CVE-2023-2911

Published Jun 21, 2023

Last updated a year ago

CVSS high 7.5

Dns

Overview

Description: If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a sequence of serve-stale-related lookups could cause `named` to loop and terminate unexpectedly due to a stack overflow. This issue affects BIND 9 versions 9.16.33 through 9.16.41, 9.18.7 through 9.18.15, 9.16.33-S1 through 9.16.41-S1, and 9.18.11-S1 through 9.18.15-S1.
Source: security-officer@isc.org
NVD status: Modified

Risk scores

CVSS 3.1

Type: Secondary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-787

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
            "matchCriteriaId": "2E225B5E-5D4E-4D7D-8E8E-BDAF69386072",
            "versionEndIncluding": "9.16.41",
            "versionStartIncluding": "9.16.33",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:*:*:*:*:supported_preview:*:*:*",
            "matchCriteriaId": "B44AC868-4E58-4D76-BE4A-AB47E3FFA134",
            "versionEndIncluding": "9.16.41",
            "versionStartIncluding": "9.16.33",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*",
            "matchCriteriaId": "DFFF05A7-1826-4485-BEE4-DB3A5B25B49A",
            "versionEndIncluding": "9.18.15",
            "versionStartIncluding": "9.18.7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:*:*:*:*:supported_preview:*:*:*",
            "matchCriteriaId": "41E493D6-D811-47ED-9227-CC2AA1837FE4",
            "versionEndIncluding": "9.18.15",
            "versionStartIncluding": "9.18.11",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
            "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
            "matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*",
            "matchCriteriaId": "3A756737-1CC4-42C2-A4DF-E1C893B4E2D5",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "56409CEC-5A1E-4450-AA42-641E459CC2AF",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "B06F4839-D16A-4A61-9BB5-55B13F41E47F",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "6770B6C3-732E-4E22-BF1C-2D2FD610061C",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "9F9C8C20-42EB-4AB5-BD97-212DEB070C43",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "234DEFE0-5CE5-4B0A-96B8-5D227CB8ED31",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "CDDF61B7-EC5C-467C-B710-B89F502CD04F",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "D0B4AD8A-F172-4558-AEC6-FF424BA2D912",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "8497A4C9-8474-4A62-8331-3FE862ED4098",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "7FFF7106-ED78-49BA-9EC5-B889E3685D53",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "E63D8B0F-006E-4801-BF9D-1C001BBFB4F9",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References