Home

CVE-2021-25219

Description

In BIND 9.3.0 -> 9.11.35, 9.12.0 -> 9.16.21, and versions 9.9.3-S1 -> 9.11.35-S1 and 9.16.8-S1 -> 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response processing can cause degradation in BIND resolver performance. The way the lame cache is currently designed makes it possible for its internal data structures to grow almost infinitely, which may cause significant delays in client query processing.

Risk Information

Base Score
5.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score
Exploitation Probability
0.706

Associated Vulnerability

VulnerabilityOS Platform
Vulnerability CVE-2021-25219 are affected in BIND 9.17.18Windows
Multiple Vulnerabilities are affected in BIND 9.10.5.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.5.s5Windows
Multiple Vulnerabilities are affected in BIND 9.11.6.s1Windows
Multiple Vulnerabilities are affected in BIND 9.10.7.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.12.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.21.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.27.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.29.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.3.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.5.s3Windows
Multiple Vulnerabilities are affected in BIND 9.11.5.s6Windows
Multiple Vulnerabilities are affected in BIND 9.11.7.s1Windows
Multiple Vulnerabilities are affected in BIND 9.11.8.s1Windows
Multiple Vulnerabilities are affected in BIND 9.16.11.s1Windows
Multiple Vulnerabilities are affected in BIND 9.16.13.s1Windows
Multiple Vulnerabilities are affected in BIND 9.16.8.s1Windows
Multiple Vulnerabilities are affected in BIND 9.9.12.s1Windows
Multiple Vulnerabilities are affected in BIND 9.9.13.s1Windows
Multiple Vulnerabilities are affected in BIND 9.9.3.s1Windows
Vulnerabilities CVE-2021-25219 are affected in BIND 9.11.35Windows
Multiple Vulnerabilities are affected in BIND 9.11.35.s1Windows
Vulnerabilities CVE-2021-25219 are affected in BIND 9.16.21Windows
Multiple Vulnerabilities are affected in BIND 9.16.21.s1Windows
Vulnerabilities CVE-2021-25219 are affected in BIND 9.17.18Windows
bind9 security update(DSA-4994-1) bind9_9.16.22-1~deb11u1_amd64.debLinux
bind9 security update(DSA-4994-1) bind9_9.11.5.P4+dfsg-5.1+deb10u6_i386.debLinux
bind9 security update(DSA-4994-1) bind9_9.11.5.P4+dfsg-5.1+deb10u6_amd64.debLinux
Internet Domain Name Server (USN-5126-1) bind9_9.16.1-0ubuntu2.9_i386.debLinux
Internet Domain Name Server (USN-5126-1) bind9_9.16.1-0ubuntu2.9_amd64.debLinux
Internet Domain Name Server (USN-5126-1) bind9_9.16.15-1ubuntu1.1_i386.debLinux
Internet Domain Name Server (USN-5126-1) bind9_9.16.15-1ubuntu1.1_amd64.debLinux
Internet Domain Name Server (USN-5126-1) bind9_9.11.3+dfsg-1ubuntu1.16_i386.debLinux
Internet Domain Name Server (USN-5126-1) bind9_9.11.3+dfsg-1ubuntu1.16_amd64.debLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) bind-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) bind-chrootenv-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) bind-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) bind-debugsource-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) bind-doc-9.11.22-3.37.1.noarch.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) bind-utils-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) bind-utils-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libbind9-161-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libbind9-161-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libdns1110-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libdns1110-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libirs161-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libirs161-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisc1107-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisc1107-32bit-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisc1107-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisc1107-debuginfo-32bit-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisccc161-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisccc161-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisccfg163-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) libisccfg163-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) liblwres161-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) liblwres161-debuginfo-9.11.22-3.37.1.x86_64.rpmLinux
SUSE-SU-2021:3657-1(SUSE Linux Enterprise Server 12-SP5 ) python-bind-9.11.22-3.37.1.noarch.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-chroot-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-debugsource-9.11.36-3.el8.i686.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-debugsource-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-devel-9.11.36-3.el8.i686.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-devel-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-export-devel-9.11.36-3.el8.i686.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-export-devel-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-libs-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-libs-lite-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-license-9.11.36-3.el8.noarch.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-lite-devel-9.11.36-3.el8.i686.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-lite-devel-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-pkcs11-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-pkcs11-devel-9.11.36-3.el8.i686.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-pkcs11-devel-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-pkcs11-libs-9.11.36-3.el8.i686.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-pkcs11-libs-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-pkcs11-utils-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-sdb-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-sdb-chroot-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update bind-utils-9.11.36-3.el8.x86_64.rpmLinux
(RHSA-2022:2092) bind security, bug fix, and enhancement update python3-bind-9.11.36-3.el8.noarch.rpmLinux
CVE-2021-25219NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234