CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2022/10/03 3:35 p.m.•6 views

bind: memory leaks in EdDSA DNSSEC verification code

A flaw was found in the Bind package, where the DNSSEC verification code for the EdDSA algorithm leaks memory when there is a signature length mismatch. By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak, resulting in...

7.5CVSS7.2AI score0.0208EPSS

RedHat Linux•added 2022/10/03 3:35 p.m.•7 views

bind: memory leak in ECDSA DNSSEC verification code

A flaw was found in the Bind package. By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak, resulting in crashing the program...

7.5CVSS7.1AI score0.02198EPSS

RedHat Linux•added 2022/10/03 3:30 p.m.•3 views

bind: memory leaks in EdDSA DNSSEC verification code

7.5CVSS7.2AI score0.0208EPSS

OSV•added 2022/10/03 12:0 a.m.•41 views

ALSA-2022:6763 Important: bind security update

7.5CVSS7.6AI score0.02198EPSS

Exploits0References8

OpenVAS•added 2022/10/02 12:0 a.m.•17 views

Fedora: Security Advisory for knot-resolver (FEDORA-2022-357cc1a81b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.01454EPSS

Exploits0References2

OpenVAS•added 2022/10/02 12:0 a.m.•18 views

Fedora: Security Advisory for knot-resolver (FEDORA-2022-2a4ca7b18d)

7.5CVSS7.6AI score0.01454EPSS

Exploits0References2

Fedora•added 2022/10/01 1:26 a.m.•41 views

[SECURITY] Fedora 35 Update: bind-9.16.33-1.fc35

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

7.5CVSS1.4AI score0.02198EPSS

Fedora•added 2022/10/01 1:25 a.m.•32 views

[SECURITY] Fedora 35 Update: knot-resolver-5.5.3-1.fc35

The Knot Resolver is a DNSSEC-enabled caching full resolver implementation written in C and LuaJIT, including both a resolver library and a daemon. Modular architecture of the library keeps the core tiny and efficient, and provides a state-machine like API for extensions. The package is...

7.5CVSS2.6AI score0.01454EPSS

Fedora•added 2022/10/01 1:13 a.m.•48 views

[SECURITY] Fedora 36 Update: knot-resolver-5.5.3-1.fc36

7.5CVSS2.6AI score0.01454EPSS

OpenVAS•added 2022/09/30 12:0 a.m.•29 views

Unbound DNS Resolver < 1.16.3 DoS Vulnerability

Unbound DNS Resolver is prone to a denial of service DoS vulnerability due to a SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.6AI score0.01259EPSS

OSV•added 2022/09/29 6:39 p.m.•2 views

CLSA-2022-1664476753 Fixed CVEs in bind: CVE-2022-38178, CVE-2022-38177, CVE-2022-2795

CVE-2022-2795: fix possible resolver performance degradation when processing large delegations - CVE-2022-38177: fix memory leak in ECDSA DNSSEC verification code - CVE-2022-38178: fix memory leak in EdDSA DNSSEC verification code...

7.5CVSS6.8AI score0.02198EPSS

OSV•added 2022/09/29 6:36 p.m.•2 views

CLSA-2022-1664476612 Fixed CVE-2022-2795 in bind

CVE-2022-2795: fix possible resolver performance degradation when processing large delegations...

5.3CVSS6.7AI score0.01429EPSS

CloudLinux•added 2022/09/29 6:36 p.m.•48 views

Fixed CVE-2022-2795 in bind

CVE-2022-2795: fix possible resolver performance degradation when processing large delegations...

5.3CVSS7.9AI score0.01429EPSS

OSV•added 2022/09/29 6:23 p.m.•3 views

CLSA-2022-1664475836 Fixed CVE-2022-2795 in bind

CVE-2022-2795: fix possible resolver performance degradation when processing large delegations...

5.3CVSS6.7AI score0.01429EPSS

OSV•added 2022/09/29 6:12 p.m.•1 views

CLSA-2022-1664475166 Fix CVE(s): CVE-2022-38177, CVE-2022-2795

SECURITY UPDATE: degrade resolver performance - debian/patches/CVE-2022-2795.patch: adds limits in fctxgetaddresses to avoid spending excessive amounts of time on processing large delegations in resolver code in lib/dns/resolver.c. - CVE-2022-2795 SECURITY UPDATE: memory leak -...

7.5CVSS6.9AI score0.02198EPSS

Positive Technologies•added 2022/09/29 12:0 a.m.•4 views

PT-2022-21781 · Unknown · Go-Resolver

Name of the Vulnerable Software and Affected Versions: go-resolver affected versions not specified Description: The issue is related to incorrect DNSSEC validation. An attacker can cause the package to report successful validation for invalid, attacker-controlled records. Specifically, root DNSSE...

7.7CVSS7.2AI score0.00242EPSS

Exploits0References8

Redos•added 2022/09/29 12:0 a.m.•69 views

ROS-20220929-01

BIND DNS server vulnerability is related to boundary conditions when reusing HTTP connection when requesting statistics from a statistics channel. Exploitation of the vulnerability could allow an attacker, acting remotely, using a managed DNS server to cause a read error outside the boundary...

8.2CVSS7.2AI score0.02198EPSS

CNVD•added 2022/09/28 12:0 a.m.•38 views

NIC Knot Resolver Denial of Service Vulnerability

Knot Resolver is a cached DNS resolver implementation that includes a resolver library and daemon. A denial of service vulnerability exists in NIC Knot Resolver versions prior to 5.5.3. The vulnerability stems from not properly handling incoming error messages and can be exploited by a remote...

7.5CVSS7.1AI score0.01454EPSS