CVE-2010-0213

Public Date:
2010-07-15
CWE:
CWE-835
Bugzilla:
616706: CVE-2010-0213 BIND: DoS (infinite loop of RRSIGs queries to authoritative servers) via certain RRSIG query

The MITRE CVE dictionary describes this issue as:

BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor that is configured statically or via DNSSEC Lookaside Validation (DLV), allows remote attackers to cause a denial of service (infinite loop) via a query for an RRSIG record whose answer is not in the cache, which causes BIND to repeatedly send RRSIG queries to the authoritative servers.

Find out more about CVE-2010-0213 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Not vulnerable. This issue did not affect the versions of the bind as shipped with Red Hat Enterprise Linux 3, 4, or 5.

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 6 bind Not affected
Red Hat Enterprise Linux 5 bind Not affected
Red Hat Enterprise Linux 4 bind Not affected
Red Hat Enterprise Linux 3 bind Not affected
Last Modified

CVE description copyright © 2017, The MITRE Corporation