Open Neural Network Exchange Buffer Error Vulnerability

The Open Neural Network Exchange ONNX is an open ecosystem that enables AI developers to choose the right tools for their projects as they evolve. A buffer error vulnerability exists in Open Neural Network Exchange 1.15.0 and prior versions, which stems from the ONNXASSERT and ONNXASSERTM functio...

Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled

...

Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution

...

Fedora 38 : hugin (2024-60cefb07e8)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-60cefb07e8 advisory. Security fix for CVE-2024-25442 CVE-2024-25443 CVE-2024-25445 CVE-2024-25446 Tenable has extracted the preceding description block directly from the...

Reachable Assertion

libbind9.so is vulnerable to an assertion failure during recursive resolution. The vulnerability is due to a bad interaction between DNS64 and serve-stale features when both are enabled. This can potentially leads to Denial of service...

Assertion Failure

bind9 is vulnerable to Assertion Failure. The vulnerability is due to assertion failure when the resolver receives a PTR Pointer Record query for an RFC 1918 address a private IP address as defined by the Internet Assigned Numbers Authority in nxdomain-redirect ; configuration. which leads to a...

SUSE CVE-2023-5679

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through...

openSUSE 15 Security Update : hugin (openSUSE-SU-2024:0047-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0047-1 advisory. - An issue in the HuginBase::PanoramaMemento::loadPTScript function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsi...

MGASA-2024-0038 Updated bind packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Parsing large DNS messages may cause excessive CPU load. CVE-2023-4408 Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled. CVE-2023-5517 Enabling both DNS64 and serve-stale may cause an assertion...

CVE-2023-5517

A flaw was found in the bind package which may result in a Denial of Service in named process. This is a result of a reachable assertion, leading named to prematurely terminate when both conditions are met: nxdomain-redirect for the queried domain is configured and the resolver receives a PTR...

Improper Input Validation

hugin is vulnerable to Improper Input Validation. The vulnerability is due to the mishandling of values in the HuginBase::PTools::Transform::transfor function. This could lead to assertion failure...

FAS not working - FAS Event 104 on VDA

FAS not working, event 104 generated on VDA: S104 Identity Assertion Logon failed. Failed to connect to Federated Authentication Service: UserCredentialService Address: fas.domainIndex: 0 Error: The caller was not authenticated by the service. Server stack trace: at...

ISC BIND DoS Vulnerability (CVE-2023-5679) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

Slackware: Security Advisory (SSA:2024-044-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dsa-5621 : bind9 - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5621 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic,...

[slackware-security] bind

New bind packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/bind-9.16.48-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: Specific DNS answers could cause a...

CVE-2023-5517

A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. This issue affects BIND 9 versio...

CVE-2023-5679

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through...

ALPINE-CVE-2023-5517

A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. This issue affects BIND 9 versio...

AZL-34564 CVE-2023-5679 affecting package bind for versions less than 9.19.21-1

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through...