Lucene search
K

478 matches found

NVD
NVD
added 2024/02/13 2:15 p.m.26 views

CVE-2023-5517

A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. This issue affects BIND 9 versio...

7.5CVSS7.4AI score0.01231EPSS
Exploits0References7
OSV
OSV
added 2024/02/13 2:15 p.m.34 views

CVE-2023-4408

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

7.5CVSS7AI score0.01327EPSS
Exploits0References7
OSV
OSV
added 2024/02/13 2:15 p.m.24 views

CVE-2023-5680

If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and...

5.3CVSS6.9AI score0.00624EPSS
Exploits0References2
OSV
OSV
added 2024/02/13 2:15 p.m.36 views

CVE-2023-5679

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through...

7.5CVSS7.1AI score0.01231EPSS
Exploits0References7
Prion
Prion
added 2024/02/13 2:15 p.m.29 views

Type confusion

To keep its cache database efficient, named running as a recursive resolver occasionally attempts to clean up the database. It uses several methods, including some that are asynchronous: a small chunk of memory pointing to the cache element that can be cleaned up is first allocated and then queue...

5CVSS7.3AI score0.01097EPSS
Exploits0References4
Prion
Prion
added 2024/02/13 2:15 p.m.17 views

Design/Logic Flaw

If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and...

5CVSS6.9AI score0.00624EPSS
Exploits0References1
Prion
Prion
added 2024/02/13 2:15 p.m.40 views

Design/Logic Flaw

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through...

5CVSS6.9AI score0.01231EPSS
Exploits0References6
Prion
Prion
added 2024/02/13 2:15 p.m.36 views

Design/Logic Flaw

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

5CVSS7.6AI score0.01327EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/02/13 2:15 p.m.35 views

CVE-2023-5680

If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and...

5.3CVSS6.4AI score0.00624EPSS
Exploits0References2
CVE
CVE
added 2024/02/13 2:5 p.m.543 views

CVE-2023-6516

CVE-2023-6516 affects ISC BIND (named) as a denial-of-service vector via an out-of-memory condition in the cache-cleanup path when recursive queries trigger maintenance. The issue can allow memory usage to exceed max-cache-size, potentially causing DoS on vulnerable BIND 9 installations. Affected...

7.5CVSS7.4AI score0.01097EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2024/02/13 2:5 p.m.32 views

CVE-2023-6516

To keep its cache database efficient, named running as a recursive resolver occasionally attempts to clean up the database. It uses several methods, including some that are asynchronous: a small chunk of memory pointing to the cache element that can be cleaned up is first allocated and then queue...

7.5CVSS7.7AI score0.01097EPSS
Exploits0
Cvelist
Cvelist
added 2024/02/13 2:5 p.m.56 views

CVE-2023-6516 Specific recursive query patterns may lead to an out-of-memory condition

To keep its cache database efficient, named running as a recursive resolver occasionally attempts to clean up the database. It uses several methods, including some that are asynchronous: a small chunk of memory pointing to the cache element that can be cleaned up is first allocated and then queue...

7.5CVSS7.7AI score0.01097EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2024/02/13 2:5 p.m.30 views

CVE-2023-6516

To keep its cache database efficient, named running as a recursive resolver occasionally attempts to clean up the database. It uses several methods, including some that are asynchronous: a small chunk of memory pointing to the cache element that can be cleaned up is first allocated and then queue...

7.5CVSS7.2AI score0.01097EPSS
Exploits0
CVE
CVE
added 2024/02/13 2:5 p.m.342 views

CVE-2023-5680

CVE-2023-5680 concerns ISC BIND 9 where, when a resolver cache stores a very large number of ECS records for the same name, cleaning the cache database node for that name can cause the query path to suffer significantly in performance. Affected versions include 9.11.3-S1 through 9.11.37-S1, 9.16....

5.3CVSS5AI score0.00624EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/13 2:5 p.m.14 views

CVE-2023-5680 Cleaning an ECS-enabled cache may cause excessive CPU load

If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and...

5.3CVSS6.5AI score0.00624EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/13 2:5 p.m.40 views

CVE-2023-5680 Cleaning an ECS-enabled cache may cause excessive CPU load

If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and...

5.3CVSS5.4AI score0.00624EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/02/13 2:5 p.m.18 views

CVE-2023-5680

If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and...

5.3CVSS5.6AI score0.00624EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/02/13 2:5 p.m.31 views

CVE-2023-5680

If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and...

5.3CVSS7.1AI score0.00624EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/02/13 2:5 p.m.35 views

CVE-2023-5679 Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through...

7.5CVSS7.1AI score0.01231EPSS
Exploits0References7
CVE
CVE
added 2024/02/13 2:5 p.m.490 views

CVE-2023-5679

CVE-2023-5679 : A bad interaction between DNS64 and serve-stale in ISC BIND can cause named to crash with an assertion failure during recursive resolution when both features are enabled. Affected products/versions include BIND 9.16.x (notably up to 9.16.45) and 9.18.x/9.19.x series with correspon...

7.5CVSS7.4AI score0.01231EPSS
Exploits0References7Affected Software2
Rows per page
Query Builder