Amazon Linux 2 : bind (ALAS-2025-2729)

The version of bind installed on the remote host is prior to 9.11.4-26.P2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2729 advisory. Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exi...

bind9 -- Denial of Service in named(8)

Problem Description For a recursive DNS server, a remote attacker sending enough recursive queries for the replies to arrive after all the interested clients have left the recursion queue will trigger an INSIST failure in the named8 daemon. Also for a recursive DNS server, an assertion failure ca...