Vulnerability Note VU#710316

NSD vulnerable to one-byte overflow

Original Release date: 20 May 2009 | Last revised: 01 Jun 2009

Overview

A vulnerability exists in the way NSD processes certain types of packets that may lead to a one-byte buffer overflow.

Description

Name server daemon (NSD) is an open source name server developed by NLnet Labs. NSD contains an off-by-one error that can cause a one-byte buffer overflow when certain packets are processed. The vulnerability exits in the packet_read_query_section() function in packet.c in versions 3.x and in the process_query_section() function in query.c in versions 2.x.

Note that this issue affects NSD versions 2.0.0 through 3.2.1.

Impact

A remote, unauthenticated attacker may be able to cause the DNS software to crash resulting in a denial-of-service condition.

Solution

Apply patch

NLnet Labs has released NSD version 3.2.2 and patches for versions 3.2.1 and 2.3.7. More information and links to these patches can be found in NLnet Labs NSD Announcement.

Users are encouraged to check with their vendor to determine the appropriate patch or update to apply.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Debian GNU/LinuxAffected19 May 200920 May 2009
Apple Computer, Inc.Not Affected19 May 200920 May 2009
Computer AssociatesNot Affected19 May 200922 May 2009
Computer Associates eTrust Security ManagementNot Affected19 May 200922 May 2009
Cray Inc.Not Affected19 May 200920 May 2009
EricssonNot Affected19 May 200920 May 2009
Extreme NetworksNot Affected19 May 200922 May 2009
Gentoo LinuxNot Affected19 May 200922 May 2009
PePLinkNot Affected19 May 200920 May 2009
Q1 LabsNot Affected19 May 200901 Jun 2009
Red Hat, Inc.Not Affected19 May 200920 May 2009
SafeNetNot Affected19 May 200922 May 2009
Sun Microsystems, Inc.Not Affected19 May 200920 May 2009
The SCO GroupNot Affected19 May 200920 May 2009
3com, Inc.Unknown19 May 200919 May 2009
If you are a vendor and your product is affected, let us know.View More »

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

This issue was reported in NLnet Labs NSD Announcement.

This document was written by Chris Taschner.

Other Information

  • CVE IDs: Unknown
  • Date Public: 18 May 2009
  • Date First Published: 20 May 2009
  • Date Last Updated: 01 Jun 2009
  • Severity Metric: 8.40
  • Document Revision: 10

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.