Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cleaning an ECS-enabled cache may cause excessive CPU load
Vulnerability Description
If a resolver cache has a very large number of ECS records stored for the same name, the process of cleaning the cache database node for this name can significantly impair query performance. This issue affects BIND 9 versions 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
N/A
Vulnerability Title
ISC BIND 安全漏洞
Vulnerability Description
ISC BIND是美国ISC公司的一套实现了DNS协议的开源软件。 ISC BIND 9.11.3-S1 到 9.11.37-S1、9.16.8-S1 到 9.16.45-S1 以及 9.18.11-S1 到 9.18.21-S1版本存在安全漏洞,该漏洞源于如果解析器缓存存储了大量同名 ECS 记录,则清理该名称的缓存数据库节点可能会严重影响查询性能。
CVSS Information
N/A
Vulnerability Type
N/A