:29:55