Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to dereference a freed fetch context.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Bind | Isc | 9.3.0 (including) | 9.3.0 (including) |
| Bind | Isc | 9.3.1 (including) | 9.3.1 (including) |
| Bind | Isc | 9.3.2 (including) | 9.3.2 (including) |
| Bind | Isc | 9.4.0 (including) | 9.4.0 (including) |
| Bind | Isc | 9.4.0-rc1 (including) | 9.4.0-rc1 (including) |
| Bind | Isc | 9.5.0 (including) | 9.5.0 (including) |
| Bind9 | Ubuntu | dapper | * |
| Bind9 | Ubuntu | devel | * |
| Bind9 | Ubuntu | edgy | * |
| Bind9 | Ubuntu | feisty | * |
| Red Hat Enterprise Linux 5 | RedHat | bind-30:9.3.3-8.el5 | * |