The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple versions of ISC’s Berkeley Internet Name Domain (BIND) 9. A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition.Â

CISA encourages users and administrators to review the following advisories and apply the necessary updates:Â

CVE-2024-4076: Assertion failure when serving both stale cache data and authoritative zone content
CVE-2024-1975: SIG(0) can be used to exhaust CPU resources
CVE-2024-1737: BIND’s database will be slow if a very large number of RRs exist at the same name
CVE-2024-0760: A flood of DNS messages over TCP may make the server unstable

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

CISA Releases Two Industrial Control Systems Advisories

April 23, 2024 0 Comments 0 tags

CISA released two Industrial Control Systems (ICS) advisories on April 23, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-051-03 Mitsubishi Electric Electrical

Read More

70% of CISOs Expect Cyber-Attacks in Next Year, Report Finds

May 21, 2024 0 Comments 0 tags

Proofpoint said the shift to remote and hybrid work has expanded the attack surface for many businesses

Read More

Robot Dog Internet Jammer

July 24, 2024 0 Comments 0 tags

Supposedly the DHS has these: The robot, called “NEO,” is a modified version of the “Quadruped Unmanned Ground Vehicle” (Q-UGV) sold to law enforcement by a company called Ghost Robotics.

Read More