Security Advisory

CVE-2023-4236

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-20 12:32:16

Last updated 2025-02-13 17:09:18

Assigner isc

State PUBLISHED

Description

A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18 and 9.18.11-S1 through 9.18.18-S1.

← Browse all CVEs View on cve.org ↗