Description:

ISC has released a security update to fix the vulnerability in BIND. The details of the security update can be found at:

https://kb.isc.org/v1/docs/cve-2022-1183

Affected Systems:

• BIND 9.18.0 to 9.18.2 (Current Stable)
• BIND 9.19.0 (Development)

Impact:

Successful exploitation of the vulnerability could lead to denial of service on an affected system.

Recommendation:

Internet Systems Consortium (ISC) has released the following patches to solve the problems:

• BIND 9.18.3 (Current Stable)
• BIND 9.19.1 (Development)

The patches can be downloaded at the following URLs:

https://www.isc.org/download/

Administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

More Information:

• https://kb.isc.org/v1/docs/cve-2022-1183
• https://www.isc.org/download/
• https://downloads.isc.org/isc/bind9/9.18.3/doc/arm/html/notes.html
• https://downloads.isc.org/isc/bind9/9.19.1/doc/arm/html/notes.html
• https://www.hkcert.org/security-bulletin/isc-bind-denial-of-service-vulnerability_20220519
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1183