CVE-2018-5742

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 -> bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also be affected.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
Affected Products (NVD)
VendorProductVersion
iscbind
9.9.4-65 ≤
𝑥
≤ 9.9.4-72
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
bind9
bookworm
1:9.18.28-1~deb12u2
fixed
bookworm (security)
1:9.18.28-1~deb12u2
fixed
bullseye
1:9.16.50-1~deb11u2
fixed
bullseye (security)
1:9.16.50-1~deb11u1
fixed
sid
1:9.20.2-1
fixed
trixie
1:9.20.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bind9
bionic
not-affected
cosmic
not-affected
trusty
not-affected
xenial
not-affected
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
bind
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-chroot
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-devel
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-libs
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-libs-lite
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-license
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-lite-devel
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-pkcs11
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-pkcs11-devel
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-pkcs11-libs
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-pkcs11-utils
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-sdb
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-sdb-chroot
RHEL 7
32:9.9.4-73.el7_6
fixed
bind-utils
RHEL 7
32:9.9.4-73.el7_6
fixed
Common Weakness Enumeration
References
https://access.redhat.com/security/cve/cve-2018-5742
https://access.redhat.com/security/cve/cve-2018-5742