vulnerability

Huawei EulerOS: CVE-2020-8619: bind security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:N/A:P)	Jun 17, 2020	Feb 8, 2021	Apr 1, 2026

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:P)

Published

Jun 17, 2020

Added

Feb 8, 2021

Modified

Apr 1, 2026

Description

In ISC BIND9 versions BIND 9.11.14 -> 9.11.19, BIND 9.14.9 -> 9.14.12, BIND 9.16.0 -> 9.16.3, BIND Supported Preview Edition 9.11.14-S1 -> 9.11.19-S1: Unless a nameserver is providing authoritative service for one or more zones and at least one zone contains an empty non-terminal entry containing an asterisk ("*") character, this defect cannot be encountered. A would-be attacker who is allowed to change zone content could theoretically introduce such a record in order to exploit this condition to cause denial of service, though we consider the use of this vector unlikely because any such attack would require a significant privilege level and be easily traceable.

Solutions

huawei-euleros-2_0_sp9-upgrade-bindhuawei-euleros-2_0_sp9-upgrade-bind-chroothuawei-euleros-2_0_sp9-upgrade-bind-export-libshuawei-euleros-2_0_sp9-upgrade-bind-libshuawei-euleros-2_0_sp9-upgrade-bind-libs-litehuawei-euleros-2_0_sp9-upgrade-bind-pkcs11huawei-euleros-2_0_sp9-upgrade-bind-utilshuawei-euleros-2_0_sp9-upgrade-python3-bind

References

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report