CVE-2018-5745

Name of the Vulnerable Software and Affected Versions BIND versions 9.9.0 through 9.10.8-P1 BIND versions 9.11.0 through 9.11.5-P1 BIND versions 9.12.0 through 9.12.3-P1 BIND 9 Supported Preview Edition versions 9.9.3-S1 through 9.11.5-S3 BIND versions 9.13.0 through 9.13.6

Description The issue is related to an error in the managed-keys feature of the BIND server, which can cause the server to exit due to an assertion failure when a trust anchor's keys are replaced with keys using an unsupported algorithm during key rollover. This can be exploited by a remote attacker to cause a denial of service.

Recommendations For BIND versions 9.9.0 through 9.10.8-P1, update to a version that fixes the issue. For BIND versions 9.11.0 through 9.11.5-P1, update to a version that fixes the issue. For BIND versions 9.12.0 through 9.12.3-P1, update to a version that fixes the issue. For BIND 9 Supported Preview Edition versions 9.9.3-S1 through 9.11.5-S3, update to a version that fixes the issue. For BIND versions 9.13.0 through 9.13.6, update to a version that fixes the issue. As a temporary workaround, consider disabling the managed-keys feature until a patch is available.