Security Bulletin: AIX is vulnerable to denial of service due to ISC BIND (CVE-2023-2828)

Summary A vulnerability in ISC BIND could allow a remote attacker to cause a denial of service CVE-2023-2828. AIX uses ISC BIND as part of its DNS functions. Vulnerability Details CVEID:CVE-2023-2828 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by a flaw that allows the...

AIX is vulnerable to denial of service due to ISC BIND

IBM SECURITY ADVISORY First Issued: Thu Sep 7 13:08:07 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/bindadvisory24.asc Security Bulletin: AIX is vulnerable to denial of service due to ISC BIND CVE-2023-2828...

Oracle Linux 7 : dhcp (ELSA-2019-2060)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-2060 advisory. 12:4.2.5-77.0.1 - Direct users to Oracle Linux support site. 12:4.2.5-77 - Resolves: 1712414 - Reset signal handlers set by isclib 12:4.2.5-76 - Resolves: 17046...

Oracle Linux 8 : bind (ELSA-2019-3552)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3552 advisory. - Fix CVE-2018-5745 - Fix CVE-2019-6465 - Fix CVE-2019-6471 Tenable has extracted the preceding description block directly from the Oracle Linux securi...

Oracle Linux 7 : bind (ELSA-2020-1061)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1061 advisory. - Limit number of queries per TCP connection CVE-2019-6477 - Fix mkeys test validating CVE-2018-5745 fix - Fix CVE-2018-5745 Tenable has extracted the...

Oracle Linux 5 : bind (ELSA-2008-0300)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0300 advisory. - CVE-2008-0122 small buffer overflow in inetnetwork - CVE-2007-6283 419421 Tenable has extracted the preceding description block directly from the...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.3.7)

The version of AOS installed on the remote host is prior to 6.5.3.7. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.3.7 advisory. - An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying...

Oracle Linux 7 : bind (ELSA-2019-2057)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-2057 advisory. - Fix CVE-2019-6471 - Fix inefective limit of TCP clients CVE-2018-5743 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : bind (ELSA-2020-1845)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1845 advisory. 32:9.11.13-3 - Fix rwlock to be thread-safe 1740511 32:9.11.13-2 - Release GeoIP data on reload 1790879 32:9.11.13-1 - Update to 9.11.13 32:9.11.12-5 - Report...

Oracle Linux 8 : dhcp (ELSA-2019-3525)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-3525 advisory. 12:4.3.6-34 - Resolves: 1704672 - Fix crash caused by bind rebase 12:4.3.6-33 - Resolves: 1673946 - Change default prefix length to 128 - Add...

CVE-2023-41556

Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42multi, and Tenda AC5 V1.0RTLV15.03.06.28 were discovered to contain a stack overflow via parameter list at url /goform/SetIpMacBind...

Security Bulletin: ISC BIND on IBM i is vulnerable to denial of service due to a memory usage flaw (CVE-2023-2828)

Summary Domain Name System DNS uses ISC BIND. ISC BIND on IBM i is vulnerable to a denial of service attack due to memory usage exceeding the configured cache size limit as seen in the vulnerability details section. IBM i has addressed the vulnerability in ISC BIND with a fix as described in the...

CVE-2023-40902

Tenda AC10 v4 USAC10V4.0siV16.03.10.13cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind...

CVE-2023-40902

Tenda AC10 v4 USAC10V4.0siV16.03.10.13cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind...

CVE-2023-40896

Tenda AC8 v4 USAC8V4.0siV16.03.34.06cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind...

CVE-2023-40896

Tenda AC8 v4 USAC8V4.0siV16.03.34.06cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind...

CVE-2023-2828 affecting package bind 9.16.37-1

CVE-2023-2828 affecting package bind 9.16.37-1. A patched version of the package is available...

CVE-2023-2828 affecting package bind for versions less than 9.16.33-2

CVE-2023-2828 affecting package bind for versions less than 9.16.33-2. A patched version of the package is available...

RLSA-2023:4099 Important: bind security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

bind security update

An update is available for bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Berkeley Internet Name Domain BIND is an implementation of the Domain Name...