Denial of service vulnerability in bind - CVE-2020-8616
|ID: oval:org.secpod.oval:def:63400||Date: (C)2020-05-21 (M)2020-06-01|
|Class: VULNERABILITY||Family: unix|
A flaw was found in BIND, where it does not sufficiently limit the number of fetches that can be performed while processing a referral response. This flaw allows an attacker to cause a denial of service attack. The attacker can also exploit this behavior to use the recursing server as a reflector in a reflection attack with a high amplification factor.
|Red Hat Enterprise Linux 6|
|Red Hat Enterprise Linux 7|
|Red Hat Enterprise Linux 8|