[Git][security-tracker-team/security-tracker][master] Reference commits for bind9 issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Mar 26 20:23:42 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
84b31d3b by Salvatore Bonaccorso at 2026-03-26T21:23:08+01:00
Reference commits for bind9 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1315,17 +1315,28 @@ CVE-2024-51346 (An issue in Eufy Homebase 2 version 3.3.4.1h allows a local atta
CVE-2026-1519 (If a BIND resolver is performing DNSSEC validation and encounters a ma ...)
- bind9 1:9.20.21-1
NOTE: https://kb.isc.org/docs/cve-2026-1519
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/05c51d3a5aedf7cb56407c5df02f7ab6deaf5755 (v9.20.21)
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/cd1f2fed56d8e93ddd1e0b7b240cb61f6774dcfd (v9.20.21)
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/4ba3caff98f8d0ed585e6a30087202007e072ffb (v9.20.21)
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/1fb2c667fd3b38614687056244ba96200c31b59b (v9.20.21)
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/ef01ff31db4be0d737949fd785fa52c491041eb4 (v9.20.21)
CVE-2026-3104 (A specially crafted domain can be used to cause a memory leak in a BIN ...)
- bind9 1:9.20.21-1
NOTE: https://kb.isc.org/docs/cve-2026-3104
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/b858e25438e011b5526fe68fa2f2de5940a02d20 (v9.20.21)
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/5f15df5c53a445846083c46a9437910f8f6c3127 (v9.20.21)
CVE-2026-3119 (Under certain conditions, `named` may crash when processing a correctl ...)
- bind9 1:9.20.21-1
NOTE: https://kb.isc.org/docs/cve-2026-3119
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/527ec954563641c9922a4dd126096eef3e59f527 (v9.20.21)
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/163db61ebdae99894b83dbbb9bcea0485a3bc7ee (v9.20.21)
CVE-2026-3591 (A use-after-return vulnerability exists in the `named` server when han ...)
- bind9 1:9.20.21-1
[bookworm] - bind9 <not-affected> (Vulnerable code not present)
[bullseye] - bind9 <not-affected> (Vulnerable code not present)
NOTE: https://kb.isc.org/docs/cve-2026-3591
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/e85af603df437eddbe472d874742918688ec8f75 (v9.20.21)
+ NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/4a2048ea7f98b7ad9528463a045abc9d224a0f43 (v9.20.21)
CVE-2026-3608 (Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp- ...)
- isc-kea 3.0.3-1
NOTE: https://kb.isc.org/docs/cve-2026-3608
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/84b31d3b71dda8ef4b91f057c918ca3f471947a4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/84b31d3b71dda8ef4b91f057c918ca3f471947a4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260326/fe2aebfd/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list