VDB

CVE-2018-5744

CVE-2018-5744 PUBLISHED

A failure to free memory can occur when processing messages having a specific combination of EDNS options. Versions affected are: BIND 9.10.7 -> 9.10.8-P1, 9.11.3 -> 9.11.5-P1, 9.12.0 -> 9.12.3-P1, and versions 9.10.7-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected.

EPSS 4.44% · 89.3th percentile

Risk Scores

EPSS Score
4.44%
89.3th percentile

Affected Products

VendorProductVersions
Ubuntu:18.04:LTSbind90, 1:9.10.3.dfsg.P4-12.6ubuntu1, 1:9.11.2.P1-1ubuntu2

Exploit Intelligence

…and 73 more exploits

Timeline

  • Sep 27, 2018 PoC Published
  • Oct 1, 2018 PoC Published
  • Feb 21, 2019 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›