ГлавнаяУязвимости → CVE-2024-1737
7.5высокая

CVE-2024-1737

→ есть в БДУ: BDU:2024-05964 (на русском)
Описание (на английском; русское — в БДУ выше)

Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name. This issue affects BIND 9 versions 9.11.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.4-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.

CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
http://www.openwall.com/lists/oss-security/2024/07/23/1http://www.openwall.com/lists/oss-security/2024/07/31/2https://kb.isc.org/docs/cve-2024-1737https://kb.isc.org/docs/rrset-limits-in-zoneshttp://www.openwall.com/lists/oss-security/2024/07/23/1https://kb.isc.org/docs/cve-2024-1737https://kb.isc.org/docs/rrset-limits-in-zoneshttps://security.netapp.com/advisory/ntap-20240731-0003/