DescriptionBIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor that is configured statically or via DNSSEC Lookaside Validation (DLV), allows remote attackers to cause a denial of service (infinite loop) via a query for an RRSIG record whose answer is not in the cache, which causes BIND to repeatedly send RRSIG queries to the authoritative servers.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SR:2010:020, published Wed, 03 Nov 2010 12:00:00 +0000 openSUSE-SU-2010:0917-1
SUSE Timeline for this CVECVE page created: Fri Jun 28 03:26:22 2013
CVE page last modified: Fri Dec 8 16:37:35 2023