Fedora 43 and 42 Address Critical DNSSEC Vulnerability in BIND

Fedora 43 and 42 Address Critical DNSSEC Vulnerability in BIND

First seen 2 Dec 2025, 18:33 UTC Linuxsecurity 96% similarity 5.8

Article Content

Browse articles
ThreatCluster

Fedora has released security updates for BIND (Berkeley Internet Name Domain) version 9.21.14 to address a critical vulnerability (CVE-2025-8677) affecting DNSSEC validation. This vulnerability allows DNSSEC validation to fail if a matching but invalid DNSKEY is found, potentially leading to various spoofing attacks. Users of Fedora 42 and 43 are advised to apply these updates to mitigate the risk.

ThreatCluster AI

Community

Browse all →