Lucene search
K

59 matches found

OSV
OSV
added 2022/09/29 6:36 p.m.4 views

CLSA-2022-1664476612 Fixed CVE-2022-2795 in bind

CVE-2022-2795: fix possible resolver performance degradation when processing large delegations...

5.3CVSS6.7AI score0.01495EPSS
Exploits0References1
OSV
OSV
added 2022/09/29 6:23 p.m.7 views

CLSA-2022-1664475836 Fixed CVE-2022-2795 in bind

CVE-2022-2795: fix possible resolver performance degradation when processing large delegations...

5.3CVSS6.7AI score0.01495EPSS
Exploits0References1
OSV
OSV
added 2022/09/29 6:12 p.m.4 views

CLSA-2022-1664475166 Fix CVE(s): CVE-2022-38177, CVE-2022-2795

SECURITY UPDATE: degrade resolver performance - debian/patches/CVE-2022-2795.patch: adds limits in fctxgetaddresses to avoid spending excessive amounts of time on processing large delegations in resolver code in lib/dns/resolver.c. - CVE-2022-2795 SECURITY UPDATE: memory leak -...

7.5CVSS6.9AI score0.02299EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2022/09/24 7:0 a.m.4 views

Processing large delegations may severely degrade resolver performance

...

5.3CVSS6.8AI score0.01495EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/09/22 12:0 a.m.69 views

Debian DSA-5235-1 : bind9 - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5235 advisory. Several vulnerabilities were discovered in BIND, a DNS server implementation. CVE-2022-2795 Yehuda Afek, Anat Bremler-Barr and Shani Stajnrod discovered that a fl...

7.5CVSS6.9AI score0.02299EPSS
Exploits0References11
OSV
OSV
added 2022/08/09 10:38 a.m.6 views

SUSE-SU-2022:2713-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance bsc1192146. - CVE-2021-25220: Fixed potentially incorrect answers by cached forwarders bsc1197135. - CVE-2022-0396: Fixed a incorrect handling of...

6.8CVSS6.3AI score0.08001EPSS
Exploits0References9
OPENSUSE Linux
OPENSUSE Linux
added 2022/05/27 12:0 a.m.59 views

Security update for bind (moderate)

SUSE Security Update: Security update for bind Announcement ID: openSUSE-SU-2022:0151-1 Rating: moderate References: 1192146 1199370 Cross-References: CVE-2021-25219 CVE-2022-27114 CVSS scores: CVE-2021-25219 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2021-25219 SUSE: 5.3...

5.5CVSS6.5AI score0.08001EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.24 views

RHEL 8 : bind (RHSA-2022:2092)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:2092 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named C Tenable, Inc...

5.3CVSS6.3AI score0.08001EPSS
Exploits0References11
OSV
OSV
added 2022/05/10 6:53 a.m.26 views

RLSA-2022:2092 Moderate: bind security, bug fix, and enhancement update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. The following...

5.3CVSS6.2AI score0.08001EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.31 views

EulerOS Virtualization 2.10.1 : bind (EulerOS-SA-2022-1368)

According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview...

5.3CVSS6.3AI score0.08001EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/03/01 12:0 a.m.20 views

EulerOS 2.0 SP5 : bind (EulerOS-SA-2022-1261)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as wel...

5.3CVSS6.3AI score0.08001EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/01/22 12:0 a.m.25 views

SUSE SLED15: bind / bind-chrootenv / bind-devel / bind-doc / bind-utils / etc (SUSE-SU-2022:0151-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0151-1 advisory. - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance bsc1192146. Tenab...

5.3CVSS6.4AI score0.08001EPSS
Exploits0References4
OSV
OSV
added 2022/01/21 11:41 a.m.7 views

OPENSUSE-SU-2022:0151-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance bsc1192146...

5.3CVSS5.3AI score0.08001EPSS
Exploits0References3
OSV
OSV
added 2022/01/21 11:41 a.m.7 views

SUSE-SU-2022:0151-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance bsc1192146...

5.3CVSS5.6AI score0.08001EPSS
Exploits0References3
OSV
OSV
added 2021/12/16 7:10 p.m.3 views

CLSA-2021-1639681836 Fix CVE(s): CVE-2021-25219

SECURITY UPDATE: resolver performance degradation via lame cache abuse - debian/patches/CVE-2021-25219.patch: disable lame cache in bin/named/config.c, bin/named/server.c, lib/dns/resolver.c. - CVE-2021-25219...

5.3CVSS6.4AI score0.08001EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2021/12/16 8:0 a.m.6 views

Lame cache can be abused to severely degrade resolver performance

...

5.3CVSS8.5AI score0.08001EPSS
Exploits0
OSV
OSV
added 2021/12/10 11:3 a.m.4 views

OESA-2021-1459 bind security update

Domain Name System DNS Server. Security Fixes: In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken...

5.3CVSS6.6AI score0.08001EPSS
Exploits0References2
OSV
OSV
added 2021/11/24 4:0 p.m.7 views

OPENSUSE-SU-2021:1502-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25219: Fixed lame cache that could have been abused to severely degrade resolver performance bsc1192146. This update was imported from the SUSE:SLE-15:Update update project...

5.3CVSS5.5AI score0.08001EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/11/24 12:0 a.m.39 views

SUSE SLED15: bind / bind-chrootenv / bind-devel / bind-doc / bind-utils / etc (SUSE-SU-2021:3773-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3773-1 advisory. - CVE-2021-25219: Fixed lame cache that could have been abused to severely degrade resolver performance bsc1192146. Tenable has extracted the...

5.3CVSS6.4AI score0.08001EPSS
Exploits0References4
OSV
OSV
added 2021/11/23 2:49 p.m.4 views

OPENSUSE-SU-2021:3773-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25219: Fixed lame cache that could have been abused to severely degrade resolver performance bsc1192146...

5.3CVSS5.5AI score0.08001EPSS
Exploits0References3
Rows per page
Query Builder