Knowledge Base ISC Main Website Ask a Question/Contact ISC
Quick Jump Menu
1 BIND 9 Security Vulnerability Matrix Featured

The BIND 9 Security Vulnerability Matrix is a tool to help DNS operators understand the current security risk for a given version of BIND. It has two parts: The first part is a table listing all of the vulnerabilities covered by this page. The first column…

2 CVE-2014-0591: FAQ and Supplemental Information

This page provides supplemental information for the CVE-2014-0591 Security Advisory (CVE-2014-0591: A Crafted Query Against an NSEC3-signed Zone Can Crash BIND.) What causes this vulnerability? One of our developers writes: "The bug (which causes an INSIST…

3 CVE-2014-0591: A Crafted Query Against an NSEC3-signed Zone Can Crash BIND

An unintentional defect in the handling of NSEC3-signed zones can cause BIND to be crashed by a specific set of queries. CVE: CVE-2014-0591 Document Version: 2.0 Posting date: 13 Jan 2014 Program Impacted: BIND Versions affected: 9.6.0.x -> 9.6-ESV-R10-P1,…

4 CVE-2013-6230: A Winsock API Bug Can Cause a Side-Effect Affecting BIND ACLs

A Winsock library call on some Windows systems can return an incorrect value for an interface's netmask, potentially causing unexpected matches to BIND's built-in "localnets" Access Control List. CVE: CVE-2013-6230 Document Version: 2.0 Posting date: 06 November…

5 CVE-2013-6230: FAQ and Supplemental Information

This page provides supplemental information for the CVE-2013-6230 Security Advisory (https://kb.isc.org/article/AA-01062). Why aren't the Windows versions listed? At this time, we don't know which Microsoft Windows operating system versions or service pack…

6 CVE-2013-4854: A specially crafted query can cause BIND to terminate abnormally

A specially crafted query sent to a BIND nameserver can cause it to crash (terminate abnormally). CVE: CVE-2013-4854 Document Version: 2.0 Posting date: 26 July 2013 Program Impacted: BIND Versions affected: Open source: 9.7.0->9.7.7, 9.8.0->9.8.5-P1,…

7 CVE-2013-4854: FAQ and Supplemental Information

About This Document For up to date information on this vulnerability, patches, and other operational information, please see the official vulnerability announcement. This article is intended to supplement the information in that announcement and will be updated…

8 CVE-2013-3919: FAQ and Supplemental Information

About This Document For up to date information on this vulnerability, patches, and other operational information, please see the official vulnerability announcement. This article is intended to supplement the information in that announcement and will be updated…

9 CVE-2013-3919: A recursive resolver can be crashed by a query for a malformed zone

A defect exists which allows an attacker to crash a BIND 9 recursive resolver with a RUNTIME_CHECK error in resolver.c CVE: CVE-2013-3919 Document Version: 1.1 Posting date: 04 Jun 2013 Program Impacted: BIND 9 Versions affected: BIND 9.6-ESV-R9, 9.8.5, and…

10 CVE-2013-2266: FAQ and Supplemental Information

About This Document For up to date information on this vulnerability, patches, and other operational information, please see the official vulnerability announcement. This article is intended to supplement the information in that announcement and will be updated…

1 2 3 Next