{"id":"USN-8293-1","summary":"bind9 vulnerabilities","details":"Vitaly Simonovich discovered that Bind could exhaust memory during GSS-API\nTKEY negotiation. A remote attacker could possibly use this issue to cause\nBind to use excessive resources, leading to a denial of service.\n(CVE-2026-3039)\n\nShuhan Zhang discovered that Bind incorrectly handled self-pointed glue\nrecords. A remote attacker could possibly use this issue to use Bind in\ndenial of service amplification attacks against other systems.\n(CVE-2026-3592)\n\nNaresh Kandula Parmar discovered that Bind incorrectly handled memory in\nthe DNS-over-HTTPS implementation. A remote attacker could possibly use\nthis issue to cause Bind to crash, resulting in a denial of service, or\nexecute arbitrary code. This issue only affected Ubuntu 25.10 and Ubuntu\n26.04 LTS. (CVE-2026-3593)\n\nIt was discovered that Bind incorrectly handled DNS messages whose class\nwas not IN. A remote attacker could possibly use this issue to cause Bind\nto crash, resulting in a denial of service. (CVE-2026-5946)\n\nNaoki Wakamatsu discovered that Bind incorrectly handled SIG(0) validation\nduring a query flood. A remote attacker could possibly use this issue to\ncause Bind to crash, resulting in a denial of service. This issue only\naffected Ubuntu 25.10 and Ubuntu 26.04 LTS. (CVE-2026-5947)\n\nBilly Baraja discovered that Bind had an unbounded resend loop in the\nresolver. A remote attacker could possibly use this issue to cause Bind to\nuse excessive resources, leading to a denial of service. (CVE-2026-5950)","modified":"2026-05-25T08:00:41.402399517Z","published":"2026-05-21T19:11:14Z","related":["UBUNTU-CVE-2026-3039","UBUNTU-CVE-2026-3592","UBUNTU-CVE-2026-3593","UBUNTU-CVE-2026-5946","UBUNTU-CVE-2026-5947","UBUNTU-CVE-2026-5950"],"upstream":["UBUNTU-CVE-2026-3039","UBUNTU-CVE-2026-3592","UBUNTU-CVE-2026-3593","UBUNTU-CVE-2026-5946","UBUNTU-CVE-2026-5947","UBUNTU-CVE-2026-5950"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8293-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-3039"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-3592"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-3593"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-5946"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-5947"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-5950"}],"affected":[{"package":{"name":"bind9","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/bind9?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:9.18.39-0ubuntu0.22.04.4"}]}],"versions":["1:9.16.15-1ubuntu1","1:9.16.15-1ubuntu2","1:9.16.15-1ubuntu3","1:9.18.0-2ubuntu1","1:9.18.0-2ubuntu2","1:9.18.0-2ubuntu3","1:9.18.1-1ubuntu1","1:9.18.1-1ubuntu1.1","1:9.18.1-1ubuntu1.2","1:9.18.1-1ubuntu1.3","1:9.18.12-0ubuntu0.22.04.1","1:9.18.12-0ubuntu0.22.04.2","1:9.18.12-0ubuntu0.22.04.3","1:9.18.18-0ubuntu0.22.04.1","1:9.18.18-0ubuntu0.22.04.2","1:9.18.24-0ubuntu0.22.04.1","1:9.18.28-0ubuntu0.22.04.1","1:9.18.30-0ubuntu0.22.04.1","1:9.18.30-0ubuntu0.22.04.2","1:9.18.39-0ubuntu0.22.04.1","1:9.18.39-0ubuntu0.22.04.2","1:9.18.39-0ubuntu0.22.04.3"],"ecosystem_specific":{"binaries":[{"binary_version":"1:9.18.39-0ubuntu0.22.04.4","binary_name":"bind9"},{"binary_version":"1:9.18.39-0ubuntu0.22.04.4","binary_name":"bind9-dnsutils"},{"binary_version":"1:9.18.39-0ubuntu0.22.04.4","binary_name":"bind9-host"},{"binary_version":"1:9.18.39-0ubuntu0.22.04.4","binary_name":"bind9-libs"},{"binary_version":"1:9.18.39-0ubuntu0.22.04.4","binary_name":"bind9-utils"},{"binary_version":"1:9.18.39-0ubuntu0.22.04.4","binary_name":"bind9utils"},{"binary_version":"1:9.18.39-0ubuntu0.22.04.4","binary_name":"dnsutils"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8293-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3039"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3592"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5946"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5950"}],"ecosystem":"Ubuntu:22.04:LTS"}}},{"package":{"name":"bind9","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/bind9?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:9.18.39-0ubuntu0.24.04.5"}]}],"versions":["1:9.18.18-0ubuntu2","1:9.18.21-0ubuntu1","1:9.18.24-0ubuntu3","1:9.18.24-0ubuntu4","1:9.18.24-0ubuntu5","1:9.18.28-0ubuntu0.24.04.1","1:9.18.30-0ubuntu0.24.04.1","1:9.18.30-0ubuntu0.24.04.2","1:9.18.39-0ubuntu0.24.04.1","1:9.18.39-0ubuntu0.24.04.2","1:9.18.39-0ubuntu0.24.04.3"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1:9.18.39-0ubuntu0.24.04.5","binary_name":"bind9"},{"binary_version":"1:9.18.39-0ubuntu0.24.04.5","binary_name":"bind9-dnsutils"},{"binary_version":"1:9.18.39-0ubuntu0.24.04.5","binary_name":"bind9-host"},{"binary_version":"1:9.18.39-0ubuntu0.24.04.5","binary_name":"bind9-libs"},{"binary_version":"1:9.18.39-0ubuntu0.24.04.5","binary_name":"bind9-utils"},{"binary_version":"1:9.18.39-0ubuntu0.24.04.5","binary_name":"bind9utils"},{"binary_version":"1:9.18.39-0ubuntu0.24.04.5","binary_name":"dnsutils"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8293-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3039"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3592"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5946"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5950"}],"ecosystem":"Ubuntu:24.04:LTS"}}},{"package":{"name":"bind9","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/bind9?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:9.20.11-1ubuntu2.4"}]}],"versions":["1:9.20.4-3ubuntu1","1:9.20.4-3ubuntu2","1:9.20.4-3ubuntu3","1:9.20.9-2ubuntu1","1:9.20.10-1ubuntu1","1:9.20.11-1ubuntu1","1:9.20.11-1ubuntu2","1:9.20.11-1ubuntu2.1","1:9.20.11-1ubuntu2.2"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1:9.20.11-1ubuntu2.4","binary_name":"bind9"},{"binary_version":"1:9.20.11-1ubuntu2.4","binary_name":"bind9-dnsutils"},{"binary_version":"1:9.20.11-1ubuntu2.4","binary_name":"bind9-host"},{"binary_version":"1:9.20.11-1ubuntu2.4","binary_name":"bind9-libs"},{"binary_version":"1:9.20.11-1ubuntu2.4","binary_name":"bind9-utils"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8293-1.json","cves_map":{"ecosystem":"Ubuntu:25.10","cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3039"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3592"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3593"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5946"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5947"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5950"}]}}},{"package":{"name":"bind9","ecosystem":"Ubuntu:26.04:LTS","purl":"pkg:deb/ubuntu/bind9?arch=source&distro=resolute"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:9.20.18-1ubuntu2.1"}]}],"versions":["1:9.20.11-1ubuntu2","1:9.20.11-1ubuntu3","1:9.20.18-1ubuntu1","1:9.20.18-1ubuntu2"],"ecosystem_specific":{"binaries":[{"binary_version":"1:9.20.18-1ubuntu2.1","binary_name":"bind9"},{"binary_version":"1:9.20.18-1ubuntu2.1","binary_name":"bind9-dnsutils"},{"binary_version":"1:9.20.18-1ubuntu2.1","binary_name":"bind9-host"},{"binary_version":"1:9.20.18-1ubuntu2.1","binary_name":"bind9-libs"},{"binary_version":"1:9.20.18-1ubuntu2.1","binary_name":"bind9-utils"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8293-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3039"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3592"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-3593"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5946"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5947"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-5950"}],"ecosystem":"Ubuntu:26.04:LTS"}}}],"schema_version":"1.7.5"}