Search

Security ID : QSA-22-10

Multiple Vulnerabilities in ISC BIND

  • Release date : April 19, 2022

  • CVE identifier : CVE-2022-0667 | CVE-2022-0635 | CVE-2022-0396 | CVE-2021-25220

  • Not affected products: QNAP products

Severity

None

Status

Not Affected

Summary

Internet Systems Consortium (ISC) recently disclosed multiple vulnerabilities in ISC BIND:

  • CVE-2022-0667: Assertion failure on delayed DS lookup
  • CVE-2022-0635: DNAME insist with synth-from-dnssec enabled
  • CVE-2022-0396: DoS from specifically crafted TCP packets
  • CVE-2021-25220: DNS forwarders - cache poisoning vulnerability

QNAP products are not affected.

Revision History: V1.0 (April 19, 2022) - Published

選擇規格

      顯示更多 隱藏更多

      選擇其他偏好的語言:

      back to top