111 matches found
Astra Linux – Vulnerability in bind9
By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode the available memory to the point where named crashes occur due to lack of resources...
Astra Linux – Vulnerability in bind9
By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode the available memory to the point where named crashes occur due to lack of resources...
Unity Linux 20.1060e / 20.1070e Security Update: bind (UTSA-2026-017654)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017654 advisory. In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release...
SUSE CVE-2026-3119
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
DEBIAN-CVE-2026-3119
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
ALPINE-CVE-2026-3119
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
CVE-2026-3119 Authenticated query containing a TKEY record may cause named to terminate unexpectedly
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
CVE-2026-3119 Authenticated query containing a TKEY record may cause named to terminate unexpectedly
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
CVE-2026-3119
CVE-2026-3119 affects ISC BIND 9: when processing a correctly signed query containing a TSIG-signed TKEY, named may crash (terminate unexpectedly). Affected versions: 9.20.0–9.20.20, 9.21.0–9.21.19, and 9.20.9-S1–9.20.20-S1. Unaffected: 9.18.0–9.18.46 and 9.18.11-S1–9.18.46-S1. The issue requires...
CVE-2026-3119
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
CVE-2026-3119
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
Linux Distros Unpatched Vulnerability : CVE-2026-3119
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incomin...
UBUNTU-CVE-2026-3119
Under certain conditions, named may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature TSIG from a key declared in the named configuration. This issue affects BIND 9 versions 9.20....
SUSE CVE-2025-13878
Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1...
CVE-2025-13878
CVE-2025-13878 affects BIND 9.18.x (9.18.40–9.18.43 and 9.18.40-S1–9.18.43-S1), 9.20.x (9.20.13–9.20.17 and 9.20.13-S1–9.20.17-S1), and 9.21.x (9.21.12–9.21.16 and 9.21.12-S1–9.21.16-S1). The issue arises from malformed BRID/HHIT records causing named to terminate unexpectedly. Public advisories ...
ISC BIND 9 security vulnerabilities
ISC BIND 9 is a domain name system software developed by the ISC organization. Security vulnerabilities exist in versions of ISC BIND 9 such as 9.18.43 and earlier, 9.20.17 and earlier, 9.21.16 and earlier, 9.18.43-S1 and earlier, and 9.20.17-S1 and earlier. These vulnerabilities stem from BRID o...
EUVD-2022-40774
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-25215
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as...
Linux Distros Unpatched Vulnerability : CVE-2023-5517
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receiv...
Linux Distros Unpatched Vulnerability : CVE-2023-4236
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal da...