Categories: US-Cert-Repository

ISC Releases Security Advisories for BIND 9


The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple versions of ISC’s Berkeley Internet Name Domain (BIND) 9. A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition. 

CISA encourages users and administrators to review the following advisories and apply the necessary updates: 

  • CVE-2024-4076: Assertion failure when serving both stale cache data and authoritative zone content
  • CVE-2024-1975: SIG(0) can be used to exhaust CPU resources
  • CVE-2024-1737: BIND’s database will be slow if a very large number of RRs exist at the same name
  • CVE-2024-0760: A flood of DNS messages over TCP may make the server unstable



Source link

admin

Leave a Comment
Share
Published by
admin
1 year ago

Recent Posts

CISA Releases Two Industrial Control Systems Advisories

CISA released two Industrial Control Systems (ICS) advisories on October 7, 2025. These advisories provide…

7 hours ago

CISA Adds Seven Known Exploited Vulnerabilities to Catalog

CISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence…

1 day ago

CISA and UK NCSC Release Joint Guidance for Securing OT Systems

CISA, in collaboration with the Federal Bureau of Investigation, the United Kingdom’s National Cyber Security…

3 days ago

CISA Releases Two Industrial Control Systems Advisories

CISA released two Industrial Control Systems (ICS) advisories on October 2, 2025. These advisories provide…

4 days ago

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence…

5 days ago

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence…

6 days ago

This website uses cookies.