bind: An error in TSIG authentication can permit unauthorized dynamic updates

A flaw was found in the way BIND handled TSIG authentication for dynamic updates. A remote attacker able to communicate with an authoritative BIND server could use this flaw to manipulate the contents of a zone, by forging a valid TSIG or SIG0 signature for a dynamic update request...

ISC BIND Security Restriction Bypass Vulnerability

ISC BIND is widely used domain name server software. A security restriction bypass vulnerability exists in ISC BIND, which could be exploited by remote attackers to submit a special request and perform unauthorized operations...

bind: assertion failure while handling responses containing a DNAME answer

A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

bind: assertion failure in DNSSEC validation

A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

UBUNTU-CVE-2017-3136

A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-service against a server if it was configured to use the DNS64 feature and other preconditions were...

ISC BIND 9 RTYPE ANY Assertion Failure Denial of Service Vulnerability

ISC BIND is a suite of open source software that implements the DNS protocol. ISC BIND 9 Supported Preview Edition is a preview edition. ISC BIND 9 suffers from a RTYPE ANY assertion failure denial of service vulnerability. A remote attacker can exploit the vulnerability to cause a denial of...

ALPINE-CVE-2016-9147

named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows remote attackers to cause a denial of service assertion failure and daemon exit via a response containing an inconsistency among the DNSSEC-related RRsets...

bind: assertion failure while handling responses containing a DNAME answer

A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

bind: assertion failure while handling responses containing a DNAME answer

A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

UBUNTU-CVE-2016-8864

named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service assertion failure and daemon exit via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c...

SOL18829561 - BIND vulnerability CVE-2016-2776

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

The vulnerability of the BIND Server software allows a malicious attacker to compromise the accessibility of protected information.

A vulnerability exists in the prefetch function of ISC BIND 9.10.0. If the ability to make recursive requests to the name server is enabled, it allows a malicious actor to trigger a service failure a failure in the REQUIRE assertion and the termination of the daemon through a DNS request that...

DNS BIND server vulnerability, allowing attackers to cause service failures

The vulnerability of the DNS BIND server component exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause a service failure—the appearance of an “Assertion Failure” error, and the termination of the daemon—by using a specially crafted...

DNS BIND server vulnerability, allowing attackers to cause service failures

The vulnerability in the resolver.c function of the BIND DNS server exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause a service failure—such as the appearance of an error message indicating “Assertion failure” or the termination o...

DNS BIND server vulnerability, allowing attackers to cause service failures

The vulnerability of the DNS BIND server exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service failures—such as the appearance of an error message “Assertion failure” or the termination of the daemon—by using a specially creat...

DNS BIND server vulnerability, allowing attackers to cause service failures

The vulnerability of the DNS BIND server exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause a service failure—such as the appearance of an error message “Assertion failure” or the termination of the daemon—by using a specially...

DNS BIND server vulnerability, which allows attackers to cause service failures or exert other effects

The vulnerability of the DNS BIND server exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures or other adverse effects, such as the appearance of an error message indicating “Assertion failure” or the termination ...

bind: specific APL data could trigger an INSIST in apl_42.c

A denial of service flaw was found in the way BIND processed certain malformed Address Prefix List APL records. A remote, authenticated attacker could use this flaw to cause named to crash...

ISC BIND Denial of Service Vulnerability

ISC BIND is an open source BIND program. A security vulnerability exists in ISC BIND that allows remote attackers to exploit a vulnerability to submit Address Prefix List APL data to trigger a buffer overflow and crash the service...

F5 BIG-IP - BIG-IP last hop kernel module vulnerability CVE-2015-5516

The remote host is missing a security patch. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...