CVE-2014-0591

Publication date 13 January 2014

Last updated 24 July 2024

Ubuntu priority

The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8.6-P2 and 9.9 before 9.9.4-P2, and 9.6-ESV before 9.6-ESV-R10-P2, allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via a crafted DNS query to an authoritative nameserver that uses the NSEC3 signing feature.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
bind9	13.10 saucy	Fixed 1:9.9.3.dfsg.P2-4ubuntu1.1
	13.04 raring	Fixed 1:9.9.2.dfsg.P1-2ubuntu2.2
	12.10 quantal	Fixed 1:9.8.1.dfsg.P1-4.2ubuntu3.4
	12.04 LTS precise	Fixed 1:9.8.1.dfsg.P1-4ubuntu0.8
	10.04 LTS lucid	Fixed 1:9.7.0.dfsg.P1-1ubuntu0.11

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-2081-1
Bind vulnerability
13 January 2014

Other references

http://security-tracker.debian.org/tracker/CVE-2014-0591
https://kb.isc.org/article/AA-01078
https://www.cve.org/CVERecord?id=CVE-2014-0591