Lucene search
K

141 matches found

NVD
NVD
added 2026/06/23 2:17 p.m.9 views

CVE-2026-12969

An out-of-bounds read vulnerability exists in dnsmasq's findsoa function in src/rfc1035.c. When parsing NS section records, extractname is called with extrabytes=0, failing to validate that 10 additional bytes exist for fixed-length DNS record fields. A remote attacker controlling a DNS zone can...

5.3CVSS0.0025EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/23 1:28 p.m.7 views

CVE-2026-12969

An out-of-bounds read vulnerability exists in dnsmasq's findsoa function in src/rfc1035.c. When parsing NS section records, extractname is called with extrabytes=0, failing to validate that 10 additional bytes exist for fixed-length DNS record fields. A remote attacker controlling a DNS zone can...

5.3CVSS6AI score0.0025EPSS
Exploits0References3
CVE
CVE
added 2026/06/23 1:28 p.m.13 views

CVE-2026-12969

Dnsmasq has an out-of-bounds read in find_soa() (src/rfc1035.c) when parsing NS records; extract_name() is called with extrabytes=0 and does not validate that 10 extra bytes exist for fixed-length DNS fields. A remote attacker controlling a DNS zone could exploit a crafted NXDOMAIN response to pe...

5.3CVSS6AI score0.0025EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-6135

Malware in sbrugna...

7.5CVSS7.5AI score0.01192EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2016-10579

Malware in sbrugna...

7.5CVSS6.5AI score0.06787EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-4559

Malware in sbrugna...

7.5CVSS8.5AI score0.02434EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-16028

Malware in sbrugna...

7.5CVSS5.6AI score0.02539EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-6570

Malware in sbrugna...

5.3CVSS5.6AI score0.02681EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-0129

Malware in sbrugna...

4.3CVSS7.4AI score0.09363EPSS
Exploits0References41
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-2383

Malware in sbrugna...

5.9CVSS5.7AI score0.03311EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-2213

Malware in sbrugna...

7.5CVSS6AI score0.01993EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2003-1122

Malware in sbrugna...

5CVSS6.4AI score0.02132EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-57830

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.01231EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-19377

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00515EPSS
Exploits0References1
OSV
OSV
added 2025/02/12 6:53 p.m.3 views

CLSA-2025-1739386415 bind: Fix of 3 CVEs

CVE-2023-5517: fix a flaw causing named to crash with an assertion failure when nxdomain-redirect is set, and a PTR query for an RFC 1918 address returns NXDOMAIN - CVE-2023-5679: fix a crash in named due to an assertion failure during recursive resolution when both DNS64 and serve-stale are...

7.5CVSS7.1AI score0.01231EPSS
Exploits0References1
OSV
OSV
added 2024/06/16 10:20 a.m.28 views

SUSE-SU-2024:2033-1 Security update for bind

This update for bind fixes the following issues: - CVE-2023-4408: Fixed denial of service during DNS message parsing with different names bsc1219851 - CVE-2023-50387: Fixed denial of service during DNS messages validation with DNSSEC signatures bsc1219823 - CVE-2023-50868: Fixed denial of service...

7.5CVSS8.1AI score0.99995EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2024/06/12 12:0 a.m.35 views

SUSE SLED15: bind / bind-chrootenv / bind-devel / bind-doc / bind-utils / etc (SUSE-SU-2024:1982-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1982-1 advisory. - CVE-2023-4408: Fixed denial of service during DNS message parsing with different names bsc1219851 -...

7.5CVSS7.1AI score0.99995EPSS
Exploits1References16
OSV
OSV
added 2024/06/11 10:12 a.m.33 views

SUSE-SU-2024:1982-1 Security update for bind

This update for bind fixes the following issues: - CVE-2023-4408: Fixed denial of service during DNS message parsing with different names bsc1219851 - CVE-2023-50387: Fixed denial of service during DNS messages validation with DNSSEC signatures bsc1219823 - CVE-2023-50868: Fixed denial of service...

7.5CVSS8.1AI score0.99995EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2024/04/15 1:30 a.m.2 views

bind9: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled

A flaw was found in the bind package which may result in a Denial of Service in named process. This is a result of a reachable assertion, leading named to prematurely terminate when both conditions are met: nxdomain-redirect for the queried domain is configured and the resolver receives a PTR...

7.5CVSS5.7AI score0.01231EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2024/04/11 12:0 a.m.62 views

bind security update

bind 32:9.16.23-14.4 - Rebuild with correct z-stream tag again 32:9.16.23-14.3 - Rebuild together with bind-dyndb-ldap to adjust ABI changes 32:9.16.23-14.2 - Import tests for large DNS messages fix - Add downstream change complementing CVE-2023-50387 32:9.16.23-14.1 - Prevent increased CPU load ...

7.5CVSS7.7AI score0.99995EPSS
Exploits1
Rows per page
Query Builder