CVE-2026-5946

Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Internet IN — for example, CHAOS or HESIOD, or DNS messages that specify meta-classes ANY or NONE in the question section. Specially crafted requests reaching the affected code paths — recursio...

EUVD-2026-31107

Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Internet IN — for example, CHAOS or HESIOD, or DNS messages that specify meta-classes ANY or NONE in the question section. Specially crafted requests reaching the affected code paths — recursio...

CVE-2026-5946

Summary of CVE-2026-5946 (CVE entry for named in BIND) : The issue involves the DNS message handling in the BIND 9 recursive resolver (named) when processing DNS classes other than IN (e.g., CHAOS/HESIOD) or non-IN data in questions. According to the sources, specially crafted requests reaching c...

CVE-2026-5946

Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Internet IN — for example, CHAOS or HESIOD, or DNS messages that specify meta-classes ANY or NONE in the question section. Specially crafted requests reaching the affected code paths — recursio...

Malicious code in noteasonfnsource (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fa2242ec1849ffa55a55c85b7781623cdc7147b8568b3beaa5d2b3b956c04e17 Code provides a Discord bot, which - once a generic command is called - performs malicious action against the Discord server: deletes all channels, renames the...

[SECURITY] [DSA 6077-1] pdns-recursor security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6077-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 10, 2025 https://www.debian.org/security/faq -...

Debian dsa-6077 : pdns-recursor - security update

The remote Debian 13 host has a package installed that is affected by a vulnerability as referenced in the dsa-6077 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6077-1 [email protected] https://www.debian.org/security/...

CVE-2025-59030

PowerDNS Recursor is affected by CVE-2025-59030 due to insufficient validation of incoming notifies over TCP, which can lead to a denial of service. Debian notes the fix in pdns-recursor 5.2.7-0+deb13u1 for the stable TRIXIE release and recommends upgrading. Other OpenVAS/NVD references reiterate...

powerdns-recursor -- Denial of Service

PowerDNS Team reports: 2025-07: Internal logic flaw in cache management can lead to a denial of service in Recursor 2025-08: Insufficient validation of incoming notifies over TCP can lead to a denial of service in Recursor 2026-01: Crafted zones can lead to increased resource usage in Recursor...

CLSA-2025-1758009294 kernel: Fix of 3 CVEs

posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-2025-38352 - schqfq: make qfqqlennotify idempotent CVE-2025-38177 - schhfsc: make hfscqlennotify idempotent CVE-2025-38177 - schdrr: make drrqlennotify idempotent CVE-2025-38177 - schhtb: make htbqlennotify...

PT-2025-49591

Name of the Vulnerable Software and Affected Versions pdns-recursor affected versions not specified Description An attacker can cause the software to fail due to an assertion failure. This is triggered by sending specially crafted DNS records, which are then cached, followed by a DNS query with t...

PT-2025-49592

Name of the Vulnerable Software and Affected Versions pdns-recursor affected versions not specified Description An attacker can trigger the removal of cached records by sending a NOTIFY query over TCP. This impacts pdns-recursor in Debian Linux. Recommendations At the moment, there is no...

SUSE CVE-2007-2930

The 1 NSIDSHUFFLEONLY and 2 NSIDUSEPOOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors...

SUSE CVE-2019-10163

A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIFY messages. Note that only servers configured a...

ALPINE-CVE-2018-5736

An error in zone database reference counting can lead to an assertion failure if a server which is running an affected version of BIND attempts several transfers of a slave zone in quick succession. This defect could be deliberately exercised by an attacker who is permitted to cause a vulnerable...

DEBIAN-CVE-2017-3142

An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name may be able to circumvent TSIG authentication of AXFR requests via a carefully constructed request packet. A server that relies solely on TSIG keys for protection wit...

Firefox Monitor tool informs users if they have been hacked

By Carolina The Firefox Monitor will be launched next week - The tool This is a post from HackRead.com Read the original post: Firefox Monitor tool informs users if they have been hacked...

qemu-kvm security and bug fix update

qemu-kvm-0.12.1.2-2.160.el61.2 - kvm-virtio-guard-against-negative-vq-notifies.patch bz717403 - Resolves: bz717403 qemu-kvm: OOB memory access caused by negative vq notifies rhel-6.1.z qemu-kvm-0.12.1.2-2.160.el61 - kvm-Fix-phys-memory-client-pass-guest-physical-address-n.patch bz701771 -...