Lucene search
K

6 matches found

OSV
OSV
added 2026/06/05 12:12 p.m.6 views

SUSE-SU-2026:2281-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: 'Ghost domain name' variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.2AI score0.01272EPSS
Exploits0References23
Vulnrichment
Vulnrichment
added 2026/05/19 1:47 p.m.7 views

CVE-2026-45557 Technitium DNS Server excessive DNSSEC requests

Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0...

6.9CVSS5.8AI score0.00389EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/15 11:5 p.m.6 views

bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone

A flaw was found in BIND. A remote attacker could exploit this vulnerability by sending a maliciously crafted DNSSEC-validated zone to a BIND resolver. This could cause the resolver to consume excessive CPU resources, leading to a denial of service DoS for legitimate users...

7.5CVSS7.4AI score0.01545EPSS
Exploits0References8
OSV
OSV
added 2024/03/22 11:7 a.m.3 views

OESA-2024-1326 bind security update

Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols and provides an openly redistributable reference implementation of the major components of the Domain Name System. This package includes the components to operate a DNS server. Security Fixes: The DNS...

7.5CVSS6.9AI score0.99995EPSS
Exploits0References6
OSV
OSV
added 2022/12/28 3:15 a.m.4 views

CVE-2022-3347

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

7.5CVSS5.8AI score0.00242EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/01/19 3:6 p.m.4 views

dnsmasq: heap-based buffer overflow with large memcpy in sort_rrset() when DNSSEC is enabled

A flaw was found in dnsmasq. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker, who can create valid DNS replies, to cause an overflow in a heap-allocated memory. This flaw is caused b...

7.1CVSS7.7AI score0.86692EPSS
Exploits0References6
Rows per page
Query Builder