Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-8677

Опубликовано: 22 окт. 2025
Источник: ubuntu
Приоритет: medium
CVSS3: 7.5

Описание

Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.

РелизСтатусПримечание
devel

released

1:9.20.11-1ubuntu3
esm-infra-legacy/trusty

needs-triage

esm-infra/bionic

needed

esm-infra/focal

released

1:9.18.30-0ubuntu0.20.04.2+esm1
esm-infra/xenial

needs-triage

jammy

released

1:9.18.39-0ubuntu0.22.04.2
noble

released

1:9.18.39-0ubuntu0.24.04.2
plucky

released

1:9.20.11-0ubuntu0.2
questing

released

1:9.20.11-1ubuntu2.1
upstream

released

9.18.41,9.20.15,9.21.14

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra/focal

needs-triage

jammy

needs-triage

noble

DNE

plucky

DNE

questing

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

needs-triage

esm-apps/noble

needs-triage

esm-infra-legacy/trusty

not-affected

code not present
esm-infra/bionic

needs-triage

esm-infra/focal

not-affected

code not present
esm-infra/xenial

not-affected

code not present
jammy

not-affected

code not present
noble

needs-triage

plucky

needs-triage

questing

needs-triage

Показывать по

Ссылки на источники

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-8677

CVSS3: 7.5
nvd
около 2 месяцев назад

Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.

msrc логотип

CVE-2025-8677

CVSS3: 7.5
msrc
26 дней назад

Resource exhaustion via malformed DNSKEY handling

debian логотип

CVE-2025-8677

CVSS3: 7.5
debian
около 2 месяцев назад

Querying for records within a specially crafted zone containing certai ...

github логотип

GHSA-924g-f9mr-cm6x

CVSS3: 7.5
github
около 2 месяцев назад

Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.

fstec логотип

BDU:2025-14392

CVSS3: 7.5
fstec
2 месяца назад

Уязвимость DNS-сервера BIND, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

7.5 High

CVSS3