Lucene search
K

213 matches found

Redos
Redos
added 2021/09/08 12:0 a.m.11 views

ROS-2-1247

2.1247 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.6AI score0.82367EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.10 views

ROS-2-1332

2.1332 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.6AI score0.99295EPSS
Exploits81
Redos
Redos
added 2021/09/08 12:0 a.m.10 views

ROS-2-1724

2.1724 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.6AI score0.82367EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-665

2.665 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.7AI score0.82367EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.11 views

ROS-2-1365

2.1365 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS10AI score0.82367EPSS
Exploits2
OpenVAS
OpenVAS
added 2021/09/06 12:0 a.m.22 views

ISC BIND DoS Vulnerability (CVE-2017-3137) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

7.5CVSS7.5AI score0.08902EPSS
Exploits0References1
Amazon
Amazon
added 2021/07/13 12:0 a.m.41 views

Important: bind

Issue Overview: A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability. CVE-2021-25215 Affected Packages: bind...

7.5CVSS7.8AI score0.11296EPSS
Exploits0
OSV
OSV
added 2021/07/10 5:28 p.m.4 views

OPENSUSE-SU-2021:1826-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update IXFR which could have caused named to terminate unexpectedly bsc1185345. - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records...

7.5CVSS8AI score0.11296EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2021/07/10 12:0 a.m.34 views

Security update for bind (important)

openSUSE Security Update: Security update for bind Announcement ID: openSUSE-SU-2021:1826-1 Rating: important References: 1183453 1185073 Cross-References: CVE-2021-25214 CVE-2021-25215 CVSS scores: CVE-2021-25214 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-25214 SUSE: 6.5...

7.5CVSS6.7AI score0.11296EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/17 7:3 p.m.54 views

Security Bulletin: BIND for IBM i is affected by CVE-2021-25214 and CVE-2021-25215

Summary BIND is used by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-25214 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by a broken inbound incremental zone update IXFR. By sending a specially crafted IXFR, an attacker could exploit...

7.5CVSS7.2AI score0.11296EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/06/03 12:0 a.m.46 views

SUSE SLED15 / SLES15 Security Update : bind (SUSE-SU-2021:1826-1)

This update for bind fixes the following issues : CVE-2021-25214: Fixed a broken inbound incremental zone update IXFR which could have caused named to terminate unexpectedly bsc1185345. CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records that...

7.5CVSS7.3AI score0.11296EPSS
Exploits0References7
OSV
OSV
added 2021/06/01 2:40 p.m.5 views

SUSE-SU-2021:1826-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update IXFR which could have caused named to terminate unexpectedly bsc1185345. - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records...

7.5CVSS7AI score0.11296EPSS
Exploits0References5
Amazon
Amazon
added 2021/05/24 12:0 a.m.47 views

Important: bind

Issue Overview: A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability. CVE-2021-25215 Affected Packages: bind...

7.5CVSS7.9AI score0.11296EPSS
Exploits0
Mageia
Mageia
added 2021/05/23 6:45 p.m.62 views

Updated bind packages fix security vulnerabilities

A broken inbound incremental zone update IXFR can cause named to terminate unexpectedlyCVE-2021-25214. Mageia 7 version not affected. An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself CVE-2021-25215. This affects both...

9.8CVSS4.5AI score0.82367EPSS
Exploits0References6
OSV
OSV
added 2021/05/23 6:45 p.m.6 views

MGASA-2021-0220 Updated bind packages fix security vulnerabilities

A broken inbound incremental zone update IXFR can cause named to terminate unexpectedlyCVE-2021-25214. Mageia 7 version not affected. An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself CVE-2021-25215. This affects both...

9.8CVSS7.2AI score0.82367EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2021/05/19 8:54 a.m.5 views

bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself

A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability...

7.5CVSS6.7AI score0.11296EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.38 views

RHEL 8 : bind (RHSA-2021:2024)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2024 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL...

7.5CVSS7.3AI score0.11296EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.44 views

RHEL 8 : bind (RHSA-2021:2028)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2028 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL...

7.5CVSS7.3AI score0.11296EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2021/05/18 5:9 p.m.48 views

Important: bind security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

5CVSS1.5AI score0.11296EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2021/05/18 5:9 p.m.39 views

bind security update

An update is available for bind. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Berkeley Internet Name Domain BIND is an implementation of the Domain Name...

7.5CVSS7.9AI score0.11296EPSS
Exploits0
Rows per page
Query Builder