11948 matches found
K000138989: BIND vulnerability CVE-2023-5517
Security Advisory Description A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. Th...
SUSE CVE-2023-41038
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
F5 Networks BIG-IP : BIND vulnerability (K000138990)
The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.5 / 17.1.2. It is, therefore, affected by a vulnerability as referenced in the K000138990 advisory. The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not...
EulerOS Virtualization 2.11.0 : bind (EulerOS-SA-2024-1423)
According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion...
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1395)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1423)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.11.1 : bind (EulerOS-SA-2024-1395)
According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion...
CVE-2023-41038
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
CVE-2023-41038
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
UBUNTU-CVE-2023-41038
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
CVE-2023-41038
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
CVE-2023-41038 Server crash when using specific form of SET BIND statement
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
CVE-2023-41038 Server crash when using specific form of SET BIND statement
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
Firebird Security Vulnerability
Firebird is an open source cross-platform relational database management system from the Firebird Foundation that provides multiple ANSI SQL-92 features. A security vulnerability exists in Firebird versions 4.0.0 through 4.0.3, 5.0 beta1, which originates from a server crash when using a specific...
PT-2024-2355 · Firebird +1 · Firebird +1
Name of the Vulnerable Software and Affected Versions: Firebird versions 4.0.0 through 4.0.3 Firebird version 5.0 beta1 Description: The issue is related to a server crash when a user uses a specific form of SET BIND statement with a long CHAR length, causing stack corruption. This can be exploit...
bind: flooding with UPDATE requests may lead to DoS
A flaw was found in Bind, where sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This issue may cause named to slow down due to a lack of free memory, resulting in a denial of service DoS...
Moderate: Red Hat Security Advisory: bind security update
An update for bind is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...
CVE-2023-5679 affecting package bind for versions less than 9.19.21-1
CVE-2023-5679 affecting package bind for versions less than 9.19.21-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-6516 affecting package bind for versions less than 9.19.21-1
CVE-2023-6516 affecting package bind for versions less than 9.19.21-1. An upgraded version of the package is available that resolves this issue...
CVE-2019-6470 affecting package bind for versions less than 9.16.44-2
CVE-2019-6470 affecting package bind for versions less than 9.16.44-2. A patched version of the package is available...