CVE-2022-3736
named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query.
This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through 9.16.36-S1.
El solucionador BIND 9 puede fallar cuando el caché obsoleto y las respuestas obsoletas están habilitados, la opción `stale-answer-client-timeout` está configurada en un entero positivo y el solucionador recibe una consulta RRSIG. Este problema afecta a las versiones de BIND 9, 9.16.12 a 9.16.36, 9.18.0 a 9.18.10, 9.19.0 a 9.19.8 y 9.16.12-S1 a 9.16.36-S1.
A flaw was found in Bind, where a resolver crash is possible. When stale cache and stale answers are enabled, the option stale-answer-client-timeout is set to a positive integer, and the resolver receives an RRSIG query.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-10-28 CVE Reserved
- 2023-01-25 CVE Published
- 2024-08-03 CVE Updated
- 2024-08-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (3)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://kb.isc.org/docs/cve-2022-3736 | 2023-11-07 | |
https://access.redhat.com/security/cve/CVE-2022-3736 | 2023-05-16 | |
https://bugzilla.redhat.com/show_bug.cgi?id=2164038 | 2023-05-16 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.16.12 < 9.16.37 Search vendor "Isc" for product "Bind" and version " >= 9.16.12 < 9.16.37" | - |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.18.0 < 9.18.11 Search vendor "Isc" for product "Bind" and version " >= 9.18.0 < 9.18.11" | - |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | >= 9.19.0 < 9.19.9 Search vendor "Isc" for product "Bind" and version " >= 9.19.0 < 9.19.9" | - |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.16.11 Search vendor "Isc" for product "Bind" and version "9.16.11" | s1, supported_preview |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.16.13 Search vendor "Isc" for product "Bind" and version "9.16.13" | s1, supported_preview |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.16.14 Search vendor "Isc" for product "Bind" and version "9.16.14" | s1, supported_preview |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.16.21 Search vendor "Isc" for product "Bind" and version "9.16.21" | s1, supported_preview |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.16.32 Search vendor "Isc" for product "Bind" and version "9.16.32" | s1, supported_preview |
Affected
| ||||||
Isc Search vendor "Isc" | Bind Search vendor "Isc" for product "Bind" | 9.16.36 Search vendor "Isc" for product "Bind" and version "9.16.36" | s1, supported_preview |
Affected
|