Ubuntu 25.04: Bind Critical Denial of Service Crash USN-7641-1
ubuntu
July 16, 2025
Bind could be made to crash if it received specially crafted network traffic.
Summary
Bind could be made to crash if it received specially crafted network
traffic.
Software Description:
- bind9: Internet Domain Name Server
Details:
It was discovered that Bind incorrectly handled configurations where the
stale-answer-client-timeout option is set to 0. A remote attacker could
possibly use this issue to cause Bind to crash, resulting in a denial of
service.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 25.04 bind9 1:9.20.4-3ubuntu1.2 In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-7641-1
CVE-2025-40777
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-7641-1
Topics Covered
Package Information
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!