High-Severity Flaws Uncovered in ISC BIND Server
Atlassian and the Internet Systems Consortium (ISC) have disclosed several security flaws impacting their products that could be exploited to achieve denial-of-service (DoS) and remote code execution.
The Australian software services provider said that the four high-severity flaws were fixed in new versions shipped last month. This includes -
The flaws have been addressed in the following versions -In a related development, ISC has released fixes for two high-severity bugs affecting the Berkeley Internet Name Domain ( BIND ) 9 Domain Name System (DNS) software suite that could pave the way for a DoS condition - The latest patches arrive three months after ISC rolled out fixes for three other flaws in the software (CVE-2023-2828, CVE-2023-2829, and CVE-2023-2911, CVSS scores: 7.5) that could result in a DoS condition.