The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

The following packages have been upgraded to a later upstream version: bind (9.11.36). (BZ#2013993)

Security Fix(es):

bind: Lame cache can be abused to severely degrade resolver performance (CVE-2021-25219)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References

errata.almalinux.org/8/ALSA-2022-2092.html

vulners.com/cve/CVE-2021-25219

nessus 50

cloudlinux 2

mageia 1

openvas 44

nvd 1

suse 4

fedora 5

almalinux 1

cvelist 1

prion 1

f5 1

redhat 12

debiancve 1

ibm 5

debian 3

slackware 1

cisa 1

veracode 1

osv 6

altlinux 2

ubuntucve 1

redos 1

cbl_mariner 1

aix 1

redhatcve 1

oraclelinux 1

rocky 1

photon 6

cve 1

archlinux 1

alpinelinux 1

cnvd 1

ubuntu 2

rosalinux 1

gentoo 1

ics 1

oracle 1

nessus

Ubuntu 16.04 ESM : Bind vulnerability (USN-5126-2)

2021-10-29 00:00:00

SUSE SLED15 / SLES15 Security Update : bind (SUSE-SU-2021:3773-1)

2021-11-24 00:00:00

openSUSE 15 Security Update : bind (openSUSE-SU-2021:3773-1)

2021-11-24 00:00:00

cloudlinux

Fix of CVE: CVE-2021-25219

2021-11-16 13:53:11

Fix of CVE: CVE-2021-25219

2021-11-03 16:59:44

mageia

Updated bind packages fix security vulnerability

2021-12-19 15:26:08

openvas

Fedora: Security Advisory for bind-dyndb-ldap (FEDORA-2021-58e7b873b7)

2021-11-06 00:00:00

Debian: Security Advisory (DSA-4994-1)

2021-10-30 00:00:00

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2022-2486)

2022-10-10 00:00:00

nvd

CVE-2021-25219

2021-10-27 21:15:07

suse

Security update for bind (important)

2021-11-23 00:00:00

Security update for bind (important)

2021-11-24 00:00:00

Security update for bind (moderate)

2022-05-27 00:00:00

fedora

[SECURITY] Fedora 33 Update: bind-9.11.36-1.fc33

2021-11-11 01:22:46

[SECURITY] Fedora 34 Update: bind-dyndb-ldap-11.9-6.fc34

2021-11-10 08:17:09

[SECURITY] Fedora 35 Update: bind-dyndb-ldap-11.9-8.fc35

2021-11-04 01:48:10

almalinux

Moderate: bind security, bug fix, and enhancement update

2022-05-10 06:53:47

cvelist

CVE-2021-25219 Lame cache can be abused to severely degrade resolver performance

2021-10-27 00:00:00

prion

Design/Logic Flaw

2021-10-27 21:15:00

K77326807 : BIND vulnerability CVE-2021-25219

2021-11-08 00:00:00

redhat

(RHSA-2022:2092) Moderate: bind security, bug fix, and enhancement update

2022-05-10 06:53:47

(RHSA-2022:5188) Important: RHACS 3.69 security update

2022-06-24 19:39:26

(RHSA-2022:4690) Important: Red Hat OpenShift GitOps security update

2022-05-18 21:18:06

debiancve

CVE-2021-25219

2021-10-27 21:15:07

ibm

Security Bulletin: A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2021-25219)

2023-01-12 21:59:00

Security Bulletin: Vulnerability in Bind (CVE-2021-25219) affects Power HMC

2022-12-04 00:09:39

Security Bulletin: Vulnerability in BIND affects AIX (CVE-2021-25219)

2022-03-16 18:06:23

debian

[SECURITY] [DSA 4994-1] bind9 security update

2021-10-28 20:30:06

[SECURITY] [DSA 4994-1] bind9 security update

2021-10-28 20:30:06

[SECURITY] [DLA 2807-1] bind9 security update

2021-11-02 01:06:28

slackware

[slackware-security] bind

2021-10-28 01:13:50

cisa

ISC Releases Security Advisory for BIND

2021-10-28 00:00:00

veracode

Denial Of Service (DoS)

2021-11-04 03:26:12

osv

bind9 - security update

2021-10-28 00:00:00

CVE-2021-25219

2021-10-27 21:15:07

bind9 vulnerability

2021-10-28 10:52:18

altlinux

Security fix for the ALT Linux 10 package bind version 9.11.36-alt1

2021-11-08 00:00:00

Security fix for the ALT Linux 9 package bind version 9.11.36-alt1

2021-11-26 00:00:00

ubuntucve

CVE-2021-25219

2021-10-27 00:00:00

redos

ROS-20220209-01

2022-02-09 00:00:00

cbl_mariner

CVE-2021-25219 affecting package bind for versions less than 9.16.29-1

2022-06-26 03:29:38

aix

There is a vulnerability in BIND that affects AIX for VIOS.,There is a vulnerability in BIND that affects AIX.

2022-03-01 08:41:32

redhatcve

CVE-2021-25219

2021-10-28 05:00:53

oraclelinux

bind security, bug fix, and enhancement update

2022-05-17 00:00:00

rocky

bind security, bug fix, and enhancement update

2022-05-10 06:53:47

photon

Moderate Photon OS Security Update - PHSA-2021-0129

2021-11-14 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0412

2021-11-10 00:00:00

Moderate Photon OS Security Update - PHSA-2021-4.0-0129

2021-11-14 00:00:00

cve

CVE-2021-25219

2021-10-27 21:15:07

archlinux

[ASA-202110-12] bind: denial of service

2021-10-29 00:00:00

alpinelinux

CVE-2021-25219

2021-10-27 21:15:07

cnvd

ISC BIND Denial of Service Vulnerability (CNVD-2023-25100)

2021-10-31 00:00:00

ubuntu

Bind vulnerability

2021-10-28 00:00:00

Bind vulnerability

2021-10-28 00:00:00

rosalinux

Advisory ROSA-SA-2023-2245

2023-10-17 12:03:14

gentoo

ISC BIND: Multiple Vulnerabilities

2022-10-31 00:00:00

ics

Siemens SINEC INS

2022-03-10 12:00:00

oracle

Oracle Critical Patch Update Advisory - April 2022

2022-04-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.5%

JSON

Related for OSV:ALSA-2022:2092