The code that processes control channel messages sent to named
calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing named
to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary. This issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "bind9" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "bind9-doc" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "bind9-host" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "bind9utils" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "dnsutils" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "host" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "libbind-dev" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "libbind9-90" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "libdns100" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "libisc95" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "libisccc90" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "libisccfg90" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "liblwres90" }, { "binary_version": "1:9.9.5.dfsg-3ubuntu0.19+esm11", "binary_name": "lwresd" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "bind9" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "bind9-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "bind9-doc" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "bind9-host" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "bind9-host-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "bind9utils" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "bind9utils-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "dnsutils" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "dnsutils-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "host" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libbind-dev" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libbind-export-dev" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libbind9-140" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libbind9-140-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libdns-export162" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libdns-export162-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libdns-export162-udeb" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libdns-export162-udeb-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libdns162" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libdns162-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libirs-export141" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libirs-export141-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libirs-export141-udeb" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libirs-export141-udeb-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libirs141" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libirs141-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisc-export160" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisc-export160-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisc-export160-udeb" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisc-export160-udeb-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisc160" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisc160-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccc-export140" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccc-export140-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccc-export140-udeb" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccc-export140-udeb-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccc140" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccc140-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccfg-export140" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccfg-export140-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccfg-export140-udeb" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccfg-export140-udeb-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccfg140" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "libisccfg140-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "liblwres141" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "liblwres141-dbgsym" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "lwresd" }, { "binary_version": "1:9.10.3.dfsg.P4-8ubuntu1.19+esm7", "binary_name": "lwresd-dbgsym" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "bind9" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "bind9-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "bind9-doc" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "bind9-host" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "bind9-host-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "bind9utils" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "bind9utils-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "dnsutils" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "dnsutils-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libbind-dev" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libbind-export-dev" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libbind9-160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libbind9-160-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libdns-export1100" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libdns-export1100-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libdns-export1100-udeb" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libdns1100" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libdns1100-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libirs-export160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libirs-export160-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libirs-export160-udeb" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libirs160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libirs160-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisc-export169" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisc-export169-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisc-export169-udeb" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisc169" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisc169-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccc-export160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccc-export160-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccc-export160-udeb" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccc160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccc160-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccfg-export160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccfg-export160-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccfg-export160-udeb" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccfg160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "libisccfg160-dbgsym" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "liblwres160" }, { "binary_version": "1:9.11.3+dfsg-1ubuntu1.19+esm2", "binary_name": "liblwres160-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-dbgsym" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-dnsutils" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-dnsutils-dbgsym" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-doc" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-host" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-host-dbgsym" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-libs" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-libs-dbgsym" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-utils" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9-utils-dbgsym" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "bind9utils" }, { "binary_version": "1:9.16.1-0ubuntu2.16", "binary_name": "dnsutils" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-dbgsym" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-dev" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-dnsutils" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-dnsutils-dbgsym" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-doc" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-host" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-host-dbgsym" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-libs" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-libs-dbgsym" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-utils" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9-utils-dbgsym" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "bind9utils" }, { "binary_version": "1:9.18.12-0ubuntu0.22.04.3", "binary_name": "dnsutils" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-dbgsym" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-dev" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-dnsutils" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-dnsutils-dbgsym" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-doc" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-host" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-host-dbgsym" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-libs" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-libs-dbgsym" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-utils" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9-utils-dbgsym" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "bind9utils" }, { "binary_version": "1:9.18.18-0ubuntu2", "binary_name": "dnsutils" } ] }