VDB
DEBIAN-CVE-2020-8621
DEBIAN-CVE-2020-8621
PUBLISHED
CVSS 7.5 HIGH
In BIND 9.14.0 -> 9.16.5, 9.17.0 -> 9.17.3, If a server is configured with both QNAME minimization and 'forward first' then an attacker who can send queries to it may be able to trigger the condition that will cause the server to crash. Servers that 'forward only' are not affected.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | bind9 | 0, 0, 0 |
| Debian:13 | bind9 | 0, 0, 0 |
| Debian:14 | bind9 | 0, 0, 0 |
| Debian:12 | bind9 | 0, 0, 0 |
Timeline
- Aug 21, 2020 CVE Published
- Apr 28, 2026 CVE Updated