108 matches found
April 17, 2018—KB4093113 (Preview of Monthly Rollup)
April 17, 2018—KB4093113 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4093118 released April 10, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Windows Update...
February 22, 2018—KB4075213 (Preview of Monthly Rollup)
February 22, 2018—KB4075213 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4074593 released February 13, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Updates...
May 17, 2018—KB4103724 (Preview of Monthly Rollup)
May 17, 2018—KB4103724 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were part of KB4103725 released May 8, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses additional...
ISC BIND Zone Data Denial of Service
According to its self-reported version number, the installation of ISC BIND running on the remote name server is affected by a memory exhaustion vulnerability. A server is potentially vulnerable if it accepts zone data from another source, as no limit is currently placed on zone data size. Note...
BIND,Knot,NSD,PowerDNS -- denial over service via oversized zone transfers
ISC reports: DNS protocols were designed with the assumption that a certain amount of trust could be presumed between the operators of primary and secondary servers for a given zone. However, in current practice some organizations have scenarios which require them to accept zone data from sources...
BIND: Denial of service
Background BIND Berkeley Internet Name Domain is a Name Server. Description A vulnerability has been discovered in BIND’s named utility leading to a Denial of Service condition. Impact A remote attacker may be able to cause Denial of Service condition via specially constructed zone data. Workarou...
USN-2728-1 bind9 vulnerability
Hanno Böck discovered that Bind incorrectly handled certain malformed keys when configured to perform DNSSEC validation. A remote attacker could use this issue with specially crafted zone data to cause Bind to crash, resulting in a denial of service...
DEBIAN-CVE-2015-4620
name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit by constructing crafted zone data and then...
Authentication flaw
name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit by constructing crafted zone data and then...
CVE-2015-4620
name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit by constructing crafted zone data and then...
USN-2669-1 bind9 vulnerability
Breno Silveira Soares discovered that Bind incorrectly handled certain zone data when configured to perform DNSSEC validation. A remote attacker could use this issue with specially crafted zone data to cause Bind to crash, resulting in a denial of service...
CVE-2015-4620
name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit by constructing crafted zone data and then...
UBUNTU-CVE-2015-4620
name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit by constructing crafted zone data and then...
bind: denial of service
A very uncommon combination of zone data has been found that triggers a bug in BIND, with the result that named will exit with a "REQUIRE" failure in name.c when validating the data returned in answer to a recursive query. This means that a recursive resolver that is performing DNSSEC validation...
ISC BIND 9 Zero-Length RDATA Section Denial of Service / Information Disclosure
Binary data 6806.prm...
GLSA-201206-01 : BIND: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201206-01 BIND: Multiple vulnerabilities Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details. Impact : The vulnerabilities allow remote attackers to cause a Denial ...
Ubuntu Update for bind9 vulnerabilities USN-1025-1
Ubuntu Update for Linux kernel vulnerabilities USN-1025-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10251.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for bind9 vulnerabilities USN-1025-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
USN-1025-1: Bind vulnerabilities
It was discovered that Bind would incorrectly allow a ncache entry and a rrsig for the same type. A remote attacker could exploit this to cause Bind to crash, resulting in a denial of service. CVE-2010-3613 It was discovered that Bind would incorrectly mark zone data as insecure when the zone is...
ISC BIND 9.4-ESV < 9.4-ESV-R4 / 9.6.2 < 9.6.2-P3, 9.6-ESV < 9.6-ESV-R3 / 9.7.x < 9.7.2-P3 Multiple Vulnerabilities
Binary data 5718.prm...
ISC BIND named validator vulnerability
Overview ISC BIND named contains a vulnerability where under certain situations it could incorrectly mark zone data as insecure. Description According to ISC:named, acting as a DNSSEC validator, was determining if an NS RRset is insecure based on a value that could mean either that the RRset is...