Lucene search
K

11995 matches found

Tenable Nessus
Tenable Nessus
added 2021/04/30 12:0 a.m.754 views

ISC BIND GSS-TSIG SPNEGO Buffer Overflow (CVE-2021-25216)

According to its self-reported version, the ISC Bind present on the remote host is affected by a buffer overflow vulnerability: - GSS-TSIG is an extension to the TSIG protocol which is intended to support the secure exchange of keys for use in verifying the authenticity of communications between...

9.8CVSS7.8AI score0.83406EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/30 12:0 a.m.23 views

ISC BIND DoS Vulnerability (CVE-2021-25214) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

6.5CVSS7.1AI score0.0594EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/04/30 12:0 a.m.25 views

ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216) - Windows

ISC BIND is prone to a buffer overflow vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.3AI score0.83406EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/04/30 12:0 a.m.22 views

ISC BIND DoS Vulnerability (CVE-2021-25214) - Linux

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

6.5CVSS7.1AI score0.0594EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/04/30 12:0 a.m.34 views

ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216) - Linux

ISC BIND is prone to a buffer overflow vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.3AI score0.83406EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/04/30 12:0 a.m.29 views

ISC BIND Malformed IXFR DoS (CVE-2021-25214)

According to its self-reported version, the ISC Bind present on the remote host is affected by a denial of service vulnerability: - Incremental zone transfers IXFR provide a way of transferring changed portions of a zone between servers. An IXFR stream containing SOA records with an owner name...

6.5CVSS7.3AI score0.0594EPSS
Exploits0References2
Cent OS
Cent OS
added 2021/04/29 6:0 p.m.152 views

bind security update

CentOS Errata and Security Advisory CESA-2021:1469 An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS6.8AI score0.11296EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2021/04/29 3:22 p.m.1 views

bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself

A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability...

7.5CVSS6.7AI score0.11296EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/04/29 3:22 p.m.183 views

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.8AI score0.11296EPSS
Exploits0References2
CloudLinux
CloudLinux
added 2021/04/29 2:20 p.m.37 views

Update of bind-sdb, bind-libs, bind-devel, bind, bind-utils, bind-chroot

...

1.1AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/04/29 11:44 a.m.3 views

bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself

A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability...

7.5CVSS6.7AI score0.11296EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/04/29 11:44 a.m.91 views

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.8AI score0.11296EPSS
Exploits0References2
OSV
OSV
added 2021/04/29 11:11 a.m.5 views

USN-4929-1 bind9 vulnerabilities

Greg Kuechle discovered that Bind incorrectly handled certain incremental zone updates. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. CVE-2021-25214 Siva Kakarla discovered that Bind incorrectly handled certain DNAME records. A remote...

9.8CVSS7.1AI score0.83406EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/04/29 3:48 a.m.65 views

CVE-2021-25216

A flaw was found in bind. The SPNEGO implementation used by BIND, which is a negotiation mechanism used by GSSAPI to support the secure exchange of keys used to verify the authenticity of communications between parties on a network, is subject to a buffer overflow attack. The highest threat from...

9.8CVSS9.1AI score0.83406EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/04/29 3:48 a.m.57 views

CVE-2021-25215

A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability. Mitigation Red Hat has investigated whether a possible...

7.5CVSS7.6AI score0.11296EPSS
Exploits0References4
Slackware Linux
Slackware Linux
added 2021/04/29 1:41 a.m.97 views

[slackware-security] bind

New bind packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.11.31-i586-1slack14.2.txz: Upgraded. This update fixes bugs and the following security issues: A specially crafted...

9.8CVSS7.9AI score0.83406EPSS
Exploits0
NVD
NVD
added 2021/04/29 1:15 a.m.20 views

CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS0.83406EPSS
Exploits0References10
OSV
OSV
added 2021/04/29 1:15 a.m.1 views

ALPINE-CVE-2021-25215

In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record...

7.5CVSS6.9AI score0.11296EPSS
Exploits0References1
OSV
OSV
added 2021/04/29 1:15 a.m.35 views

CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS8.3AI score0.11296EPSS
Exploits0References10
OSV
OSV
added 2021/04/29 1:15 a.m.4 views

DEBIAN-CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS8.5AI score0.83406EPSS
Exploits0References1
Rows per page
Query Builder