CVE-2024-4076

CVE-2024-4076

Name

CVE-2024-4076

Description

Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure. This issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1 through 9.11.37-S1, 9.16.13-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
vendor-advisory	https://kb.isc.org/docs/cve-2024-4076
	http://www.openwall.com/lists/oss-security/2024/07/23/1
	http://www.openwall.com/lists/oss-security/2024/07/31/2

Type

URI

vendor-advisory

https://kb.isc.org/docs/cve-2024-4076

http://www.openwall.com/lists/oss-security/2024/07/23/1

http://www.openwall.com/lists/oss-security/2024/07/31/2

Match rules

Source package	Min version	Max version
bind-9	>= 9.16.13	<= 9.16.50
bind-9	>= 9.18.0	<= 9.18.27
bind-9	>= 9.19.0	<= 9.19.24
bind-9	>= 9.11.33-S1	<= 9.11.37-S1
bind-9	>= 9.16.13-S1	<= 9.16.50-S1
bind-9	>= 9.18.11-S1	<= 9.18.27-S1

CPE URI

Source package

Min version

Max version

bind-9

>= 9.16.13

<= 9.16.50

bind-9

>= 9.18.0

<= 9.18.27

bind-9

>= 9.19.0

<= 9.19.24

bind-9

>= 9.11.33-S1

<= 9.11.37-S1

bind-9

>= 9.16.13-S1

<= 9.16.50-S1

bind-9

>= 9.18.11-S1

<= 9.18.27-S1

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
bind	3.20-main	9.18.31-r0	Mike Crute <mike@crute.us>	fixed
bind	3.19-main	9.18.31-r0	Mike Crute <mike@crute.us>	fixed
bind	3.18-main	9.18.31-r0	Mike Crute <mike@crute.us>	fixed
bind	3.17-main	9.18.31-r0	None	fixed

Source package

Branch

Version

Maintainer

Status

bind

3.20-main

9.18.31-r0

Mike Crute <mike@crute.us>

fixed

bind

3.19-main