4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
9 High
AI Score
Confidence
High
0.05 Low
EPSS
Percentile
92.9%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network.
Security Fix(es):
bind: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)
bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)
bind: Parsing large DNS messages may cause excessive CPU load (CVE-2023-4408)
bind: flooding with UPDATE requests may lead to DoS (CVE-2022-3094)
bind: processing large delegations may severely degrade resolver performance (CVE-2022-2795)
bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 8 | ppc64le | bind-libs-lite-debuginfo | < 9.11.36-3.el8_6.7 | bind-libs-lite-debuginfo-9.11.36-3.el8_6.7.ppc64le.rpm |
RedHat | 8 | ppc64le | bind-utils | < 9.11.36-3.el8_6.7 | bind-utils-9.11.36-3.el8_6.7.ppc64le.rpm |
RedHat | 8 | noarch | python3-bind | < 9.11.36-3.el8_6.7 | python3-bind-9.11.36-3.el8_6.7.noarch.rpm |
RedHat | 8 | aarch64 | bind-export-libs | < 9.11.36-3.el8_6.7 | bind-export-libs-9.11.36-3.el8_6.7.aarch64.rpm |
RedHat | 8 | x86_64 | bind-pkcs11-devel | < 9.11.36-3.el8_6.7 | bind-pkcs11-devel-9.11.36-3.el8_6.7.x86_64.rpm |
RedHat | 8 | aarch64 | dhcp-client-debuginfo | < 4.3.6-47.el8_6.2 | dhcp-client-debuginfo-4.3.6-47.el8_6.2.aarch64.rpm |
RedHat | 8 | s390x | dhcp-debuginfo | < 4.3.6-47.el8_6.2 | dhcp-debuginfo-4.3.6-47.el8_6.2.s390x.rpm |
RedHat | 8 | x86_64 | bind-debugsource | < 9.11.36-3.el8_6.7 | bind-debugsource-9.11.36-3.el8_6.7.x86_64.rpm |
RedHat | 8 | x86_64 | dhcp-libs-debuginfo | < 4.3.6-47.el8_6.2 | dhcp-libs-debuginfo-4.3.6-47.el8_6.2.x86_64.rpm |
RedHat | 8 | aarch64 | bind-sdb | < 9.11.36-3.el8_6.7 | bind-sdb-9.11.36-3.el8_6.7.aarch64.rpm |
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
9 High
AI Score
Confidence
High
0.05 Low
EPSS
Percentile
92.9%