Lucene search
K

75 matches found

OSV
OSV
added 2025/08/18 10:19 a.m.4 views

CLSA-2025-1755512368 bind: Fix of CVE-2023-4408

CVE-2023-4408: reapply patch without dnsnamet ABI change...

7.5CVSS5.8AI score0.01327EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-4408

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but...

7.5CVSS6.6AI score0.01327EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.9 views

TencentOS Server 2: bind, bind-dyndb-ldap, and dhcp (TSSA-2024:0157)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0157 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

7.5CVSS7AI score0.99995EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.10 views

TencentOS Server 3: bind9.16 (TSSA-2024:0113)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0113 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.1AI score0.99995EPSS
Exploits1References7
Rosalinux
Rosalinux
added 2025/04/11 10:8 p.m.27 views

Advisory ROSA-SA-2025-2834

Software: bind 9.11.36 OS: ROSA Virtualization 2.1 packageevrstring: bind-9.11.36-16.rv3.4 CVE-ID: CVE-2022-3094 BDU-ID: 2023-00580 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the named component of the DNS BIND server is related to the ability to use memory after it has been freed. Exploitation...

7.5CVSS8.4AI score0.99995EPSS
Exploits1
OSV
OSV
added 2025/03/28 5:57 p.m.7 views

CLSA-2025-1743184619 bind: Fix of CVE-2023-4408

Remove bind-9.11.4-CVE-2023-4408.patch which introduces an ABI change that breaks bind-dyndb-ldap - Enforce that bind-dyndb-ldap is updated after ABI changes introduced in 9.11.4-26.P2.15 update...

7.5CVSS6.8AI score0.01327EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/26 3:47 p.m.35 views

Security Bulletin: Vulnerabilities in bind and dnsmasq affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products

Summary Vulnerabilities in bind and dnsmasq affect IBM Storage Virtualize products and could denial of service. CVE-2022-2795 CVE-2022-3094 CVE-2022-3736 CVE-2022-3924 CVE-2023-4408 CVE-2023-5517 CVE-5679 CVE-2023-6516 CVE-2023-50387 CVE-2023-50868 . Vulnerability Details CVEID:CVE-2022-2795...

7.5CVSS8.2AI score0.99995EPSS
Exploits1Affected Software5
OSV
OSV
added 2025/02/19 10:45 a.m.7 views

CLSA-2025-1739961948 bind: Fix of CVE-2023-4408

CVE-2023-4408: fix high CPU load in ‘named’ while parsing large DNS messages...

7.5CVSS6.8AI score0.01327EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.18 views

Azure Linux 3.0 Security Update: bind (CVE-2023-4408)

The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4408 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/01/06 12:0 a.m.38 views

RHEL 6 : bind and bind-dyndb-ldap (RHSA-2025:0039)

"The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:0039 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named...

7.5CVSS7AI score0.99995EPSS
Exploits1References10
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/21 9:46 p.m.46 views

Security Bulletin: IBM Technical Support Appliance - possible excessive CPU usage or denial of service

Summary DNS protocol allows teh IBM Technical Suport Appliance to resolve hostnames to their corresponding IP address. Vulnerability Details CVEID:CVE-2023-4408 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error when parsing large DNS messages. By flooding the target...

7.5CVSS7.1AI score0.99995EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/14 1:15 p.m.22 views

Security Bulletin: Vulnerability in BIND affects IBM Integrated Analytics System [CVE-2023-4408]

Summary Redhat provided BIND is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE CVE-2023-4408 Vulnerability Details CVEID:CVE-2023-4408 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error when parsing large DNS...

7.5CVSS6.8AI score0.01327EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/11/11 5:22 p.m.7 views

CLSA-2024-1731345748 Fix CVE(s): CVE-2023-4408

SECURITY UPDATE: The DNS message parsing code in named includes a section whose computational complexity is overly high - debian/patches/CVE-2023-4408.patch: refactoring parsing code - debian/libdns1100.symbols: some function declarations were removed according to the CVE-2023-4408.patch -...

7.5CVSS6.8AI score0.01327EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.32 views

Amazon Linux 2 : bind (ALAS-2024-2625)

The version of bind installed on the remote host is prior to 9.11.4-26.P2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2625 advisory. The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problem...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References4
Amazon
Amazon
added 2024/08/20 12:0 a.m.27 views

Important: bind

Issue Overview: The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This...

7.5CVSS8AI score0.01327EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.31 views

Oracle Linux 8 : bind9.16 (ELSA-2024-5390)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5390 advisory. - Minor fix of reclimit test backport CVE-2024-1737 - Backport addition of max-records-per-type and max-records-per-type options CVE-2024-1737 - Resolv...

7.5CVSS7.1AI score0.99995EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2024/08/13 12:0 a.m.359 views

bind and bind-dyndb-ldap security update

bind 9.16.23-18.0.1.6 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-18.6 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-18.5 - Backport addition of max-records-per-type and max-records-per-type options 32:9.16.23-18.2 - Resolve CVE-2024-1975 -...

7.5CVSS7.2AI score0.99995EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.37 views

Oracle Linux 9 : bind / and / bind-dyndb-ldap (ELSA-2024-5231)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5231 advisory. - Minor fix of reclimit test backport CVE-2024-1737 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Resolve CVE-2024-4076 - Prevent crashing at...

7.5CVSS7.2AI score0.99995EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.29 views

CBL Mariner 2.0 Security Update: bind (CVE-2023-4408)

The version of bind installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4408 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/07/01 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1850)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.99995EPSS
Exploits1References2
Rows per page
Query Builder