8 matches found
AZL-46969 CVE-2024-1975 affecting package bind for versions less than 9.20.0-1
If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a "KEY" Resource Record from a DNSSEC-signed domain in cache, a client can exhaust resolver CPU resources by sending a stream of SIG0 signed requests. This issue affects BIND 9 versions 9.0.0 through...
Mac OS X : OS X Server < 5.0.15 Multiple Vulnerabilities
The remote Mac OS X host has a version of OS X Server installed that is prior to 5.0.15. It is, therefore, affected by the following vulnerabilities : - A denial of service vulnerability exists due to an assertion flaw that is triggered when parsing malformed DNSSEC keys. An unauthenticated, remo...
CentOS 5 : bind97 (CESA-2015:1707)
"Updated bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fr...
ISC BIND 9.0.x < 9.9.7-P3 / 9.10.x < 9.10.2-P4 Multiple DoS
According to its self-reported version number, the installation of ISC BIND running on the remote name server is potentially affected by the following vulnerabilities : - A denial of service vulnerability exists due to an assertion flaw that is triggered when parsing malformed DNSSEC keys. An...
bind: denial of service
CVE-2015-5722 Parsing malformed keys may cause BIND to exit due to a failed assertion in buffer.c: Parsing a malformed DNSSEC key can cause a validating resolver to exit due to a failed assertion in buffer.c. It is possible for a remote attacker to deliberately trigger this condition, for example...
Debian Security Advisory DSA 1571-1 (openssl)
The remote host is missing an update to openssl announced via advisory DSA 1571-1. OpenVAS Vulnerability Test $Id: deb15711.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1571-1 openssl Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian and Ubuntu OpenSSL packages contain a predictable random number generator
Overview A vulnerability in the OpenSSL package included with the Debian GNU/Linux operating system and its derivatives may cause weak cryptographic keys to be generated. Description A weakness exists in the random number generator used by the OpenSSL package included with the Debian GNU/Linux...
DSA-1571-1 openssl - predictable random number generator
Bulletin has no description...