Lucene search
K

8 matches found

OSV
OSV
added 2026/05/19 5:1 p.m.8 views

MGASA-2026-0152 Updated bind packages fix security vulnerabilities

It was discovered that bind contained a vulnerability where a Malformed BRID/HHIT record can cause named to terminate unexpectedly CVE-2025-13878. If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-on...

7.5CVSS7.5AI score0.08219EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-42509

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.01486EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2024/04/15 1:53 a.m.4 views

bind9: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution

A flaw was found in the bind package. This issue may allow an attacker to query in a DNS64 enabled resolver node with a domain name triggering a server-stale data, triggering a code assertion, and resulting in a crash of named processes. This can allow a remote unauthenticated user to cause a...

7.5CVSS5.8AI score0.01231EPSS
Exploits0References5
OSV
OSV
added 2023/09/20 1:15 p.m.6 views

AZL-34562 CVE-2023-3341 affecting package bind for versions less than 9.16.44-1

The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory,...

7.5CVSS6.7AI score0.02626EPSS
Exploits0References1
OSV
OSV
added 2019/01/16 8:29 p.m.2 views

DEBIAN-CVE-2017-3145

BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an assertion failure and crash in named. Affects BIND 9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1...

7.5CVSS7.1AI score0.27725EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/01/16 5:51 a.m.5 views

bind: assertion failure while processing response to an ANY query

A denial of service flaw was found in the way BIND processed a response to an ANY query. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

7.5CVSS7.2AI score0.40556EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/12/06 5:35 a.m.8 views

bind: assertion failure while handling responses containing a DNAME answer

A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

7.5CVSS7.1AI score0.38733EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/04/06 11:14 a.m.5 views

bind: malformed signature records for DNAME records can trigger assertion failure

A denial of service flaw was found in the way BIND parsed signature records for DNAME records. By sending a specially crafted query, a remote attacker could use this flaw to cause named to crash...

8.6CVSS6.8AI score0.621EPSS
Exploits0References5
Rows per page
Query Builder