公告ID: KYLIN-2019-6477
安全等级: 中等
产品: Kylin V3
发布日期: 2019年11月20日
CVE: CVE-2019-6477
CVSS3评分: 7.5
概述:
描述:
A flaw was found in the way bind limited the number of TCP clients that can be connected at any given time. A remote attacker could use one TCP client to send a large number of DNS requests over a single connection, causing exhaustion of the pool of file descriptors available to named, and potentially affecting network connections and the management of files such as log files or zone journal files. 系统版本:
KYLIN 3.0.x
KYLIN 3.0.x
KYLIN 3.2.x
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
bind97
bind
bind
bind
bind