159 matches found
CVE-2025-8677
Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1...
PT-2025-43379
Name of the Vulnerable Software and Affected Versions BIND versions 9.18.0 through 9.18.39 BIND versions 9.20.0 through 9.20.13 BIND versions 9.21.0 through 9.21.12 BIND versions 9.18.11-S1 through 9.18.39-S1 BIND versions 9.20.9-S1 through 9.20.13-S1 Description Querying for records within a...
EUVD-2020-29471
Malware in sbrugna...
EUVD-2019-16036
Malware in sbrugna...
EUVD-2021-12129
Malware in sbrugna...
EUVD-2016-10579
Malware in sbrugna...
EUVD-2017-12283
Malware in sbrugna...
EUVD-2012-3764
Malware in sbrugna...
EUVD-2021-12131
Malware in sbrugna...
EUVD-2022-42860
Malicious code in bioql PyPI...
EUVD-2022-24523
Malicious code in bioql PyPI...
EUVD-2023-34279
Malicious code in bioql PyPI...
Important: bind
Issue Overview: If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of...
Linux Distros Unpatched Vulnerability : CVE-2023-5517
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receiv...
Linux Distros Unpatched Vulnerability : CVE-2023-5679
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are...
Linux Distros Unpatched Vulnerability : CVE-2024-1975
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If a server hosts a zone containing a KEY Resource Record, or a resolver DNSSEC-validates a KEY Resource Record from a DNSSEC-signed domain in cache, a client c...
Linux Distros Unpatched Vulnerability : CVE-2023-2828
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Every named instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to...
SUSE CVE-2025-40777
If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...
DEBIAN-CVE-2025-40777
If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...
ALPINE-CVE-2025-40776
A named caching resolver that is configured to send ECS EDNS Client Subnet options may be vulnerable to a cache-poisoning attack. This issue affects BIND 9 versions 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.37-S1, and 9.20.9-S1 through 9.20.10-S1...