Debian Bind9 vulnerabilities

CVE-2010-0218 [MEDIUM] CVE-2010-0218: bind9 - ISC BIND 9.7.2 through 9.7.2-P1 uses an incorrect ACL to restrict the ability of... ISC BIND 9.7.2 through 9.7.2-P1 uses an incorrect ACL to restrict the ability of Recursion Desired (RD) queries to access the cache, which allows remote attackers to obtain potentially sensitive information via a DNS query. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2010-0213 [LOW] CVE-2010-0213: bind9 - BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor t... BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor that is configured statically or via DNSSEC Lookaside Validation (DLV), allows remote attackers to cause a denial of service (infinite loop) via a query for an RRSIG record whose answer is not in the cache, which causes BIND to repeatedly send RRSIG queries to the authoritative servers. Scope:

CVE-2009-0696 [MEDIUM] CVE-2009-0696: bind9 - The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P... The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message. Scope: local bookworm: resolved (

CVE-2009-4022 [LOW] CVE-2009-4022: bind9 - Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, ... Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section wit

CVE-2009-0265 [MEDIUM] CVE-2009-0265: bind9 - Internet Systems Consortium (ISC) BIND 9.6.0 and earlier does not properly check... Internet Systems Consortium (ISC) BIND 9.6.0 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077 and CVE-2009-0025. Scope: local bookworm: resolved bullseye: resolved forky:

CVE-2009-0025 [MEDIUM] CVE-2009-0025: bind9 - BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return ... BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. Scope: local bookworm: resolved (fixed in 1:9.5.1.dfsg.P1-1) bullseye: resolved (fixed in 1:9

CVE-2008-4163 [HIGH] CVE-2008-4163: bind9 - Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 ... Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows remote attackers to cause a denial of service (UDP client handler termination) via unknown vectors. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2008-1447 [MEDIUM] CVE-2008-1447: adns - The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, ... The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to i

CVE-2008-0122 [CRITICAL] CVE-2008-0122: bind9 - Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and e... Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption. Scope: local bookworm: resolved bullseye: resolved forky: resolved

CVE-2007-0494 [MEDIUM] CVE-2007-0494: bind9 - ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0... ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (exit) via a type * (ANY) DNS query response that contains multiple RRsets, which triggers an assertion error, aka the "DNSSEC Validation" vulnerability. Scope: local boo

CVE-2007-2926 [MEDIUM] CVE-2007-2926: bind9 - ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation... ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning. Scope: local bookworm: resolved (fixed in 1:9.4.1-P1-1) bullseye: resolved (fixed in

CVE-2007-2241 [HIGH] CVE-2007-2241: bind9 - Unspecified vulnerability in query.c in ISC BIND 9.4.0, and 9.5.0a1 through 9.5.... Unspecified vulnerability in query.c in ISC BIND 9.4.0, and 9.5.0a1 through 9.5.0a3, when recursion is enabled, allows remote attackers to cause a denial of service (daemon exit) via a sequence of queries processed by the query_addsoa function. Scope: local bookworm: resolved (fixed in 1:9.4.1-1) bullseye: resolved (fixed in 1:9.4.1-1) forky: resolved (fixed in 1:9.4.1-

CVE-2007-0493 [HIGH] CVE-2007-0493: bind9 - Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a... Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context." Scope: local bookworm: resolved (fixed in 1:9.3.4-2) bullseye: resolved

CVE-2007-2925 [MEDIUM] CVE-2007-2925: bind9 - The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 thr... The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache. Scope: local bookworm: resolved (fixed in 1:9.4.1-P1-1) bullseye: resolved (fixed in 1:9.4.1-P1-1) forky: resolved (fixed in 1:9.4.1-P1-1) si

CVE-2007-6283 [MEDIUM] CVE-2007-6283: bind9 - Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with w... Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping named. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2006-4096 [MEDIUM] CVE-2006-4096: bind9 - BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause ... BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty. Scope: local bookworm: resolved (fixed in 1:9.3.2-P1-1) bullseye: resolved (fixed in 1:9.3.2-P1-1) forky: resolved (fixed in 1:9.3.2

CVE-2006-4095 [HIGH] CVE-2006-4095: bind9 - BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause ... BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned. Scope: local bookworm: resolved (fixed in 1:9.3.2-P1-1) bullseye: resolved (fixed in 1:9.3.2-P1-1) forky: resolved (fixed in 1:9.3.2-P1-1) sid: resolved (fixed in 1:9.3.2-

CVE-2006-2073 [MEDIUM] CVE-2006-2073: bind9 - Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial ... Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite. Scope: local bookworm: resolved (fixed in 1:9.3.3-1) bullseye: resolved (fixed in 1:9.3.3-1) forky: resolved (fixed in 1:9.3.3-1) sid: resolved (fixed in 1:9.3.3-1) trixie: resolv

CVE-2006-0987 [MEDIUM] CVE-2006-0987: bind9 - The default configuration of ISC BIND before 9.4.1-P1, when configured as a cach... The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses. Scope: local bookworm: resolved (fixed in

CVE-2005-0034 [MEDIUM] CVE-2005-0034: bind9 - An "incorrect assumption" in the authvalidated validator function in BIND 9.3.0,... An "incorrect assumption" in the authvalidated validator function in BIND 9.3.0, when DNSSEC is enabled, allows remote attackers to cause a denial of service (named server exit) via crafted DNS packets that cause an internal consistency test (self-check) to fail. Scope: local bookworm: resolved (fixed in 1:9.3.1) bullseye: resolved (fixed in 1:9.3.1) forky: resolved (