ISC BIND 9.5.2 release candidate 1
Approved changes feed: RSS · Atom
cpe:2.3:a:isc:bind:9.5.2:rc1:*:*:*:*:*:*
part: a version: 9.5.2 update: rc1
| Vendor | Isc (4a2f2b37-98b6-5702-822d-72afcd17d050) |
|---|---|
| Product | Bind (ea404969-e27c-5a4f-ab6f-da9eff8fdf08) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/isc-projects/bind9 |
purl2cpe | 2026-06-01 10:15:11.034243 |
pkg:gitlab/isc-projects/bind9 |
purl2cpe | 2026-06-01 10:15:11.034244 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2016-9444 |
vulnerable | 2026-06-03 14:36:16.660701 |
Details available
named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DS resource record in an answer.
Published: 2017-01-12T06:06:00.000Z
Updated: 2024-08-06T02:50:38.365Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-2848 |
vulnerable | 2026-06-03 14:35:44.148517 |
Details available
ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record.
Published: 2016-10-21T10:00:00.000Z
Updated: 2024-08-05T23:32:21.181Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-8705 |
vulnerable | 2026-06-03 14:35:12.738874 |
Details available
buffer.c in named in ISC BIND 9.10.x before 9.10.3-P3, when debug logging is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit, or daemon crash) or possibly have unspecified other impact via (1) OPT data or (2) an ECS option.
Published: 2016-01-20T15:00:00.000Z
Updated: 2024-08-06T08:29:21.425Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-8704 |
vulnerable | 2026-06-03 14:35:12.728898 |
Details available
apl_42.c in ISC BIND 9.x before 9.9.8-P3, 9.9.x, and 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed Address Prefix List (APL) record.
Published: 2016-01-20T15:00:00.000Z
Updated: 2024-08-06T08:29:20.879Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-8461 |
vulnerable | 2026-06-03 14:35:12.002276 |
Details available
Race condition in resolver.c in named in ISC BIND 9.9.8 before 9.9.8-P2 and 9.10.3 before 9.10.3-P2 allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via unspecified vectors.
Published: 2015-12-16T15:00:00.000Z
Updated: 2024-08-06T08:20:41.759Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-8000 |
vulnerable | 2026-06-03 14:35:10.768089 |
Details available
db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.
Published: 2015-12-16T15:00:00.000Z
Updated: 2024-08-06T08:06:31.443Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-5166 |
vulnerable | 2026-06-03 14:32:27.868836 |
Details available
ISC BIND 9.x before 9.7.6-P4, 9.8.x before 9.8.3-P4, 9.9.x before 9.9.1-P4, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P4 allows remote attackers to cause a denial of service (named daemon hang) via unspecified combinations of resource records.
Published: 2012-10-10T21:00:00.000Z
Updated: 2024-08-06T20:58:03.101Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-4244 |
vulnerable | 2026-06-03 14:32:18.101958 |
Details available
ISC BIND 9.x before 9.7.6-P3, 9.8.x before 9.8.3-P3, 9.9.x before 9.9.1-P3, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P3 allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for a long resource record.
Published: 2012-09-14T00:00:00.000Z
Updated: 2024-08-06T20:28:07.596Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-3817 |
vulnerable | 2026-06-03 14:32:01.657811 |
Details available
ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x before 9.9.1-P2; and 9.6-ESV before 9.6-ESV-R7-P2, when DNSSEC validation is enabled, does not properly initialize the failing-query cache, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) by sending many queries.
Published: 2012-07-25T10:00:00.000Z
Updated: 2024-08-06T20:21:03.091Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-1667 |
vulnerable | 2026-06-03 14:31:44.034802 |
Details available
ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service (daemon crash or data corruption) or obtain sensitive information from process memory via a crafted record.
Published: 2012-06-05T16:00:00.000Z
Updated: 2024-08-06T19:01:02.980Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-4313 |
vulnerable | 2026-06-03 14:31:23.878781 |
Details available
query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause a denial of service (assertion failure and named exit) via unknown vectors related to recursive DNS queries, error logging, and the caching of an invalid record by the resolver.
Published: 2011-11-29T17:00:00.000Z
Updated: 2024-08-07T00:01:51.597Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-1910 |
vulnerable | 2026-06-03 14:31:04.495460 |
Details available
Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service (assertion failure and daemon exit) via a negative response containing large RRSIG RRsets.
Published: 2011-05-31T20:00:00.000Z
Updated: 2024-08-06T22:46:00.521Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-3614 |
vulnerable | 2026-06-03 14:30:32.355754 |
Details available
named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3 does not properly determine the security status of an NS RRset during a DNSKEY algorithm rollover, which might allow remote attackers to cause a denial of service (DNSSEC validation error) by triggering a rollover.
Published: 2010-12-03T20:00:00.000Z
Updated: 2024-08-07T03:18:52.898Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2009-4022 |
vulnerable | 2026-06-03 14:29:55.573707 |
Details available
Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438.
Published: 2009-11-25T16:00:00.000Z
Updated: 2024-08-07T06:45:50.986Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.