CVE-2021-25219 log

Severity Medium
Remote Yes
Type Denial of service
In BIND before version 9.16.22, exploitation of broken authoritative servers using a flaw in response processing can cause degradation in BIND resolver performance. The way the lame cache is currently designed makes it possible for its internal data structures to grow almost infinitely, which may cause significant delays in client query processing.
Group Package Affected Fixed Severity Status Ticket
AVG-2502 bind 9.16.21-1 9.16.22-1 Medium Fixed
Date Advisory Group Package Severity Type
29 Oct 2021 ASA-202110-12 AVG-2502 bind Medium denial of service

Setting lame-ttl 0; disables the lame cache and prevents the performance issue.