Lucene search
+L

148 matches found

Fedora
Fedora
added 2021/03/03 11:15 p.m.65 views

[SECURITY] Fedora 33 Update: bind-9.11.28-1.fc33

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

8.1CVSS8.2AI score0.64161EPSS
Exploits0
Fedora
Fedora
added 2020/08/26 2:53 p.m.43 views

[SECURITY] Fedora 32 Update: bind-9.11.22-1.fc32

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

7.5CVSS1.4AI score0.06348EPSS
Exploits0
OSV
OSV
added 2020/08/21 9:15 p.m.22 views

CVE-2020-8620

In BIND 9.15.6 - 9.16.5, 9.17.0 - 9.17.3, An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure, causing the server to exit...

7.5CVSS6.5AI score0.03663EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2020/08/10 9:9 a.m.6 views

bind: BIND does not sufficiently limit the number of fetches performed when processing referrals

A flaw was found in BIND, where it does not sufficiently limit the number of fetches that can be performed while processing a referral response. This flaw allows an attacker to cause a denial of service attack. The attacker can also exploit this behavior to use the recursing server as a reflector...

8.6CVSS6.7AI score0.10593EPSS
Exploits1References6
FreeBSD
FreeBSD
added 2020/06/17 12:0 a.m.34 views

BIND -- Remote Denial of Service vulnerability

ISC reports: The asterisk character "" is allowed in DNS zone files, where it is most commonly present as a wildcard at a terminal node of the Domain Name System graph. However, the RFCs do not require and BIND does not enforce that an asterisk character be present only at a terminal node. A...

4.9CVSS0.7AI score0.02088EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/04/28 3:55 p.m.35 views

Moderate: Red Hat Security Advisory: bind security, bug fix, and enhancement update

An update for bind is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

7.5CVSS6.6AI score0.04022EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2020/04/13 12:0 a.m.6 views

The vulnerability of the BIND DNS server, related to the simultaneous execution using a shared resource with incorrect synchronization, allows attackers to cause service failures.

The vulnerability of the BIND DNS server is related to an error in processing distorted packets, which can lead to out-of-memory situations. Exploiting this vulnerability allows a remote attacker to cause a service failure...

7.1CVSS6.6AI score0.03271EPSS
Exploits0References6Affected Software3
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.23 views

Debian DLA-1859-1 : bind9 security update

A vulnerability was found in the Bind DNS Server. Limits on simultaneous tcp connections have not been enforced correctly and could lead to exhaustion of file descriptors. In the worst case this could affect the file descriptors of the whole system. For Debian 8 'Jessie', this problem has been...

7.5CVSS7AI score0.06404EPSS
Exploits0References3
Debian
Debian
added 2019/07/21 9:6 p.m.158 views

[SECURITY] [DLA 1859-1] bind9 security update

Package : bind9 Version : 1:9.9.5.dfsg-9+deb8u18 CVE ID : CVE-2018-5743 A vulnerability was found in the Bind DNS Server. Limits on simultaneous tcp connections have not been enforced correctly and could lead to exhaustion of file descriptors. In the worst case this could affect the file...

7.5CVSS7.7AI score0.06404EPSS
Exploits0
Nmap
Nmap
added 2019/06/26 5:6 p.m.8303 views

vulners NSE Script

For each available CPE the script prints out known vulns links to the correspondent info and correspondent CVSS scores. Its work is pretty simple: work only when some software version is identified for an open port take all the known CPEs for that software from the standard nmap -sV output make a...

10CVSS9.5AI score0.99448EPSS
Exploits36
OSV
OSV
added 2019/06/19 12:0 a.m.7 views

UBUNTU-CVE-2019-6471

A race condition which may occur when discarding malformed packets can result in BIND exiting due to a REQUIRE assertion failure in dispatch.c. Versions affected: BIND 9.11.0 - 9.11.7, 9.12.0 - 9.12.4-P1, 9.14.0 - 9.14.2. Also all releases of the BIND 9.13 development branch and version 9.15.0 of...

5.9CVSS6.6AI score0.03271EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2019/05/13 5:5 a.m.113 views

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.1AI score0.06404EPSS
Exploits0References3
NVD
NVD
added 2019/01/16 8:29 p.m.22 views

CVE-2017-3136

A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-service against a server if it was configured to use the DNS64 feature and other preconditions were...

5.9CVSS6.6AI score0.11093EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2019/01/16 8:0 p.m.30 views

CVE-2017-3137

Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records could lead to a situation in which named would exit with an assertion failure when processing a response in which records occurred in an unusual order. Affects BIND...

7.5CVSS7AI score0.08902EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2018/08/27 3:38 p.m.66 views

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.1AI score0.59353EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/08/09 12:0 a.m.29 views

CVE-2018-5740

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, ...

7.5CVSS7.1AI score0.59353EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/01/22 9:31 a.m.70 views

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.8AI score0.27725EPSS
Exploits0References3
Cent OS
Cent OS
added 2017/07/05 6:28 p.m.76 views

bind security update

CentOS Errata and Security Advisory CESA-2017:1679 An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS6.7AI score0.18157EPSS
Exploits1References7
ArchLinux
ArchLinux
added 2017/06/15 12:0 a.m.32 views

[ASA-201706-18] bind: denial of service

Arch Linux Security Advisory ASA-201706-18 ========================================== Severity: Medium Date : 2017-06-15 CVE-ID : CVE-2017-3140 Package : bind Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-301 Summary ======= The package bind before version...

5.9CVSS2.5AI score0.1213EPSS
Exploits0References3
Cent OS
Cent OS
added 2017/04/20 10:44 p.m.68 views

bind security update

CentOS Errata and Security Advisory CESA-2017:1105 An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS6.8AI score0.11093EPSS
Exploits0References7
Rows per page
Query Builder