ISC Releases Security Advisories for BIND 9

The Internet Systems Consortium (ISC) has released security advisories to address vulnerabilities affecting ISC’s Berkeley Internet Name Domain (BIND) 9. A malicious cyber actor could exploit these vulnerabilities to cause denial-of-service conditions.

CISA encourages users and administrators to review the following ISC advisories and apply necessary updates or workarounds:

CVE-2023-4236: named may terminate unexpectedly under high DNS-over-TLS query load
CVE-2023-3341: A stack exhaustion flaw in control channel code may cause named to terminate unexpectedly

This product is provided subject to this Notification and this Privacy & Use policy.

ISC Releases Security Advisories for BIND 9

Please share your thoughts

CISA and Partners Release Fact Sheet on Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

CERT/CC Reports R Programming Language Vulnerability

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Adds One Known Exploited Vulnerability to Catalog

ISC Releases Security Advisories for BIND 9

Please share your thoughts

Related Advisories

CISA and Partners Release Fact Sheet on Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

CERT/CC Reports R Programming Language Vulnerability

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Adds One Known Exploited Vulnerability to Catalog