GCVE - cpe:2.3:a:isc:bind:*:p2:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:isc:bind:*:p2:*:*:*:*:*:*

part: a version: * update: p2

Vendor	Isc (`4a2f2b37-98b6-5702-822d-72afcd17d050`)
Product	Bind (`ea404969-e27c-5a4f-ab6f-da9eff8fdf08`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2015-5986`	vulnerable	2026-06-03 14:35:00.828822	Details available openpgpkey_61.c in named in ISC BIND 9.9.7 before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a crafted DNS response. Published: 2015-09-05T01:00:00.000Z Updated: 2024-08-06T07:06:35.031Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2015/Oct/msg00009.html https://kb.isc.org/article/AA-01438 http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165810.html https://support.apple.com/HT205376 https://kc.mcafee.com/corporate/index?page=content&id=SB10134	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-5722`	vulnerable	2026-06-03 14:35:00.521157	Details available buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone. Published: 2015-09-05T01:00:00.000Z Updated: 2024-08-06T06:59:04.288Z Open on db.gcve.eu Reference links http://www.ubuntu.com/usn/USN-2728-1 http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00002.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165996.html http://rhn.redhat.com/errata/RHSA-2015-1706.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-5477`	vulnerable	2026-06-03 14:34:59.806085	Details available named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via TKEY queries. Published: 2015-07-29T14:00:00.000Z Updated: 2024-08-06T06:50:02.071Z Open on db.gcve.eu Reference links http://packetstormsecurity.com/files/132926/BIND-TKEY-Query-Denial-Of-Service.html http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00050.html https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04789415 https://kb.juniper.net/JSA10783	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-3762`	vulnerable	2026-06-03 14:30:33.057339	Details available ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, which allows remote attackers to cause a denial of service (daemon crash) via a DNS query. Published: 2010-10-05T21:00:00.000Z Updated: 2024-08-07T03:18:53.032Z Open on db.gcve.eu Reference links http://www.mandriva.com/security/advisories?name=MDVSA-2010:253 http://lists.vmware.com/pipermail/security-announce/2011/000126.html http://www.vupen.com/english/advisories/2011/0606 http://www.securityfocus.com/archive/1/516909/100/0/threaded http://ftp.isc.org/isc/bind9/9.7.2-P2/RELEASE-NOTES-BIND-9.7.2-P2.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.