[dns-operations] not CVE 2015-8000, and not CVE 2015-8461: actively exploited 2015-12-16

Nick Urbanik nick.urbanik at optusnet.com.au
Thu Dec 17 23:30:49 UTC 2015


On 17/12/15 16:22 +1100, Nick Urbanik wrote:
>On 17/12/15 10:50 +1100, Nick Urbanik wrote:
>>I'd like to report that we have had CVE 2015-8000 actively exploited
>
>I think this is *not* 2015-8000, but is actually CVE 2015-8461, which
>Red Hat, in https://bugzilla.redhat.com/show_bug.cgi?id=1291186,

>>about 25 hours ago, with entries in logs like this:
>>06:29:47.521 general: resolver.c:3123: REQUIRE((((fctx->finds).head == ((void *)0)) ? isc_boolean_true : isc_boolean_false)) failed
>>06:29:47.521 general: exiting (due to assertion failure)
>>
>>These are RHEL 6

It turns out that this is a different bug, addressed in 9.9.8.  I
raised https://bugzilla.redhat.com/show_bug.cgi?id=1292611 for this
problem.
-- 
Nick Urbanik http://nicku.org 808-71011 nick.urbanik at optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24  ID: BB9D2C24
I disclaim, therefore I am.



More information about the dns-operations mailing list