Your submission was sent successfully! Close

CVE-2022-0396

Published: 16 March 2022

BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.

Priority

Medium

CVSS 3 base score: 5.3

Status

Package Release Status
bind9
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(1:9.11.3+dfsg-1ubuntu1.16)
focal Not vulnerable
(1:9.16.1-0ubuntu2.9)
impish
Released (1:9.16.15-1ubuntu1.2)
jammy
Released (1:9.18.0-2ubuntu3)
trusty Not vulnerable

upstream
Released (9.18.1)
xenial Not vulnerable