ISC releases security updates for BIND
The Internet Systems Consortium (ISC) has released security advisories that address security vulnerabilities (CVE-2025-8677, CVE-2025-40778, CVE-2025-40780) affecting multiple versions of the ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, data manipulation and security restriction bypass on the targeted system. These issues are fixed in BIND 9.18.41, BIND 9.20.15, BIND 9.21.14, BIND 9.18.41-S1, BIND 9.20.15-S1.
Users are advised to review ISC advisories and apply the necessary updates – isc.org.
27 October 2025