SUSE CVE-2022-0635

Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific queries, the named process will eventually terminate due to a failed assertion check...

SUSE CVE-2022-0667

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0...

SUSE CVE-2022-1183

On vulnerable configurations, the named daemon may, in some circumstances, terminate with an assertion failure. Vulnerable configurations are those that include a reference to http within the listen-on statements in their named.conf. TLS is used by both DNS over TLS DoT and DNS over HTTPS DoH, bu...

SUSE CVE-2022-3094

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

SUSE CVE-2022-3488

Processing of repeated responses to the same query, where both responses contain ECS pseudo-options, but where the first is broken in some way, can cause BIND to exit with an assertion failure. 'Broken' in this context is anything that would cause the resolver to reject the query response, such a...

SUSE CVE-2022-3736

BIND 9 resolver can crash when stale cache and stale answers are enabled, option stale-answer-client-timeout is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and...

SUSE CVE-2022-3924

This issue can affect BIND 9 resolvers with stale-answer-enable yes; that also make use of the option stale-answer-client-timeout, configured with a value greater than zero. If the resolver receives many queries that require recursion, there will be a corresponding increase in the number of clien...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : bind (SUSE-SU-2023:0341-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0341-1 advisory. - Updated to version 9.16.37 jscSLE-24600: - CVE-2022-3094: Fixed an issue where a message flood...

SUSE: Security Advisory (SUSE-SU-2023:0341-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:0341-1 Security update for bind

This update for bind fixes the following issues: - Updated to version 9.16.37 jscSLE-24600: - CVE-2022-3094: Fixed an issue where a message flood could exhaust all available memory bsc1207471. - CVE-2022-3736: Fixed a potential crash upon receiving an RRSIG in configurations with stale cache and...

The vulnerability of the BIND DNS server component, which allows a perpetrator to cause a service failure

The vulnerability of the BIND DNS server component is related to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

[SECURITY] Fedora 36 Update: bind-dyndb-ldap-11.9-21.fc36

This package provides an LDAP back-end plug-in for BIND. It features support for dynamic updates and internal caching, to lift the load off of your LDAP server...

[SECURITY] Fedora 36 Update: bind-9.16.37-1.fc36

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

Security fix for the ALT Linux 10 package bind version 9.16.37-alt1

9.16.37-alt1 built Feb. 6, 2023 Stanislav Levin in task 314185 Jan. 25, 2023 Stanislav Levin - 9.16.36 - 9.16.37 fixes: CVE-2022-3094, CVE-2022-3736, CVE-2022-3924...

Fedora: Security Advisory for bind (FEDORA-2023-a3d608daf4)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for bind-dyndb-ldap (FEDORA-2023-a3d608daf4)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 36 : bind / bind-dyndb-ldap (2023-a3d608daf4)

The remote Fedora 36 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-a3d608daf4 advisory. - Release notes Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

Fedora: Security Advisory for bind (FEDORA-2023-95d98f89a8)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for bind-dyndb-ldap (FEDORA-2023-95d98f89a8)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 37 Update: bind-dyndb-ldap-11.10-10.fc37

This package provides an LDAP back-end plug-in for BIND. It features support for dynamic updates and internal caching, to lift the load off of your LDAP server...