CVE-2025-8677

Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1...

CVE-2025-40780

In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...

EUVD-2012-3517

Malware in sbrugna...

EUVD-2012-3898

Malware in sbrugna...

EUVD-2020-6482

Malware in sbrugna...

EUVD-2018-17501

Malware in sbrugna...

EUVD-2021-12128

Malware in sbrugna...

EUVD-2009-1887

Malware in sbrugna...

EUVD-1999-0789

Malware in sbrugna...

EUVD-2004-0460

Malware in sbrugna...

EUVD-2013-2440

Malware in sbrugna...

EUVD-2022-35151

Malicious code in bioql PyPI...

EUVD-2022-35152

Malicious code in bioql PyPI...

CVE-2025-40776

A named caching resolver that is configured to send ECS EDNS Client Subnet options may be vulnerable to a cache-poisoning attack. This issue affects BIND 9 versions 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.37-S1, and 9.20.9-S1 through 9.20.10-S1...

CVE-2025-40777

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

TencentOS Server 4: dhcp (TSSA-2025:0066)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0066 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2025-40775

When an incoming DNS protocol message includes a Transaction Signature TSIG, BIND always checks it. If the TSIG contains an invalid value in the algorithm field, BIND immediately aborts with an assertion failure. This issue affects BIND 9 versions 9.20.0 through 9.20.8 and 9.21.0 through 9.21.7...

Alibaba Cloud Linux 3 : 0058: dhcp (ALINUX3-SA-2023:0058)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2023:0058 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-2928: In ISC DHCP 4.4.0 - 4.4.3,...

Alibaba Cloud Linux 3 : 0041: dhcp (ALINUX3-SA-2021:0041)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0041 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-25217: In ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R1...

Linux Distros Unpatched Vulnerability : CVE-2018-5732

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Failure to properly bounds-check a buffer used for processing DHCP options allows a malicious server or an entity masquerading as a server to cause a buffer...