CVE-2020-8618

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2020-8618

Severity

4.9

Medium

CVSS CVSS_V3

Description

An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clients.

References

https://images.chainguard.dev/security/CGA-m6pq-qv5h-vj9r
https://github.com/advisories/GHSA-2c3j-p34f-v2cr
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html
https://kb.isc.org/docs/cve-2020-8618
https://security.netapp.com/advisory/ntap-20200625-0003/
https://usn.ubuntu.com/4399-1/
https://security.alpinelinux.org/vuln/CVE-2020-8618
https://security-tracker.debian.org/tracker/CVE-2020-8618

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Private Policy

CVE-2020-8618

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources