FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion

Affected packages
bind99 < 9.9.2.2
bind99-base < 9.9.2.2
bind98 < 9.8.4.2
bind98-base < 9.8.4.2

Details

VuXML ID 7a282e49-95b6-11e2-8433-0800273fe665
Discovery 2013-03-11
Entry 2013-03-27

ISC reports:

A critical defect in BIND 9 allows an attacker to cause excessive memory consumption in named or other programs linked to libdns.

References

CVE Name CVE-2013-2266