UBUNTU-CVE-2018-5741

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2018-5741

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-5741.json

JSON Data

https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2018-5741

Upstream

CVE-2018-5741

Published

2019-01-16T20:29:00Z

Modified

2025-07-16T08:23:03.074606Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
Ubuntu - negligible

Summary

[none]

Details

To provide fine-grained controls over the ability to use Dynamic DNS (DDNS) to update records in a zone, BIND 9 provides a feature called update-policy. Various rules can be configured to limit the types of updates that can be performed by a client, depending on the key used when sending the update request. Unfortunately, some rule types were not initially documented, and when documentation for them was added to the Administrator Reference Manual (ARM) in change #3112, the language that was added to the ARM at that time incorrectly described the behavior of two rule types, krb5-subdomain and ms-subdomain. This incorrect documentation could mislead operators into believing that policies they had configured were more restrictive than they actually were. This affects BIND versions prior to BIND 9.11.5 and BIND 9.12.3.

References

Affected packages

Ubuntu:Pro:14.04:LTS / bind9

Package

Name: bind9
Purl: pkg:deb/ubuntu/bind9@1:9.9.5.dfsg-3ubuntu0.19+esm12?arch=source&distro=esm-infra-legacy/trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:9.*

1:9.9.3.dfsg.P2-4ubuntu1

1:9.9.3.dfsg.P2-4ubuntu2

1:9.9.3.dfsg.P2-4ubuntu3

1:9.9.5.dfsg-2

1:9.9.5.dfsg-3

1:9.9.5.dfsg-3ubuntu0.1

1:9.9.5.dfsg-3ubuntu0.2

1:9.9.5.dfsg-3ubuntu0.3

1:9.9.5.dfsg-3ubuntu0.4

1:9.9.5.dfsg-3ubuntu0.5

1:9.9.5.dfsg-3ubuntu0.6

1:9.9.5.dfsg-3ubuntu0.7

1:9.9.5.dfsg-3ubuntu0.8

1:9.9.5.dfsg-3ubuntu0.9

1:9.9.5.dfsg-3ubuntu0.10

1:9.9.5.dfsg-3ubuntu0.11

1:9.9.5.dfsg-3ubuntu0.12

1:9.9.5.dfsg-3ubuntu0.13

1:9.9.5.dfsg-3ubuntu0.14

1:9.9.5.dfsg-3ubuntu0.15

1:9.9.5.dfsg-3ubuntu0.16

1:9.9.5.dfsg-3ubuntu0.17

1:9.9.5.dfsg-3ubuntu0.18

1:9.9.5.dfsg-3ubuntu0.19

1:9.9.5.dfsg-3ubuntu0.19+esm1

1:9.9.5.dfsg-3ubuntu0.19+esm2

1:9.9.5.dfsg-3ubuntu0.19+esm3

1:9.9.5.dfsg-3ubuntu0.19+esm4

1:9.9.5.dfsg-3ubuntu0.19+esm5

1:9.9.5.dfsg-3ubuntu0.19+esm6

1:9.9.5.dfsg-3ubuntu0.19+esm7

1:9.9.5.dfsg-3ubuntu0.19+esm9

1:9.9.5.dfsg-3ubuntu0.19+esm10

1:9.9.5.dfsg-3ubuntu0.19+esm11

1:9.9.5.dfsg-3ubuntu0.19+esm12

Ubuntu:Pro:16.04:LTS / bind9

Package

Name: bind9
Purl: pkg:deb/ubuntu/bind9@1:9.10.3.dfsg.P4-8ubuntu1.19+esm9?arch=source&distro=esm-infra/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:9.*

1:9.9.5.dfsg-11ubuntu1

1:9.9.5.dfsg-12

1:9.9.5.dfsg-12.1

1:9.9.5.dfsg-12.1ubuntu1

1:9.10.3.dfsg.P2-4

1:9.10.3.dfsg.P2-5

1:9.10.3.dfsg.P4-3

1:9.10.3.dfsg.P4-4

1:9.10.3.dfsg.P4-5

1:9.10.3.dfsg.P4-8

1:9.10.3.dfsg.P4-8ubuntu1

1:9.10.3.dfsg.P4-8ubuntu1.1

1:9.10.3.dfsg.P4-8ubuntu1.2

1:9.10.3.dfsg.P4-8ubuntu1.3

1:9.10.3.dfsg.P4-8ubuntu1.4

1:9.10.3.dfsg.P4-8ubuntu1.5

1:9.10.3.dfsg.P4-8ubuntu1.6

1:9.10.3.dfsg.P4-8ubuntu1.7

1:9.10.3.dfsg.P4-8ubuntu1.8

1:9.10.3.dfsg.P4-8ubuntu1.9

1:9.10.3.dfsg.P4-8ubuntu1.10

1:9.10.3.dfsg.P4-8ubuntu1.11

1:9.10.3.dfsg.P4-8ubuntu1.12

1:9.10.3.dfsg.P4-8ubuntu1.14

1:9.10.3.dfsg.P4-8ubuntu1.15

1:9.10.3.dfsg.P4-8ubuntu1.16

1:9.10.3.dfsg.P4-8ubuntu1.17

1:9.10.3.dfsg.P4-8ubuntu1.18

1:9.10.3.dfsg.P4-8ubuntu1.19

1:9.10.3.dfsg.P4-8ubuntu1.19+esm1

1:9.10.3.dfsg.P4-8ubuntu1.19+esm2

1:9.10.3.dfsg.P4-8ubuntu1.19+esm3

1:9.10.3.dfsg.P4-8ubuntu1.19+esm5

1:9.10.3.dfsg.P4-8ubuntu1.19+esm6

1:9.10.3.dfsg.P4-8ubuntu1.19+esm7

1:9.10.3.dfsg.P4-8ubuntu1.19+esm8

1:9.10.3.dfsg.P4-8ubuntu1.19+esm9

Ubuntu:Pro:18.04:LTS / bind9

Package

Name: bind9
Purl: pkg:deb/ubuntu/bind9@1:9.11.3+dfsg-1ubuntu1.19+esm4?arch=source&distro=esm-infra/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:9.*

1:9.10.3.dfsg.P4-12.6ubuntu1

1:9.11.2.P1-1ubuntu2

1:9.11.2.P1-1ubuntu3

1:9.11.2.P1-1ubuntu4

1:9.11.2.P1-1ubuntu5

1:9.11.3+dfsg-1ubuntu1

1:9.11.3+dfsg-1ubuntu1.1

1:9.11.3+dfsg-1ubuntu1.2

1:9.11.3+dfsg-1ubuntu1.3

1:9.11.3+dfsg-1ubuntu1.5

1:9.11.3+dfsg-1ubuntu1.7

1:9.11.3+dfsg-1ubuntu1.8

1:9.11.3+dfsg-1ubuntu1.9

1:9.11.3+dfsg-1ubuntu1.10

1:9.11.3+dfsg-1ubuntu1.11

1:9.11.3+dfsg-1ubuntu1.12

1:9.11.3+dfsg-1ubuntu1.13

1:9.11.3+dfsg-1ubuntu1.14

1:9.11.3+dfsg-1ubuntu1.15

1:9.11.3+dfsg-1ubuntu1.16

1:9.11.3+dfsg-1ubuntu1.17

1:9.11.3+dfsg-1ubuntu1.18

1:9.11.3+dfsg-1ubuntu1.19+esm1

1:9.11.3+dfsg-1ubuntu1.19+esm2

1:9.11.3+dfsg-1ubuntu1.19+esm3

1:9.11.3+dfsg-1ubuntu1.19+esm4