CVE-2021-25219

In BIND 9.3.0 -> 9.11.35, 9.12.0 -> 9.16.21, and versions 9.9.3-S1 -> 9.11.35-S1 and 9.16.8-S1 -> 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response processing can cause degradation in BIND resolver performance. The way the lame cache is currently designed makes it possible for its internal data structures to grow almost infinitely, which may cause significant delays in client query processing.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
iscbind
9.3.0 ≤
𝑥
< 9.11.36
iscbind
9.12.0 ≤
𝑥
< 9.16.22
iscbind
9.17.0 ≤
𝑥
< 9.17.19
iscbind
9.9.3:s1
iscbind
9.9.12:s1
iscbind
9.9.13:s1
iscbind
9.10.5:s1
iscbind
9.10.7:s1
iscbind
9.11.3:s1
iscbind
9.11.5:s3
iscbind
9.11.5:s5
iscbind
9.11.5:s6
iscbind
9.11.6:s1
iscbind
9.11.7:s1
iscbind
9.11.8:s1
iscbind
9.11.12:s1
iscbind
9.11.21:s1
iscbind
9.11.27:s1
iscbind
9.11.29:s1
iscbind
9.11.35:s1
iscbind
9.16.8:s1
iscbind
9.16.11:s1
iscbind
9.16.13:s1
iscbind
9.16.21:s1
debiandebian_linux
9.0
debiandebian_linux
10.0
debiandebian_linux
11.0
netapph300s_firmware
-
netapph500s_firmware
-
netapph700s_firmware
-
netapph300e_firmware
-
netapph500e_firmware
-
netapph700e_firmware
-
netapph410s_firmware
-
netapph410c_firmware
-
netappcloud_backup
-
siemenssinec_infrastructure_network_services
𝑥
< 1.0.1.1
oraclehttp_server
12.2.1.3.0
oraclehttp_server
12.2.1.4.0
oraclezfs_storage_appliance_kit
8.8
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
bind9
bookworm
1:9.18.28-1~deb12u2
fixed
bookworm (security)
1:9.18.28-1~deb12u2
fixed
bullseye
1:9.16.50-1~deb11u2
fixed
bullseye (security)
1:9.16.50-1~deb11u1
fixed
sid
1:9.20.2-1
fixed
trixie
1:9.20.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bind9
bionic
Fixed 1:9.11.3+dfsg-1ubuntu1.16
released
focal
Fixed 1:9.16.1-0ubuntu2.9
released
hirsute
Fixed 1:9.16.8-1ubuntu3.2
released
impish
Fixed 1:9.16.15-1ubuntu1.1
released
jammy
Fixed 1:9.16.15-1ubuntu2
released
trusty
Fixed 1:9.9.5.dfsg-3ubuntu0.19+esm5
released
xenial
Fixed 1:9.10.3.dfsg.P4-8ubuntu1.19+esm1
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
bind
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP7
9.20.3-150700.1.6
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP7
9.20.3-150700.1.6
fixed
bind-chrootenv
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
bind-devel
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
bind-doc
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP7
9.20.3-150700.1.6
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP7
9.20.3-150700.1.6
fixed
bind-utils
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise desktop 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise desktop 15 SP6
9.18.24-150600.1.5
fixed
suse enterprise desktop 15 SP7
9.20.3-150700.1.6
fixed
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP6
9.18.24-150600.1.5
fixed
suse enterprise sap 15 SP7
9.20.3-150700.1.6
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP6
9.18.24-150600.1.5
fixed
suse enterprise server 15 SP7
9.20.3-150700.1.6
fixed
libbind9-1600
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
libbind9-161
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
libdns1110
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
libdns1605
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP7
9.16.6-150300.22.13.1
fixed
libirs-devel
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP7
9.16.6-150300.22.13.1
fixed
libirs1601
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP7
9.16.6-150300.22.13.1
fixed
libirs161
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
libisc1107
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
libisc1107-32bit
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
libisc1606
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP7
9.16.6-150300.22.13.1
fixed
libisccc1600
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
libisccc161
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
libisccfg1600
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP7
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP6
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP7
9.16.6-150300.22.13.1
fixed
libisccfg163
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
liblwres161
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
libns1604
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP5
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP5
9.16.6-150300.22.13.1
fixed
python-bind
suse enterprise sap 12 SP5
9.11.22-3.37.1
fixed
suse enterprise server 12 SP5
9.11.22-3.37.1
fixed
python3-bind
suse enterprise desktop 15 SP2
9.16.6-12.57.1
fixed
suse enterprise desktop 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise desktop 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise desktop 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP2
9.16.6-12.57.1
fixed
suse enterprise sap 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise sap 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise sap 15 SP5
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP2
9.16.6-12.57.1
fixed
suse enterprise server 15 SP3
9.16.6-150300.22.13.1
fixed
suse enterprise server 15 SP4
9.16.31-150400.5.6.1
fixed
suse enterprise server 15 SP5
9.16.31-150400.5.6.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
bind
RHEL 8
32:9.11.36-3.el8
fixed
bind-chroot
RHEL 8
32:9.11.36-3.el8
fixed
bind-devel
RHEL 8
32:9.11.36-3.el8
fixed
bind-export-devel
RHEL 8
32:9.11.36-3.el8
fixed
bind-export-libs
RHEL 8
32:9.11.36-3.el8
fixed
bind-libs
RHEL 8
32:9.11.36-3.el8
fixed
bind-libs-lite
RHEL 8
32:9.11.36-3.el8
fixed
bind-license
RHEL 8
32:9.11.36-3.el8
fixed
bind-lite-devel
RHEL 8
32:9.11.36-3.el8
fixed
bind-pkcs11
RHEL 8
32:9.11.36-3.el8
fixed
bind-pkcs11-devel
RHEL 8
32:9.11.36-3.el8
fixed
bind-pkcs11-libs
RHEL 8
32:9.11.36-3.el8
fixed
bind-pkcs11-utils
RHEL 8
32:9.11.36-3.el8
fixed
bind-sdb
RHEL 8
32:9.11.36-3.el8
fixed
bind-sdb-chroot
RHEL 8
32:9.11.36-3.el8
fixed
bind-utils
RHEL 8
32:9.11.36-3.el8
fixed
python3-bind
RHEL 8
32:9.11.36-3.el8
fixed
References
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
https://kb.isc.org/v1/docs/cve-2021-25219
https://lists.debian.org/debian-lts-announce/2021/11/msg00001.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EF4NAVRV4H3W4GA3LGGZYUKD3HSJBAVW/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YGV7SA27CTYLGFJSPUM3V36ZWK7WWDI4/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTKC4E3HUOLYN5IA4EBL4VAQSWG2ZVTX/
https://security.gentoo.org/glsa/202210-25
https://security.netapp.com/advisory/ntap-20211118-0002/
https://www.debian.org/security/2021/dsa-4994
https://www.oracle.com/security-alerts/cpuapr2022.html
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
https://kb.isc.org/v1/docs/cve-2021-25219
https://lists.debian.org/debian-lts-announce/2021/11/msg00001.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EF4NAVRV4H3W4GA3LGGZYUKD3HSJBAVW/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YGV7SA27CTYLGFJSPUM3V36ZWK7WWDI4/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTKC4E3HUOLYN5IA4EBL4VAQSWG2ZVTX/
https://security.gentoo.org/glsa/202210-25
https://security.netapp.com/advisory/ntap-20211118-0002/
https://www.debian.org/security/2021/dsa-4994
https://www.oracle.com/security-alerts/cpuapr2022.html