Linux Distros Unpatched Vulnerability : CVE-2026-3039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessive memory consumption when receiving and processin...

Linux Distros Unpatched Vulnerability : CVE-2026-3592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack. If a victim resolver makes a query to a specially crafted zone, the resolv...

Linux Distros Unpatched Vulnerability : CVE-2026-3593

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability exists within the DNS-over-HTTPS implementation. This issue affects BIND 9 versions 9.20.0 through 9.20.22, 9.21.0 through 9.21.2...

Linux Distros Unpatched Vulnerability : CVE-2026-5946

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Internet IN for example, CHAOS or HESIOD, or DNS message...

Debian dla-4529 : bind9 - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4529 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4529-1 [email protected] https://www.debian.org/lts/security/...

MiracleLinux 8 : bind9.16-9.16.23-0.22.el8_10.5 (AXSA:2026-453:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-453:01 advisory. bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone CVE-2026-1519 Tenable has extracted the preceding description block directly from...

Debian: Security Advisory (DLA-4529-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 42 Update: bind9-next-9.21.20-1.fc42

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

Fedora: Security Advisory (FEDORA-2026-d8979b7a9c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MiracleLinux 8 : bind9.16-9.16.23-0.14.el8.1 (AXSA:2023-6229:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6229:02 advisory. bind: named's configured cache size limit can be significantly exceeded CVE-2023-2828 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : bind9.16-9.16.23-0.22.el8_10 (AXSA:2024-8665:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8665:02 advisory. bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam CVE-2024-1737 bind9: bind: SIG0 can be used to exhaust...

ROOT-OS-DEBIAN-11-CVE-2022-2881 CVE-2022-2881 in rootio-bind9 - Patched by Root

Root has patched CVE-2022-2881 in the rootio-bind9 package for Root:Debian:11. Multiple fixed versions available...

Ubuntu: Security Advisory (USN-7836-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ROOT-OS-DEBIAN-11-CVE-2025-40777 CVE-2025-40777 in rootio-bind9 - Patched by Root

Root has patched CVE-2025-40777 in the rootio-bind9 package for Root:Debian:11. Multiple fixed versions available...

Debian: Security Advisory (DLA-4364-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 4364-1] bind9 security update

Debian LTS Advisory DLA-4364-1 [email protected] https://www.debian.org/lts/security/ Andreas Henriksson November 04, 2025 https://wiki.debian.org/LTS Package : bind9 Version : 1:9.16.50-1deb11u4 CVE ID : CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 Debian Bug : Brief introduction...

[SECURITY] [DSA 6033-1] bind9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6033-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 23, 2025 https://www.debian.org/security/faq -...

CVE-2025-40778

Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through...

EUVD-2020-29467

Malware in sbrugna...

EUVD-2018-17511

Malware in sbrugna...