AZL-46984

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-46984.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-46984

Upstream

CVE-2024-4076

Published

2024-07-23T15:15:05Z

Modified

2026-04-01T05:16:57.414380Z

Summary

CVE-2024-4076 affecting package bind for versions less than 9.16.50-1

Details

Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure. This issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1 through 9.11.37-S1, 9.16.13-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-4076

Affected packages

Azure Linux:2 / bind

Package

Name: bind
Purl: pkg:rpm/azure-linux/bind

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.16.50-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-46984.json"