Isc Bind vulnerabilities
195 known vulnerabilities affecting isc/bind.
Total CVEs
195
CISA KEV
0
Public exploits
16
Exploited in wild
4
Severity breakdown
CRITICAL9HIGH100MEDIUM80LOW6
Vulnerabilities
Page 7 of 10
CVE-2021-25220P3MEDIUMCVSS 6.8≥ 9.11.0, < 9.11.37≥ 9.11.4, < 9.11.37+9 more2022-03-23
CVE-2021-25220 [MEDIUM] CWE-444 CVE-2021-25220: BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1
BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with
nvd
CVE-2007-0493P3HIGHCVSS 7.8v9.3.0v9.3.1+3 more2007-01-25
CVE-2007-0493 [HIGH] CVE-2007-0493: Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4
Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context."
nvd
CVE-2016-9778P3MEDIUMCVSS 5.9v9.9.8v9.9.9+1 more2019-01-16
CVE-2016-9778 [MEDIUM] CWE-388 CVE-2016-9778: An error in handling certain queries can cause an assertion failure when a server is using the nxdom
An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was using a configuration that met the criteria for the vulnerability and if the attacker
nvd
CVE-2022-2881P3HIGHCVSS 8.2≥ 9.18.0, < 9.18.7≥ 9.19.0, < 9.19.52022-09-21
CVE-2022-2881 [HIGH] CWE-125 CVE-2022-2881: The underlying bug might cause read past end of the buffer and either read memory it should not read
The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the process.
nvd
CVE-2017-3140P3MEDIUMCVSS 5.9≥ 9.11.0, ≤ 9.11.1v9.9.10+1 more2019-01-16
CVE-2017-3140 [MEDIUM] CWE-400 CVE-2017-3140: If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can le
If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5, 9.11.0->9.11.1, 9.9.10-S1, 9.10.5-S1.
nvdosv
CVE-2022-0667P3HIGHCVSS 7.5v9.18.02022-03-22
CVE-2022-0667 [HIGH] CWE-617 CVE-2022-0667: When the vulnerability is triggered the BIND process will exit. BIND 9.18.0
When the vulnerability is triggered the BIND process will exit. BIND 9.18.0
nvd
CVE-2011-0414P4HIGHCVSS 7.1v9.7.1v9.7.22011-02-23
CVE-2011-0414 [HIGH] CWE-399 CVE-2011-0414: ISC BIND 9.7.1 through 9.7.2-P3, when configured as an authoritative server, allows remote attackers
ISC BIND 9.7.1 through 9.7.2-P3, when configured as an authoritative server, allows remote attackers to cause a denial of service (deadlock and daemon hang) by sending a query at the time of (1) an IXFR transfer or (2) a DDNS update.
nvd
CVE-2002-0651P4HIGHCVSS 7.5v9.4.02002-07-03
CVE-2002-0651 [HIGH] CVE-2002-0651: Buffer overflow in the DNS resolver code used in libc, glibc, and libbind, as derived from ISC BIND,
Buffer overflow in the DNS resolver code used in libc, glibc, and libbind, as derived from ISC BIND, allows remote malicious DNS servers to cause a denial of service and possibly execute arbitrary code via the stub resolvers.
nvd
CVE-2006-4095P4HIGHCVSS 7.5≤ 9.2.6≥ 9.3.0, ≤ 9.3.22006-09-06
CVE-2006-4095 [HIGH] CWE-617 CVE-2006-4095: BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.
nvd
CVE-2017-3138P3MEDIUMCVSS 5.3v9.9.9v9.9.10+4 more2019-01-16
CVE-2017-3138 [MEDIUM] CWE-617 CVE-2017-3138: named contains a feature which allows operators to issue commands to a running server by communicati
named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of named can be caused to exit with a REQUIRE assertion failure
nvd
CVE-2002-0029P3HIGHCVSS 7.5v4.9.2v4.9.3+7 more2002-11-29
CVE-2002-0029 [HIGH] CVE-2002-0029: Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derive
Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability t
nvd
CVE-2026-5947P3MEDIUMCVSS 5.9≥ 9.20.0, < 9.20.23≥ 9.21.0, < 9.21.222026-05-20
CVE-2026-5947 [MEDIUM] CWE-362 CVE-2026-5947: Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIN
Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. If, during that validation, the "recursive-clients" limit is reached (as would occur during a query flood), and that same DNS message is discarded per the li
nvd
CVE-2009-0265P4HIGHCVSS 7.5≤ 9.6.02009-01-26
CVE-2009-0265 [HIGH] CVE-2009-0265: Internet Systems Consortium (ISC) BIND 9.6.0 and earlier does not properly check the return value fr
Internet Systems Consortium (ISC) BIND 9.6.0 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077 and CVE-2009-0025.
nvd
CVE-2013-3919P3HIGHCVSS 7.8v9.6v9.8.5+1 more2013-06-06
CVE-2013-3919 [HIGH] CVE-2013-3919: resolver.c in ISC BIND 9.8.5 before 9.8.5-P1, 9.9.3 before 9.9.3-P1, and 9.6-ESV-R9 before 9.6-ESV-R
resolver.c in ISC BIND 9.8.5 before 9.8.5-P1, 9.9.3 before 9.9.3-P1, and 9.6-ESV-R9 before 9.6-ESV-R9-P1, when a recursive resolver is configured, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for a record in a malformed zone.
nvd
CVE-2012-5689P4HIGHCVSS 7.1v9.9.0v9.9.1+6 more2013-01-25
CVE-2012-5689 [HIGH] CWE-20 CVE-2012-5689: ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS6
ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for an AAAA record.
nvd
CVE-2026-3591P4MEDIUMCVSS 5.4≥ 9.20.0, < 9.20.21≥ 9.21.0, < 9.21.202026-03-25
CVE-2026-3591 [MEDIUM] CWE-305 CVE-2026-3591: A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with
A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with SIG(0). Using a specially-crafted DNS request, an attacker may be able to cause an ACL to improperly (mis)match an IP address. In a default-allow ACL (denying only specific IP addresses), this may lead to unauthorized access. Default-deny ACLs should fai
nvdosv
CVE-2026-5950P4MEDIUMCVSS 5.3≥ 9.18.36, < 9.18.49≥ 9.20.8, < 9.20.23+1 more2026-05-20
CVE-2026-5950 [MEDIUM] CWE-606 CVE-2026-5950: An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server
An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cause severe resource exhaustion by sending queries that trigger specific retry conditions.
This issue affects BIND 9 versions 9.18.36 through 9.18.48, 9.20.8 through 9.20.22, 9.21.7 through 9.21.
nvd
CVE-2011-2464P4MEDIUMCVSS 5.0v9.6v9.6.0+10 more2011-07-08
CVE-2011-2464 [MEDIUM] CVE-2011-2464: Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x
Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service (named daemon crash) via a crafted UPDATE request.
nvd
CVE-2011-1910P4MEDIUMCVSS 5.0v9.0v9.0.0+45 more2011-05-31
CVE-2011-1910 [MEDIUM] CWE-189 CVE-2011-1910: Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4
Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service (assertion failure and daemon exit) via a negative response containing large RRSIG RRsets.
nvd
CVE-2008-4163P4HIGHCVSS 7.8v9.3.5v9.4.2+1 more2008-09-22
CVE-2008-4163 [HIGH] CWE-20 CVE-2008-4163: Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows re
Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows remote attackers to cause a denial of service (UDP client handler termination) via unknown vectors.
nvd