CBL Mariner 2.0 Security Update: bind (CVE-2024-11187)

The version of bind installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11187 advisory. - It is possible to construct a zone such that some queries to it will generate responses containing numerous...

Azure Linux 3.0 Security Update: bind (CVE-2024-11187)

The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11187 advisory. - It is possible to construct a zone such that some queries to it will generate responses containing numerous...

CVE-2024-11187 affecting package bind for versions less than 9.16.50-2

CVE-2024-11187 affecting package bind for versions less than 9.16.50-2. A patched version of the package is available...

CVE-2025-40775 affecting package bind for versions less than 9.20.9-1

CVE-2025-40775 affecting package bind for versions less than 9.20.9-1. An upgraded version of the package is available that resolves this issue...

ROS-20250710-01

Vulnerability in the DoH implementation of the DNS BIND server is related to the allocation of unlimited memory. Exploitation The vulnerability could allow an attacker acting remotely to cause a denial of service...

Multiple Rocky Linux updates applied to Brocade SANnav OVA 2.4.0a

Multiple Rocky Linux updates applied to Brocade SANnav base OS OVA deployment 2.4.0a RockyLinux 8: bind RLSA-2024:5524 BIND's database will be slow if a very large number of RRs exist at the same name CVE-2024-1737 SIG0 can be used to exhaust CPU resources CVE-2024-1975 RockyLinux 8: bind...

Security Bulletin: Vulnerability in Linux bind affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products

Summary A vulnerability in the Linux bind component affects IBM Storage Virtualize products and could cause denial of service. CVE-2024-11187. Vulnerability Details CVEID:CVE-2024-11187 DESCRIPTION: It is possible to construct a zone such that some queries to it will generate responses containing...

The vulnerability of the DNS BIND server implementation of DoH, related to the allocation of unlimited memory, allows a attacker to cause a service failure.

The vulnerability of the DNS BIND server implementation related to the allocation of unlimited memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

Quantum-Resistant Domain Name System: a Comprehensive System-Level Study

The Domain Name System DNS plays a foundational role in Internet infrastructure, yet its core protocols remain vulnerable to compromise by quantum adversaries. As cryptographically relevant quantum computers become a realistic threat, ensuring DNS confidentiality, authenticity, and integrity in t...

Security update for pam

This update for pam fixes the following issues: CVE-2025-6020: pamnamespace: convert functions that may operate on a user-controlled path to operate on file descriptors instead of absolute path. And keep the bind-mount protection from protectmount as a defense in depthmeasure. bsc1244509 Patch...

SUSE-SU-2025:20427-1 Security update for pam

This update for pam fixes the following issues: - CVE-2025-6020: pamnamespace: convert functions that may operate on a user-controlled path to operate on file descriptors instead of absolute path. And keep the bind-mount protection from protectmount as a defense in depthmeasure. bsc1244509...

Security update for pam

This update for pam fixes the following issues: CVE-2025-6020: pamnamespace: convert functions that may operate on a user-controlled path to operate on file descriptors instead of absolute path. And keep the bind-mount protection from protectmount as a defense in depthmeasure. bsc1244509 Patch...

SUSE CVE-2022-50176

In the Linux kernel, the following vulnerability has been resolved: drm/mcde: Fix refcount leak in mcdedsibind Every iteration of foreachavailablechildofnode decrements the reference counter of the previous node. There is no decrement when break out from the loop and results in refcount leak. Add...

CVE-2022-50176

In the Linux kernel, the following vulnerability has been resolved: drm/mcde: Fix refcount leak in mcdedsibind Every iteration of foreachavailablechildofnode decrements the reference counter of the previous node. There is no decrement when break out from the loop and results in refcount leak. Add...

PT-2025-26102 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A refcount leak issue has been identified in the Linux kernel, specifically in the drm/mcde component, within the mcde dsi bind function. The problem arises from the for each available...

ipa security update

4.12.2-14.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-14.1 - Resolves: RHEL-89908 EMBARGOED CVE-2025-4404 ipa: Privilege escalation from host to domain admin in FreeIPA - Resolves: RHEL-89144 kdb:...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: mctp: Set SOCKRCUFREE The Bind lookup operation is executed under RCU; therefore, ensure that a socket does not disappear during the middle of a lookup operation...

Astra Linux - уязвимость в libpod

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

TencentOS Server 2: bind (TSSA-2025:0289)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0289 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

TencentOS Server 3: bind9.16 (TSSA-2024:0385)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0385 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...