Isc Bind9 vulnerabilities
128 known vulnerabilities affecting isc/bind9.
Total CVEs
128
CISA KEV
0
Public exploits
7
Exploited in wild
4
Severity breakdown
CRITICAL1HIGH73MEDIUM47LOW7
Vulnerabilities
Page 5 of 7
CVE-2015-8704P3MEDIUMCVSS 6.5≥ 0, < 1:9.10.3.dfsg.P4-62016-01-20
CVE-2015-8704 [MEDIUM] CVE-2015-8704: apl_42
apl_42.c in ISC BIND 9.x before 9.9.8-P3, 9.9.x, and 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed Address Prefix List (APL) record.
osv
CVE-2012-5688P3HIGHCVSS 7.8≥ 0, < 1:9.8.4.dfsg.P1-12012-12-06
CVE-2012-5688 [HIGH] CVE-2012-5688: ISC BIND 9
ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.
osv
CVE-2015-1349P3MEDIUMCVSS 5.4≥ 0, < 1:9.9.5.dfsg-92015-02-19
CVE-2015-1349 [MEDIUM] CVE-2015-1349: named in ISC BIND 9
named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use.
osv
CVE-2009-0025P3MEDIUMCVSS 5.8≥ 0, < 1:9.5.1.dfsg.P1-12009-01-07
CVE-2009-0025 [MEDIUM] CVE-2009-0025: BIND 9
BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.
osv
CVE-2022-0635P3HIGHCVSS 7.5≥ 0, < 1:9.18.1-12022-03-23
CVE-2022-0635 [HIGH] CVE-2022-0635: Versions affected: BIND 9
Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific queries, the named process will eventually terminate due to a failed assertion check.
osv
CVE-2021-25219P3MEDIUMCVSS 5.3vOpen Source Branches 9.3 through 9.11 9.3.0 through versions before 9.11.36vOpen Source Branches 9.12 through 9.16 9.12.0 through versions before 9.16.22+3 more2021-10-27
CVE-2021-25219 [MEDIUM] CVE-2021-25219: In BIND 9.3.0 -> 9.11.35, 9.12.0 -> 9.16.21, and versions 9.9.3-S1 -> 9.11.35-S1 and 9.16.8-S1 -> 9.
In BIND 9.3.0 -> 9.11.35, 9.12.0 -> 9.16.21, and versions 9.9.3-S1 -> 9.11.35-S1 and 9.16.8-S1 -> 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response processing can cause degradation in BIND resolver performance.
nvdosv
CVE-2022-38177P3HIGHCVSS 7.5vOpen Source Branches 9.8 through 9.16 9.8.4 through versions before 9.16.33vSupported Preview Branches 9.9-S through 9.11-S 9.9.4-S1 through versions up to and including 9.11.37-S1+1 more2022-09-21
CVE-2022-38177 [HIGH] CWE-401 CVE-2022-38177: By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker ca
By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.
nvdosv
CVE-2010-3614P3MEDIUMCVSS 6.4≥ 0, < 1:9.7.2.dfsg.P3-12010-12-06
CVE-2010-3614 [MEDIUM] CVE-2010-3614: named in ISC BIND 9
named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3 does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which might allow remote attackers to cause a denial of service (DNSSEC validation error) by triggering a rollover.
osv
CVE-2022-38178P3HIGHCVSS 7.5vOpen Source Branch 9.9 9.9.12 through versions up to and including 9.9.13vOpen Source Branch 9.10 9.10.7 through versions up to and including 9.10.8+5 more2022-09-21
CVE-2022-38178 [HIGH] CWE-401 CVE-2022-38178: By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker ca
By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.
nvdosv
CVE-2021-25220P3MEDIUMCVSS 6.8≥ 0, < 1:9.11.3+dfsg-1ubuntu1.17≥ 0, < 1:9.16.1-0ubuntu2.102022-03-17
CVE-2021-25220 [MEDIUM] bind9 vulnerabilities
bind9 vulnerabilities
Xiang Li, Baojun Liu, Chaoyi Lu, and Changgen Zou discovered that Bind
incorrectly handled certain bogus NS records when using forwarders. A
remote attacker could possibly use this issue to manipulate cache results.
(CVE-2021-25220)
It was discovered that Bind incorrectly handled certain crafted TCP
streams. A remote attacker could possibly use this issue to cause Bind to
consume resources, leading to a denial of service. This
osv
CVE-2018-5735P3HIGHCVSS 7.5≥ 0, < 1:9.9.3.dfsg.P2-12019-10-30
CVE-2018-5735 [HIGH] CVE-2018-5735: The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected. Other packages from other distributions who did similar backports for the fix for 2017-3137 may also be affected.
osv
CVE-2007-0493P3HIGHCVSS 7.8≥ 0, < 1:9.3.4-22007-01-25
CVE-2007-0493 [HIGH] CVE-2007-0493: Use-after-free vulnerability in ISC BIND 9
Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context."
osv
CVE-2022-2881P3HIGHCVSS 8.2vOpen Source Branch 9.18 9.18.0 through versions before 9.18.7vDevelopment Branch 9.19 9.19.0 through versions before 9.19.52022-09-21
CVE-2022-2881 [HIGH] CWE-125 CVE-2022-2881: The underlying bug might cause read past end of the buffer and either read memory it should not read
The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the process.
nvdosv
CVE-2022-0667P3HIGHCVSS 7.5≥ 0, < 1:9.18.1-12022-03-22
CVE-2022-0667 [HIGH] CVE-2022-0667: When the vulnerability is triggered the BIND process will exit
When the vulnerability is triggered the BIND process will exit. BIND 9.18.0
osv
CVE-2011-0414P4HIGHCVSS 7.1≥ 0, < 1:9.7.3.dfsg-12011-02-23
CVE-2011-0414 [HIGH] CVE-2011-0414: ISC BIND 9
ISC BIND 9.7.1 through 9.7.2-P3, when configured as an authoritative server, allows remote attackers to cause a denial of service (deadlock and daemon hang) by sending a query at the time of (1) an IXFR transfer or (2) a DDNS update.
osv
CVE-2006-4095P4HIGHCVSS 7.5≥ 0, < 1:9.3.2-P1-12006-09-06
CVE-2006-4095 [HIGH] CVE-2006-4095: BIND before 9
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.
osv
CVE-2017-3138P3MEDIUMCVSS 5.3≥ 0, < 1:9.10.3.dfsg.P4-12.32019-01-16
CVE-2017-3138 [MEDIUM] CVE-2017-3138: named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel,
named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of named can be cause
osv
CVE-2012-5689P4HIGHCVSS 7.1≥ 0, < 1:9.8.4.dfsg.P1-6+nmu12013-01-25
CVE-2012-5689 [HIGH] CVE-2012-5689: ISC BIND 9
ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for an AAAA record.
osv
CVE-2026-3591P4MEDIUMCVSS 5.4≥ 0, < 1:9.20.21-1~deb13u1≥ 0, < 1:9.20.21-12026-03-25
CVE-2026-3591 [MEDIUM] CVE-2026-3591: A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with SIG(0)
A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with SIG(0). Using a specially-crafted DNS request, an attacker may be able to cause an ACL to improperly (mis)match an IP address. In a default-allow ACL (denying only specific IP addresses), this may lead to unauthorized access. Default-deny ACLs should fail
osv
CVE-2011-2464P4MEDIUMCVSS 5.0≥ 0, < 1:9.8.1.dfsg-12011-07-08
CVE-2011-2464 [MEDIUM] CVE-2011-2464: Unspecified vulnerability in ISC BIND 9 9
Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request.
osv