ISC Bind9 Vulnerabilities
Isc Bind9 vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Processing large delegations may severely degrade resolver performance
CVE-2022-2795IscBind9👾5.3MEDIUMBuffer overread in statistics channel code
CVE-2022-2881IscBind9👾8.2HIGHMemory leaks in code handling Diffie-Hellman key exchange via TKEY RRs (OpenSSL 3.0.0+ only)
CVE-2022-2906IscBind9👾7.5HIGHBIND 9 resolvers configured to answer from stale cache with zero stale-answer-client-timeout may terminate unexpectedly
CVE-2022-3080IscBind9👾7.5HIGHMemory leak in ECDSA DNSSEC verification code
CVE-2022-38177IscBind9👾7.5HIGHMemory leaks in EdDSA DNSSEC verification code
CVE-2022-38178IscBind9👾7.5HIGHDestroying a TLS session early causes assertion failure
CVE-2022-1183IscBind9👾7.5HIGHLame cache can be abused to severely degrade resolver performance
CVE-2021-25219IscBind9👾5.3MEDIUMA too-strict assertion check could be triggered when responses in BIND 9.16.19 and 9.17.16 require UDP fragmentation if RRL is in use
CVE-2021-25218IscBind9👾7.5HIGHA broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly
CVE-2021-25214IscBind9👾6.5MEDIUMAn assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself
CVE-2021-25215IscBind9👾7.5HIGHA second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack
CVE-2021-25216IscBind9👾EPSS 31%8.1HIGHA vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack
CVE-2020-8625IscBind98.1HIGHAssertion Failure in BIND Server Leading to Unexpected Exits
CVE-2020-8620IscBind9👾7.5HIGHAttempting QNAME minimization after forwarding can lead to an assertion failure in resolver.c
CVE-2020-8621IscBind9👾7.5HIGHA truncated TSIG response can lead to an assertion failure
CVE-2020-8622IscBind9👾6.5MEDIUMA flaw in native PKCS#11 code can lead to a remotely triggerable assertion failure in pk11.c
CVE-2020-8623IscBind9👾EPSS 18%7.5HIGHupdate-policy rules of type "subdomain" are enforced incorrectly
CVE-2020-8624IscBind9👾4.3MEDIUMA buffer boundary check assertion in rdataset.c can fail incorrectly during zone transfer
CVE-2020-8618IscBind94.9MEDIUMA buffer boundary check assertion in rdataset.c can fail incorrectly during zone transfer
CVE-2020-8619IscBind94.9MEDIUMBIND does not sufficiently limit the number of fetches performed when processing referrals
CVE-2020-8616IscBind9EPSS 19%8.6HIGHA logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c
CVE-2020-8617IscBind9👾🟡EPSS 92%7.5HIGHTCP-pipelined queries can bypass tcp-clients limit
CVE-2019-6477IscBind97.5HIGH