CVE-1999-0184

When compiled with the -DALLOWUPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records...

Alibaba Cloud Linux 3 : 0067: bind (ALINUX3-SA-2024:0067)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0067 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-3094: Sending a flood of dynamic DNS updat...

Linux Distros Unpatched Vulnerability : CVE-2022-3094

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory...

Medium: bind

Issue Overview: Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access...

Amazon Linux 2 : bind (ALAS-2025-2729)

The version of bind installed on the remote host is prior to 9.11.4-26.P2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2729 advisory. Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exi...

Oracle Linux 8 : bind (ELSA-2023-7177)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-7177 advisory. - Prevent exahustion of memory from control channel CVE-2023-3341 - Prevent the cache going over the configured limit CVE-2023-2828 - Prevent flooding with UPDA...

Oracle Linux 9 : bind (ELSA-2023-2261)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2261 advisory. - Handle subtle difference between upstream and rhel CVE-2022-3094 - Prevent flooding with UPDATE requests CVE-2022-3094 - Handle RRSIG queries when...

Important: bind

Issue Overview: By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service. CVE-2022-2795 A flaw was found in the Bind package, where the resolver ca...

SUSE CVE-2018-5741

To provide fine-grained controls over the ability to use Dynamic DNS DDNS to update records in a zone, BIND 9 provides a feature called update-policy. Various rules can be configured to limit the types of updates that can be performed by a client, depending on the key used when sending the update...

ALPINE-CVE-2022-3094

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

CVE-2022-3094

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

CVE-2022-3094 An UPDATE message flood may cause named to exhaust all available memory

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

CVE-2022-3094 An UPDATE message flood may cause named to exhaust all available memory

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

Slackware Linux 15.0 / current bind Multiple Vulnerabilities (SSA:2023-025-01)

The version of bind installed on the remote host is prior to 9.16.37 / 9.18.11. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-025-01 advisory. - BIND 9 resolver can crash when stale cache and stale answers are enabled, option stale-answer-client- timeout is...

Debian Security Advisory DSA 2272-1 (bind9)

The remote host is missing an update to bind9 announced via advisory DSA 2272-1. OpenVAS Vulnerability Test $Id: deb22721.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2272-1 bind9 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

Debian DSA-2208-1 : bind9 - denial of service

It was discovered that BIND, a DNS server, contains a race condition when processing zones updates in an authoritative server, either through dynamic DNS updates or incremental zone transfer IXFR. Such an update while processing a query could result in deadlock and denial of service. CVE-2011-041...

[SECURITY] [DSA 2208-1] bind9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2208-1 [email protected] http://www.debian.org/security/ Florian Weimer March 30, 2011 http://www.debian.org/security/faq -...

DSA-2208-1 bind9 - denial of service

Bulletin has no description...

Microsoft DNS Server (Dynamic DNS Updates) Remote Exploit

Exploit for unknown platform in category remote exploits ========================================================= Microsoft DNS Server Dynamic DNS Updates Remote Exploit ========================================================= / Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres...

ISC DHCPD minires library contains multiple buffer overflows

Overview The Internet Software Consortium ISC has discovered several buffer overflow vulnerabilities in their implementation of DHCP ISC DHCPD. These vulnerabilities may allow remote attackers to execute arbitrary code on affected systems. At this time, we are not aware of any exploits. Descripti...