Filters
Software
Isc StorkIncorrect TLS certificate validation can lead to escalated privileges
8.9
First published (updated )
Microsoft Windows Server 2012Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities
7.5
First published (updated )
ISC BINDSpecific recursive query patterns may lead to an out-of-memory condition
7.5
First published (updated )
ISC BINDEnabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution
7.5
First published (updated )
ISC BINDQuerying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDParsing large DNS messages may cause excessive CPU load
7.5
First published (updated )
ubuntu/bind9named may terminate unexpectedly under high DNS-over-TLS query load
7.5
First published (updated )
ISC BINDA stack exhaustion flaw in control channel code may cause named to terminate unexpectedly
7.5
First published (updated )
ISC BINDMalformed NSEC records can cause named to terminate unexpectedly when synth-from-dnssec is enabled
7.5
First published (updated )
ubuntu/bind9Exceeding the recursive-clients quota may cause named to terminate unexpectedly when stale-answer-client-timeout is set to 0
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/bind9named's configured cache size limit can be significantly exceeded
7.5
First published (updated )
ISC BINDnamed may terminate unexpectedly when processing ECS options in repeated responses to iterative queries
7.5
First published (updated )
ISC BINDnamed configured to answer from stale cache may terminate unexpectedly at recursive-clients soft quota
7.5
First published (updated )
ISC BINDnamed configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries
7.5
First published (updated )
ISC BINDAn UPDATE message flood may cause named to exhaust all available memory
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDMemory leaks in code handling Diffie-Hellman key exchange via TKEY RRs (OpenSSL 3.0.0+ only)
7.5
First published (updated )
ISC BINDBIND 9 resolvers configured to answer from stale cache with zero stale-answer-client-timeout may terminate unexpectedly
7.5
First published (updated )
ISC BINDMemory leaks in EdDSA DNSSEC verification code
7.5
First published (updated )
ISC BINDMemory leak in ECDSA DNSSEC verification code
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDDestroying a TLS session early causes assertion failure
7.5
First published (updated )
ISC BINDVersions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific quer…
7.5
First published (updated )
ISC BINDA too-strict assertion check could be triggered when responses in BIND 9.16.19 and 9.17.16 require UDP fragmentation if RRL is in use
7.5
First published (updated )
ISC DHCPA buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDAn assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself
7.5
First published (updated )
ISC BINDISC BIND TKEY Query Heap-based Buffer Overflow Remote Code Execution Vulnerability
8.1
First published (updated )
Canonical Ubuntu LinuxAttempting QNAME minimization after forwarding can lead to an assertion failure in resolver.c
7.5
First published (updated )
ISC BINDA flaw in native PKCS#11 code can lead to a remotely triggerable assertion failure in pk11.c
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDA logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c
7.5
First published (updated )
ISC BINDBIND does not sufficiently limit the number of fetches performed when processing referrals
8.6
First published (updated )
ISC BINDTCP-pipelined queries can bypass tcp-clients limit
7.5
First published (updated )
ISC BINDAn oversight while backporting a feature leads to an assertion failure in buffer.c:420
7.5
First published (updated )
ISC BINDAn error in QNAME minimization code can cause BIND to exit with an assertion failure
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDA flaw in mirror zone validity checking can allow zone data to be spoofed
7.5
First published (updated )
ISC BINDLimiting simultaneous TCP clients was ineffective
7.5
First published (updated )
ISC BINDBIND Supported Preview Edition can exit with an assertion failure if nxdomain-redirect is used
7.5
First published (updated )
ISC BINDBIND Supported Preview Edition can exit with an assertion failure if ECS is in use
7.5
First published (updated )
ISC BINDAn error in the nxdomain redirect feature can cause BIND to exit with an INSIST assertion failure in query.c
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDA specially crafted packet can cause named to leak memory
7.5
First published (updated )
ISC BINDSome versions of BIND can improperly permit recursive query service to unauthorized clients
7.5
First published (updated )
ISC BINDAn error handling certain queries using the nxdomain-redirect feature could cause a REQUIRE assertion failure in db.c
7.5
First published (updated )
ISC BINDWindows service and uninstall paths are not quoted when BIND is installed
7.8
First published (updated )
ISC BINDA malformed request can trigger an assertion failure in badcache.c
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC KeaFailure to release memory may exhaust system resources
7.5
First published (updated )
ISC BINDA flaw in the "deny-answer-aliases" feature can cause an assertion failure in named
7.5
First published (updated )
ISC BINDBIND 9.12's serve-stale implementation can cause an assertion failure in rbtdb.c or other undesirable behavior, even if serve-stale is not enabled.
7.5
First published (updated )
openSUSE Leapdhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries
7.5
First published (updated )
ISC DHCPA specially constructed response from a malicious server can cause a buffer overflow in dhclient
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.