Msrc Azl3 Bind 9.19.21-1 On Azure Linux 3.0 vulnerabilities

CVE-2024-4076 [HIGH] CWE-617 Assertion failure when serving both stale cache data and authoritative zone content Assertion failure when serving both stale cache data and authoritative zone content FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most se

CVE-2024-1737 [HIGH] CWE-770 BIND's database will be slow if a very large number of RRs exist at the same name BIND's database will be slow if a very large number of RRs exist at the same name FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure

CVE-2024-1975 [HIGH] CWE-770 SIG(0) can be used to exhaust CPU resources SIG(0) can be used to exhaust CPU resources FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Mi

CVE-2024-0760 [HIGH] CWE-770 A flood of DNS messages over TCP may make the server unstable A flood of DNS messages over TCP may make the server unstable FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries w

CVE-2023-5679 [HIGH] Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rece

CVE-2023-5517 [HIGH] CWE-617 Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date wi

CVE-2023-6516 [HIGH] CWE-770 Specific recursive query patterns may lead to an out-of-memory condition Specific recursive query patterns may lead to an out-of-memory condition FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the o

CVE-2023-4408 [HIGH] Parsing large DNS messages may cause excessive CPU load Parsing large DNS messages may cause excessive CPU load FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro