{"id":"MGASA-2018-0353","summary":"Updated bind packages fix security vulnerability","details":"Updated bind packages fix security vulnerability:\n\nIn ISC BIND, a defect in thie \"deny-answer-aliases\" feature makes it easy,\nwhen the feature is in use, to experience an assertion failure in name.c.\nAccidental or deliberate triggering of this defect will cause a REQUIRE\nassertion failure in named, causing the named process to stop execution\nand resulting in denial of service to clients (CVE-2018-5740).\n\nNote that only servers which have explicitly enabled the\n\"deny-answer-aliases\" feature are at risk and disabling the feature\nprevents exploitation.\n","modified":"2026-04-16T06:25:29.844373115Z","published":"2018-08-23T23:35:07Z","upstream":["CVE-2018-5740"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2018-0353.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=23413"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01639"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01643"}],"affected":[{"package":{"name":"bind","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/bind?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.10.8.P1-1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0353.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}