Lucene search
K

14 matches found

CVE
CVE
added 2025/05/09 6:43 a.m.128 views

CVE-2025-37871

CVE-2025-37871 concerns the Linux kernel, where a deadlock warning could occur in NFS delegation handling when a dl_recall queue fails. The root cause described is interaction between nfsd, nfs4_put_stid, and the delegation’s sc_count, which could deadlock during disassociation of an nfs4_delegat...

5.5CVSS6.5AI score0.00237EPSS
Exploits0References9Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/04/18 7:15 a.m.5 views

CVE-2025-39688

In the Linux kernel, the following vulnerability has been resolved: nfsd: allow SCSTATUSFREEABLE when searching via nfs4lookupstateid The pynfs DELEG8 test fails when run against nfsd. It acquires a delegation and then lets the lease time out. It then tries to use the deleg stateid and expects to...

5.5CVSS6.3AI score0.0021EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2024/01/25 8:12 a.m.7 views

curl: GSS delegation too eager connection re-use

A flaw was found in the Curl package. Libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, the GSS delegation setting was left out from the configuration match checks, making them match too easily, affecting...

5.9CVSS7.1AI score0.01566EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2015:0480-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.4AI score0.65683EPSS
Exploits5References18
RedHat Linux
RedHat Linux
added 2016/01/28 1:27 p.m.5 views

bind: delegation handling denial of service

A denial of service flaw was found in the way BIND followed DNS delegations. A remote attacker could use a specially crafted zone containing a large number of referrals which, when looked up and processed, would cause named to use excessive amounts of memory or crash...

7.8CVSS6.8AI score0.65683EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2015/10/07 12:0 a.m.23 views

ISC BIND Delegation Handling Denial of Service Vulnerability

ISC BIND is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; ifdescription...

7.8CVSS8.5AI score0.65683EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.26 views

SUSE SLES10 Security Update : bind (SUSE-SU-2015:0488-1)

This bind update to version 9.6-ESV-R11-W1 fixes the following security issue : - A flaw in delegation handling could be exploited to put named into an infinite loop. This has been addressed by placing limits on the number of levels of recursion named will allow default 7, and the number of...

7.8CVSS6.6AI score0.65683EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.30 views

SUSE SLED12 / SLES12 Security Update : bind (SUSE-SU-2015:0096-1)

This update of bind to 9.9.6P1 fixes bugs and also the following security issue : A flaw in delegation handling could be exploited to put named into an infinite loop. This has been addressed by placing limits on the number of levels of recursion named will allow default 7, and the number of...

7.8CVSS6.6AI score0.65683EPSS
Exploits0References4
OSV
OSV
added 2015/01/26 1:21 p.m.4 views

USN-2484-1 unbound vulnerability

Florian Maury discovered that Unbound incorrectly handled delegation. A remote attacker could possibly use this issue to cause Unbound to consume resources, resulting in a denial of service...

4.3CVSS5.8AI score0.25205EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.39 views

FreeBSD : bind -- denial of service vulnerability (ab3e98d9-8175-11e4-907d-d050992ecde8)

ISC reports : We have today posted updated versions of 9.9.6 and 9.10.1 to address a significant security vulnerability in DNS resolution. The flaw was discovered by Florian Maury of ANSSI, and applies to any recursive resolver that does not support a limit on the number of recursions...

7.8CVSS6.7AI score0.65683EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.21 views

ISC BIND 9.0.x < 9.9.6-P1 'named' Delegation Handling DoS

Binary data 8602.prm...

7.8CVSS7.3AI score0.65683EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2014/12/12 2:9 a.m.4 views

bind: delegation handling denial of service

A denial of service flaw was found in the way BIND followed DNS delegations. A remote attacker could use a specially crafted zone containing a large number of referrals which, when looked up and processed, would cause named to use excessive amounts of memory or crash...

7.8CVSS6.8AI score0.65683EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2014/12/09 10:0 p.m.62 views

USN-2437-1: Bind vulnerability

Florian Maury discovered that Bind incorrectly handled delegation. A remote attacker could possibly use this issue to cause Bind to consume resources and crash, resulting in a denial of service...

7.8CVSS6.7AI score0.65683EPSS
Exploits0
OSV
OSV
added 2014/12/09 10:0 p.m.3 views

USN-2437-1 bind9 vulnerability

Florian Maury discovered that Bind incorrectly handled delegation. A remote attacker could possibly use this issue to cause Bind to consume resources and crash, resulting in a denial of service...

7.8CVSS6.9AI score0.65683EPSS
Exploits0References2
Rows per page
Query Builder