cbcvebase.

Isc Bind vulnerabilities

195 known vulnerabilities affecting isc/bind.

Total CVEs
195
CISA KEV
0
Public exploits
16
Exploited in wild
4
Severity breakdown
CRITICAL9HIGH100MEDIUM80LOW6

Vulnerabilities

Page 4 of 10
CVE-2019-6467P3HIGHCVSS 7.5≥ 9.12.0, ≤ 9.12.4≥ 9.13.0, ≤ 9.13.7+1 more2019-10-09
CVE-2019-6467 [HIGH] CWE-617 CVE-2019-6467: A programming error in the nxdomain-redirect feature can cause an assertion failure in query.c if th A programming error in the nxdomain-redirect feature can cause an assertion failure in query.c if the alternate namespace used by nxdomain-redirect is a descendant of a zone that is served locally. The most likely scenario where this might occur is if the server, in addition to performing NXDOMAIN redirection for recursive clients, is also serving a loc
nvdosv
CVE-2007-2930P4MEDIUMCVSS 4.3PoC≤ 8.4.72007-09-12
CVE-2007-2930 [MEDIUM] CVE-2007-2930: The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 genera The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.
nvd
CVE-2023-2828P3HIGHCVSS 7.5≥ 9.11.0, ≤ 9.16.41≥ 9.11.3, ≤ 9.16.41+3 more2023-06-21
CVE-2023-2828 [HIGH] CWE-770 CVE-2023-2828: Every `named` instance configured to run as a recursive resolver maintains a cache database holding Every `named` instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the `max-cache-size` statement in the configuration file; it defaults to 90% of the total amount of memory available
nvd
CVE-2017-3137P3HIGHCVSS 7.5v9.9.9v9.9.10+4 more2019-01-16
CVE-2017-3137 [HIGH] CWE-617 CVE-2017-3137: Mistaken assumptions about the ordering of records in the answer section of a response containing CN Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records could lead to a situation in which named would exit with an assertion failure when processing a response in which records occurred in an unusual order. Affects BIND 9.9.9-P6, 9.9.10b1->9.9.10rc1, 9.10.4-P6, 9.10.5b1->9.10.5rc
nvd
CVE-2024-1975P3HIGHCVSS 7.5≥ 0, < 9.18.31-r0≥ 0, < 9.18.28-r02024-07-23
CVE-2024-1975 [HIGH] CVE-2024-1975: If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a "KEY" Resource Record from a DNSSEC-signed domain in cac If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a "KEY" Resource Record from a DNSSEC-signed domain in cache, a client can exhaust resolver CPU resources by sending a stream of SIG(0) signed requests. This issue affects BIND 9 versions 9.0.0 through 9.11.37, 9.16.0 thr
osv
CVE-2015-8000P3MEDIUMCVSS 5.0v8.4.7v9.0+62 more2015-12-16
CVE-2015-8000 [MEDIUM] CWE-20 CVE-2015-8000: db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.
nvd
CVE-2018-5737P3HIGHCVSS 7.5v9.12.0v9.12.12019-01-16
CVE-2018-5737 [HIGH] CWE-617 CVE-2018-5737: A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an asserti A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some cases cause undesirable behavior from named, such as a recursion loop or ex
nvdosv
CVE-2023-2911P3HIGHCVSS 7.5≥ 9.16.33, ≤ 9.16.41≥ 9.18.7, ≤ 9.18.15+1 more2023-06-21
CVE-2023-2911 [HIGH] CWE-787 CVE-2023-2911: If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer- If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a sequence of serve-stale-related lookups could cause `named` to loop and terminate unexpectedly due to a stack overflow. This issue affects BIND 9 versions 9.16.33 through 9.16.41, 9.18.7 through 9.18.15
nvdosv
CVE-2024-1737P3HIGHCVSS 7.5≥ 0, < 9.18.31-r0≥ 0, < 9.18.28-r02024-07-23
CVE-2024-1737 [HIGH] CVE-2024-1737: Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded pe Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name. This issue affects BIND 9 versions 9.11.0 through 9.11.37, 9.1
osv
CVE-2024-4076P3HIGHCVSS 7.5≥ 0, < 9.18.31-r0≥ 0, < 9.18.28-r02024-07-23
CVE-2024-4076 [HIGH] CVE-2024-4076: Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure. This issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1 through 9.11.37-S1, 9.16.13-S1 through 9.16.50-S1, and
osv
CVE-2019-6475P3HIGHCVSS 7.5≥ 9.14.0, ≤ 9.14.6≥ 9.15.0, ≤ 9.15.42019-10-17
CVE-2019-6475 [HIGH] CWE-345 CVE-2019-6475: Mirror zones are a BIND feature allowing recursive servers to pre-cache zone data provided by other Mirror zones are a BIND feature allowing recursive servers to pre-cache zone data provided by other servers. A mirror zone is similar to a zone of type secondary, except that its data is subject to DNSSEC validation before being used in answers, as if it had been looked up via traditional recursion, and when mirror zone data cannot be validated, BIND fal
nvdosv
CVE-2026-3104P3HIGHCVSS 7.5≥ 9.20.0, < 9.20.21≥ 9.21.0, < 9.21.202026-03-25
CVE-2026-3104 [HIGH] CWE-772 CVE-2026-3104: A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through 9.20.20-S1. BIND 9 versions 9.18.0 through 9.18.46 and 9.18.11-S1 through 9.18.46-S1 are NOT affected.
nvdosv
CVE-2018-5734P3HIGHCVSS 7.5v9.10.5v9.10.62019-01-16
CVE-2018-5734 [HIGH] CWE-617 CVE-2018-5734: While handling a particular type of malformed packet BIND erroneously selects a SERVFAIL rcode inste While handling a particular type of malformed packet BIND erroneously selects a SERVFAIL rcode instead of a FORMERR rcode. If the receiving view has the SERVFAIL cache feature enabled, this can trigger an assertion failure in badcache.c when the request doesn't contain all of the expected information. Affects BIND 9.10.5-S1 to 9.10.5-S4, 9.10.6-S1, 9.10
nvd
CVE-2018-5744P3HIGHCVSS 7.5≥ 9.10.7, < 9.10.8≥ 9.11.3, < 9.11.5+6 more2019-10-09
CVE-2018-5744 [HIGH] CWE-772 CVE-2018-5744: A failure to free memory can occur when processing messages having a specific combination of EDNS op A failure to free memory can occur when processing messages having a specific combination of EDNS options. Versions affected are: BIND 9.10.7 -> 9.10.8-P1, 9.11.3 -> 9.11.5-P1, 9.12.0 -> 9.12.3-P1, and versions 9.10.7-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected.
nvd
CVE-2002-1220P4MEDIUMCVSS 5.0PoCv8.3.0v8.3.1+2 more2002-11-29
CVE-2002-1220 [MEDIUM] CVE-2002-1220: BIND 8.3.x through 8.3.3 allows remote attackers to cause a denial of service (termination due to as BIND 8.3.x through 8.3.3 allows remote attackers to cause a denial of service (termination due to assertion failure) via a request for a subdomain that does not exist, with an OPT resource record with a large UDP payload size.
nvd
CVE-2023-4236P3HIGHCVSS 7.5≥ 9.18.0, < 9.18.18v9.18.11+1 more2023-09-20
CVE-2023-4236 [HIGH] CWE-617 CVE-2023-4236: A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate unexpecte A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18 and 9.18.11-S1 through 9.18.18-S1.
nvdosv
CVE-2023-4408P3HIGHCVSS 7.5≥ 9.0.0, ≤ 9.16.45≥ 9.18.0, ≤ 9.18.21+14 more2024-02-13
CVE-2023-4408 [HIGH] CWE-407 CVE-2023-4408: The DNS message parsing code in `named` includes a section whose computational complexity is overly The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. This issue affects both authoritative servers and recursive resolvers. This i
nvdosv
CVE-2023-5517P3HIGHCVSS 7.5≥ 9.12.0, ≤ 9.16.45≥ 9.18.0, ≤ 9.18.21+14 more2024-02-13
CVE-2023-5517 [HIGH] CWE-617 CVE-2023-5517: A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure when: A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure when: - `nxdomain-redirect ;` is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. This issue affects BIND 9 versions 9.12.0 through 9.16.45, 9.18.0 through 9.18.21, 9.1
nvdosv
CVE-2015-5986P3HIGHCVSS 7.1≤ 9.9.7≤ 9.10.22015-09-05
CVE-2015-5986 [HIGH] CWE-20 CVE-2015-5986: openpgpkey_61.c in named in ISC BIND 9.9.7 before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote openpgpkey_61.c in named in ISC BIND 9.9.7 before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted DNS response.
nvd
CVE-2025-40777P3HIGHCVSS 7.5≥ 0, < 9.20.11-r02025-07-16
CVE-2025-40777 [HIGH] CVE-2025-40777: If a `named` caching resolver is configured with `serve-stale-enable` `yes`, and with `stale-answer-client-timeout` set to `0` (the only allowable val If a `named` caching resolver is configured with `serve-stale-enable` `yes`, and with `stale-answer-client-timeout` set to `0` (the only allowable value other than `disabled`), and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or autho
osv
Isc Bind vulnerabilities | cvebase