Msrc Cm1 Bind 9.16.15-1 On Cbl Mariner 1.0 vulnerabilities

4 known vulnerabilities affecting msrc/cm1_bind_9.16.15-1_on_cbl_mariner_1.0.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2021-25216CRITICALCVSS 9.82021-04-13
CVE-2021-25216 [HIGH] CWE-125 A second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack A second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitme
msrc
CVE-2021-25215HIGHCVSS 7.52021-04-13
CVE-2021-25215 [HIGH] CWE-617 An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azur
msrc
CVE-2021-25214MEDIUMCVSS 6.52021-04-13
CVE-2021-25214 [MEDIUM] CWE-617 A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rec
msrc
CVE-2019-6470HIGHCVSS 7.52019-11-12
CVE-2019-6470 [MEDIUM] dhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries dhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and m
msrc