Lucene search
K

111 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in bind9

By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode the available memory to the point where named crashes occur due to lack of resources...

7.5CVSS7.5AI score0.02176EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in bind9

By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode the available memory to the point where named crashes occur due to lack of resources...

7.5CVSS7.5AI score0.02299EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.13 views

Unity Linux 20.1060e / 20.1070e Security Update: bind (UTSA-2026-017654)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017654 advisory. In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release...

7.5CVSS6.9AI score0.11296EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/26 9:18 a.m.4 views

SUSE CVE-2026-3119

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS5.9AI score0.00576EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 2:16 p.m.3 views

DEBIAN-CVE-2026-3119

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS8.7AI score0.00576EPSS
Exploits0References1
OSV
OSV
added 2026/03/25 2:16 p.m.4 views

ALPINE-CVE-2026-3119

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS5.9AI score0.00576EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 1:31 p.m.33 views

CVE-2026-3119 Authenticated query containing a TKEY record may cause named to terminate unexpectedly

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS0.00576EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/25 1:31 p.m.3 views

CVE-2026-3119 Authenticated query containing a TKEY record may cause named to terminate unexpectedly

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS5.9AI score0.00576EPSS
Exploits0References3
CVE
CVE
added 2026/03/25 1:31 p.m.13 views

CVE-2026-3119

CVE-2026-3119 affects ISC BIND 9: when processing a correctly signed query containing a TSIG-signed TKEY, named may crash (terminate unexpectedly). Affected versions: 9.20.0–9.20.20, 9.21.0–9.21.19, and 9.20.9-S1–9.20.20-S1. Unaffected: 9.18.0–9.18.46 and 9.18.11-S1–9.18.46-S1. The issue requires...

6.5CVSS5.9AI score0.00576EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/03/25 1:31 p.m.4 views

CVE-2026-3119

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS8.7AI score0.00576EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/03/25 1:31 p.m.5 views

CVE-2026-3119

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS5.9AI score0.00576EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-3119

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incomin...

6.5CVSS7.5AI score0.00576EPSS
Exploits0References3
OSV
OSV
added 2026/03/25 12:0 a.m.4 views

UBUNTU-CVE-2026-3119

Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....

6.5CVSS7.3AI score0.00576EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/22 12:38 a.m.2 views

SUSE CVE-2025-13878

Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1...

7.5CVSS5.5AI score0.08219EPSS
Exploits0References5
CVE
CVE
added 2026/01/21 2:43 p.m.61 views

CVE-2025-13878

CVE-2025-13878 affects BIND 9.18.x (9.18.40–9.18.43 and 9.18.40-S1–9.18.43-S1), 9.20.x (9.20.13–9.20.17 and 9.20.13-S1–9.20.17-S1), and 9.21.x (9.21.12–9.21.16 and 9.21.12-S1–9.21.16-S1). The issue arises from malformed BRID/HHIT records causing named to terminate unexpectedly. Public advisories ...

7.5CVSS5.4AI score0.08219EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/01/21 12:0 a.m.3 views

ISC BIND 9 security vulnerabilities

ISC BIND 9 is a domain name system software developed by the ISC organization. Security vulnerabilities exist in versions of ISC BIND 9 such as 9.18.43 and earlier, 9.20.17 and earlier, 9.21.16 and earlier, 9.18.43-S1 and earlier, and 9.20.17-S1 and earlier. These vulnerabilities stem from BRID o...

7.5CVSS6AI score0.08219EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-40774

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.02176EPSS
Exploits0References25
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-25215

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as...

7.5CVSS7.2AI score0.11296EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-5517

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receiv...

7.5CVSS7.4AI score0.01231EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-4236

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal da...

7.5CVSS8AI score0.0215EPSS
Exploits0References2
Rows per page
Query Builder