SUSE-SU-2024:2810-1 Security update for bind

This update for bind fixes the following issues: - CVE-2024-1737: It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of...

The vulnerability of the CDwnBindInfo function in the mshtml.dll library of Internet Explorer allows a hacker to execute arbitrary code.

The vulnerability of the CDwnBindInfo function in the mshtml.dll library of the Internet Explorer browser is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary JavaScript code by sending a specially created HTML file...

ROS-20240807-10

BIND DNS server vulnerability is related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by sending multiple DNS messages over TCP The BIND DNS server vulnerability involves sending a large number of clie...

SUSE: Security Advisory (SUSE-SU-2024:2811-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:2810-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable ISC BIND denial of service vulnerabilities.

Summary Potential ISC BIND denial of service vulnerabilities CVE-2023-50868, CVE-2023-5517 have been identified that could affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information. Vulnerability Details...

K000140602: BIND vulnerability CVE-2024-4076

Security Advisory Description Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure. This issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1...

SUSE CVE-1999-0011

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer...

SUSE CVE-1999-0024

DNS cache poisoning via BIND, by predictable query IDs...

Amazon Linux 2023 : bind, bind-chroot, bind-devel (ALAS2023-2024-680)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-680 advisory. Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname of any RTYPE can suffer from degraded performance as content is being added or update...

Important: bind

Issue Overview: Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname of any RTYPE can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name. This issue affects BIND 9 versio...

Fedora: Security Advisory for bind (FEDORA-2024-8af1780fdf)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 40 Update: bind-dyndb-ldap-11.10-29.fc40

This package provides an LDAP back-end plug-in for BIND. It features support for dynamic updates and internal caching, to lift the load off of your LDAP server...

[SECURITY] Fedora 40 Update: bind-9.18.28-2.fc40

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

Fedora 40 : bind / bind-dyndb-ldap (2024-8af1780fdf)

The remote Fedora 40 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-8af1780fdf advisory. Update to BIND 9.18.28 Security Fixes - A malicious DNS client that sent many queries over TCP but never read the responses could cause a server to...

CVE-2024-1737 affecting package bind for versions less than 9.20.0-1

CVE-2024-1737 affecting package bind for versions less than 9.20.0-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-4076 affecting package bind for versions less than 9.20.0-1

CVE-2024-4076 affecting package bind for versions less than 9.20.0-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-0760 affecting package bind for versions less than 9.20.0-1

CVE-2024-0760 affecting package bind for versions less than 9.20.0-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-1975 affecting package bind for versions less than 9.20.0-1

CVE-2024-1975 affecting package bind for versions less than 9.20.0-1. An upgraded version of the package is available that resolves this issue...

The vulnerability of the BIND DNS server, related to the unlimited distribution of resources, allows attackers to cause service failures.

The vulnerability of the BIND DNS server is related to the unlimited distribution of resources. Exploiting this vulnerability allows a malicious actor to cause service failures when there are a large number of resource records for the same domain name...