Vulnerability Description
ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for an AAAA record.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Isc | Bind | 9.9.0 |
| Redhat | Enterprise Linux Desktop | 6.0 |
| Redhat | Enterprise Linux Hpc Node | 6.0 |
| Redhat | Enterprise Linux Server | 6.0 |
| Redhat | Enterprise Linux Server Aus | 6.4 |
| Redhat | Enterprise Linux Server Eus | 6.4.z |
| Redhat | Enterprise Linux Workstation | 6.0 |
| Canonical | Ubuntu Linux | 12.04 |
Related Weaknesses (CWE)
References
- http://rhn.redhat.com/errata/RHSA-2013-0550.htmlThird Party Advisory
- http://www.isc.org/software/bind/advisories/cve-2012-5689Vendor Advisory
- http://www.ubuntu.com/usn/USN-2693-1Third Party Advisory
- https://kb.isc.org/article/AA-00855/Vendor Advisory
- http://rhn.redhat.com/errata/RHSA-2013-0550.htmlThird Party Advisory
- http://www.isc.org/software/bind/advisories/cve-2012-5689Vendor Advisory
- http://www.ubuntu.com/usn/USN-2693-1Third Party Advisory
- https://kb.isc.org/article/AA-00855/Vendor Advisory
FAQ
What is CVE-2012-5689?
CVE-2012-5689 is a vulnerability with a CVSS score of 7.1 (HIGH). ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a de...
How severe is CVE-2012-5689?
CVE-2012-5689 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-5689?
Check the references section above for vendor advisories and patch information. Affected products include: Isc Bind, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Hpc Node, Redhat Enterprise Linux Server, Redhat Enterprise Linux Server Aus.