CVE-2026-35579

CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport implementations incorrectly handle TSIG authentication. For gRPC and QUIC, the server checks whether the TSIG key name exists in the configuration but never calls dns.TsigVerify to validate...

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact ...

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

ISC BIND < 9.3.3 DNS Message Malformed TSIG Remote DoS

Binary data 3523.prm...

BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (4)

Exploit for linux platform in category remote exploits ======================================================== BIND 8.2.x TSIG Remote Root Stack Overflow Exploit 4 ======================================================== / This exploit has been fixed and extensive explanation and clarification...

ISC BIND 8.2.x - &#039;TSIG&#039; Remote Stack Overflow (4)

/ This exploit has been fixed and extensive explanation and clarification added. Cleanup done by: Ian Goldberg Jonathan Wilkins NOTE: the default installation of RedHat 6.2 seems to not be affected due to the compiler options. If BIND is built from source then the bug is able to manifest itself. ...

ISC BIND 8.2.x - TSIG Remote Stack Overflow (2)

ISC BIND 8.2.x - TSIG Remote Stack Overflow 2 / copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Slackware 4.0/RedHat 6.2 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleak" bug through UDP ...

ISC BIND 8.2.x - &#039;TSIG&#039; Remote Stack Overflow (3)

/ copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Solaris 2.7 x86 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleek" bug through UDP to obtain the base / / value of the named process frame...

ISC BIND 8.2.x - &#039;TSIG&#039; Remote Stack Overflow (2)

/ copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Slackware 4.0/RedHat 6.2 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleak" bug through UDP to obtain the base / / value of the named...