Vulnerabilities > ISC > Bind > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-01 | CVE-2019-6470 | There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. | 7.5 |
| 2019-10-30 | CVE-2018-5742 | Reachable Assertion vulnerability in ISC Bind 9.9.465/9.9.472 While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. | 7.5 |
| 2019-10-17 | CVE-2019-6476 | Reachable Assertion vulnerability in ISC Bind A defect in code added to support QNAME minimization can cause named to exit with an assertion failure if a forwarder returns a referral rather than resolving the query. | 7.5 |
| 2019-10-17 | CVE-2019-6475 | Insufficient Verification of Data Authenticity vulnerability in ISC Bind Mirror zones are a BIND feature allowing recursive servers to pre-cache zone data provided by other servers. | 7.5 |
| 2019-10-09 | CVE-2019-6469 | Reachable Assertion vulnerability in ISC Bind 9.10.5/9.11.6 An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit with an assertion failure when processing a response that has malformed RRSIGs. | 7.5 |
| 2019-10-09 | CVE-2019-6468 | Reachable Assertion vulnerability in ISC Bind 9.10.5/9.11.5 In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in versions which support EDNS Client Subnet (ECS) features. | 7.5 |
| 2019-10-09 | CVE-2019-6467 | Reachable Assertion vulnerability in ISC Bind A programming error in the nxdomain-redirect feature can cause an assertion failure in query.c if the alternate namespace used by nxdomain-redirect is a descendant of a zone that is served locally. | 7.5 |
| 2019-10-09 | CVE-2018-5744 | Missing Release of Resource after Effective Lifetime vulnerability in ISC Bind A failure to free memory can occur when processing messages having a specific combination of EDNS options. | 7.5 |
| 2019-10-09 | CVE-2018-5743 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products By design, BIND is intended to limit the number of TCP clients that can be connected at any given time. | 7.5 |
| 2019-01-16 | CVE-2018-5740 | Reachable Assertion vulnerability in multiple products "deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. | 7.5 |