CVE-2015-8461

Advisory lineage Upstream: 0 Downstream: 1

Downstream

OPENSUSE-SU-2024:10650-1

Modified

Published: 16 Dec 2015, 15:00

Last modified:06 Aug 2024, 08:20

Vulnerability Summary

Overall Risk (default)

medium

32/100

CVSS Score

7.1 HIGH

v2.0 (nvd)

EPSS Score

16% MEDIUM

16% probability +6.64%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

16 Dec 2015, 15:00

Published

Vulnerability first disclosed

06 Aug 2024, 08:20

Last Modified

Vulnerability information updated

Description

Race condition in resolver.c in named in ISC BIND 9.9.8 before 9.9.8-P2 and 9.10.3 before 9.10.3-P2 allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via unspecified vectors.

CVSS Metrics

v2.0•HIGH•Score: 7.1AV:N/AC:M/Au:N/C:N/I:N/A:C

EPSS Trends

Current EPSS score: 16.00%• Percentile: 95%

Techniques & Countermeasures

CWE-362•Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Affected Systems

isc•bind
8.4.7 | 9.0 | 9.0.1 | 9.1 | 9.1.1 | 9.1.2 | 9.1.3 | 9.2 | 9.2.0 | 9.2.1 | 9.2.2 | 9.2.2:p3 | 9.2.3 | 9.2.4 | 9.2.5 | 9.2.6 | 9.2.7 | 9.3 | 9.3.0 | 9.3.1 | 9.3.2 | 9.3.3 | 9.4 | 9.4.0 | 9.4.0:rc1 | 9.4.1 | 9.4.2 | 9.4.3 | 9.4.3:rc1 | 9.5 | 9.5.0 | 9.5.0:rc1 | 9.5.1 | 9.5.1:rc1 | 9.5.1:rc2 | 9.5.2 | 9.5.2:rc1 | 9.5.3 | 9.5.3:rc1 | 9.6 | 9.6:r5_p1 | 9.6:r6_b1 | 9.6:r6_rc1 | 9.6:r6_rc2 | 9.6:r7_p1 | 9.6:r7_p2 | 9.6:r9_p1 | 9.6.0 | 9.6.0:p1 | 9.6.0:rc1 | 9.6.0:rc2 | 9.6.1 | 9.6.1:p1 | 9.6.1:p2 | 9.6.1:p3 | 9.6.1:rc1 | 9.6.2 | 9.6.2:rc1 | 9.6.3 | 9.6.3:rc1 | 9.7.0 | 9.7.0:b1 | 9.7.0:p1 | 9.7.0:p2 | 9.7.0:rc1 | 9.7.0:rc2 | 9.7.1 | 9.7.1:p1 | 9.7.1:p2 | 9.7.1:rc1 | 9.7.2 | 9.7.2:p1 | 9.7.2:p2 | 9.7.2:p3 | 9.7.2:rc1 | 9.7.3 | 9.7.3:b1 | 9.7.3:p1 | 9.7.3:rc1 | 9.7.4 | 9.7.4:b1 | 9.7.4:p1 | 9.7.4:rc1 | 9.7.5 | 9.7.5:b1 | 9.7.5:rc1 | 9.7.5:rc2 | 9.7.6 | 9.7.6:p1 | 9.7.6:p2 | 9.7.7 | 9.8.0 | 9.8.0:a1 | 9.8.0:b1 | 9.8.0:p1 | 9.8.0:p2 | 9.8.0:p4 | 9.8.0:rc1 | 9.8.1 | 9.8.1:b1 | 9.8.1:b2 | 9.8.1:b3 | 9.8.1:p1 | 9.8.1:rc1 | 9.8.2:b1 | 9.8.2:rc1 | 9.8.2:rc2 | 9.8.3 | 9.8.3:p1 | 9.8.3:p2 | 9.8.4 | 9.8.5 | 9.8.5:b1 | 9.8.5:b2 | 9.8.5:p1 | 9.8.5:p2 | 9.8.5:rc1 | 9.8.5:rc2 | 9.8.6:b1 | 9.8.6:rc1 | 9.8.6:rc2 | 9.9.0 | 9.9.0:a1 | 9.9.0:a2 | 9.9.0:a3 | 9.9.0:b1 | 9.9.0:b2 | 9.9.0:rc1 | 9.9.0:rc2 | 9.9.0:rc3 | 9.9.0:rc4 | 9.9.1 | 9.9.1:p1 | 9.9.1:p2 | 9.9.2 | 9.9.3 | 9.9.3:b1 | 9.9.3:b2 | 9.9.3:p1 | 9.9.3:p2 | 9.9.3:rc1 | 9.9.3:rc2 | 9.9.4:b1 | 9.9.5 | 9.9.6 | 9.9.6:p1 | 9.9.7:b1 | 9.9.7:p1 | 9.9.7:rc1 | 9.9.7:rc2 | 9.9.8 | 9.9.8:rc1 | 9.9.8:s1 | 9.10.0 | 9.10.1 | 9.10.1:p1 | 9.10.2:b1 | 9.10.2:p1 | 9.10.2:p2 | 9.10.2:p3 | 9.10.2:p4 | 9.10.2:rc1 | 9.10.3 | 9.10.3:rc1