Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Sep 21, 2022· Updated May 28, 2025

Buffer overread in statistics channel code

CVE-2022-2881

Description

The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the process.

Affected products

18

osv-coords17 versions
pkg:apk/chainguard/bind pkg:apk/chainguard/bind-dev pkg:apk/chainguard/bind-dnssec-root pkg:apk/chainguard/bind-dnssec-tools pkg:apk/chainguard/bind-doc pkg:apk/chainguard/bind-libs pkg:apk/chainguard/bind-plugins pkg:apk/chainguard/bind-tools pkg:apk/wolfi/bind pkg:apk/wolfi/bind-dev pkg:apk/wolfi/bind-dnssec-root pkg:apk/wolfi/bind-dnssec-tools pkg:apk/wolfi/bind-doc pkg:apk/wolfi/bind-libs pkg:apk/wolfi/bind-plugins pkg:apk/wolfi/bind-tools pkg:rpm/opensuse/bind&distro=openSUSE%20Tumbleweed
< 0+ 16 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 9.18.7-1.1
ISC/BIND9v5
Range: Open Source Branch 9.18 9.18.0 through versions before 9.18.7

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

security.gentoo.org/glsa/202210-25mitrevendor-advisory
www.openwall.com/lists/oss-security/2022/09/21/3mitremailing-list
kb.isc.org/docs/cve-2022-2881mitre

News mentions

0

No linked articles in our index yet.