CNNVD-202510-2827 Information

CNNVD ID

CNNVD-202510-2827

Related CVE

CVE-2025-8677

• CNNVD Published: 2025-10-22

Description (Chinese)

ISC BIND 9是ISC组织的一个域名系统软件。 ISC BIND 9 9.18.0版本至9.18.39版本、9.20.0版本至9.20.13版本、9.21.0版本至9.21.12版本、9.18.11-S1版本至9.18.39-S1版本和9.20.9-S1版本至9.20.13-S1版本存在安全漏洞，该漏洞源于处理特制区域中畸形DNSKEY记录时资源消耗不当，可能导致CPU耗尽。

Description (English)

ISC BIND 9 is an ISC-organized domain name system software. ISC BIND 9.9.18.0 to 9.18.39, 9.2.0 to 9.20.13, 9.21.0 to 9.21.12, 9.18.11-S1 to 9.18.39-S1 and 9.20.9-S1 to 9.20.13-S1 have security gaps that stem from inappropriate resource consumption at the time of processing DNSKEY records in specially created areas, which may lead to the depletion of CPUs.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

ISC

Published

2025-10-22

Last Modified

2026-02-24

References

https://kb.isc.org/docs/cve-2025-8677

Patch

https://www.isc.org/bind/