[Git][security-tracker-team/security-tracker][master] Add CVE-2018-5741/bind9

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
10ba7b53 by Salvatore Bonaccorso at 2018-09-20T05:14:27Z
Add CVE-2018-5741/bind9

ISC BIND before releases 9.11.4-P2 and 9.12.2-P2 does not properly
document the behaviour of the krb5-subdomain and ms-subdomain update
policies. This incorrect documentation could mislead operators into
believing that policies they had configured were more restrictive than
they actually were.

Will be adressed in

    BIND 9.11.5
    BIND 9.12.3

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -30768,8 +30768,12 @@ CVE-2018-5743
 	RESERVED
 CVE-2018-5742
 	RESERVED
-CVE-2018-5741
+CVE-2018-5741 [Update policies krb5-subdomain and ms-subdomain]
 	RESERVED
+	- bind9 <unfixed> (unimportant)
+	NOTE: https://kb.isc.org/docs/cve-2018-5741
+	NOTE: No code fix provided; Incorrect documentation of krb5-subdomain and ms-subdomain update policies.
+	NOTE: Will be adressed in 9.11.5, 9.12.3
 CVE-2018-5740 [A flaw in the "deny-answer-aliases" feature can cause an INSIST assertion failure in named]
 	RESERVED
 	{DLA-1485-1}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/10ba7b53408ec359d2ab937532ba94e003e1b30d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/10ba7b53408ec359d2ab937532ba94e003e1b30d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180920/3ca6b662/attachment.html>