EUVD-2025-21705

Malicious code in bioql PyPI...

EUVD-2023-44009

Malicious code in bioql PyPI...

EUVD-2024-51062

Malicious code in bioql PyPI...

PT-2025-22347 · Isc +3 · Bind 9 +3

Name of the Vulnerable Software and Affected Versions: BIND 9 versions 9.20.0 through 9.20.8 BIND 9 versions 9.21.0 through 9.21.7 Description: When an incoming DNS protocol message includes a Transaction Signature TSIG, BIND always checks it. If the TSIG contains an invalid value in the algorith...

CVE-2024-11187

It is possible to construct a zone such that some queries to it will generate responses containing numerous records in the Additional section. An attacker sending many such queries can cause either the authoritative server itself or an independent resolver to use disproportionate resources...

CVE-2024-11187

It is possible to construct a zone such that some queries to it will generate responses containing numerous records in the Additional section. An attacker sending many such queries can cause either the authoritative server itself or an independent resolver to use disproportionate resources...

CVE-2024-0760

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...

PT-2023-5379 · Isc +4 · Bind 9 +4

Name of the Vulnerable Software and Affected Versions: BIND 9 versions 9.18.0 through 9.18.18 BIND 9 versions 9.18.11-S1 through 9.18.18-S1 Description: A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens...

Design/Logic Flaw

A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-service against a server if it was configured to use the DNS64 feature and other preconditions were...

Code injection

Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records could lead to a situation in which named would exit with an assertion failure when processing a response in which records occurred in an unusual order. Affects BIND...

F5 Networks BIG-IP : BIND 9 vulnerability (SOL9754)

The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL9754. The text description of this plugin is C F5 Networks...

F5 Networks BIG-IP : BIND 9 vulnerability (SOL11503)

The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL11503. The text description of this plugin is C F5 Networks...

AIX 6.1 TL 1 : bos.net.tcp.server (U828529)

The remote host is missing AIX PTF U828529, which is related to the security of the package bos.net.tcp.server. AIX 'named' is an implementation of BIND Berkeley Internet Name Domain providing server functionality for the Domain Name System DNS Protocol. AIX currently ships and supports three...