CVE-2026-3104— Memory leak in code preparing DNSSEC proofs of non-existence
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-3104
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Memory leak in code preparing DNSSEC proofs of non-existence
Source: NVD (National Vulnerability Database)
Vulnerability Description
A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through 9.20.20-S1. BIND 9 versions 9.18.0 through 9.18.46 and 9.18.11-S1 through 9.18.46-S1 are NOT affected.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
对已超过有效生命周期的资源丧失索引
Source: NVD (National Vulnerability Database)
Vulnerability Title
ISC BIND 9 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
ISC BIND 9是ISC组织的一个域名系统软件。 ISC BIND 9 9.20.0至9.20.20版本、9.21.0至9.21.19版本和9.20.9-S1至9.20.20-S1版本存在安全漏洞,该漏洞源于特制域名可能导致内存泄漏。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-3104
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-3104
请登录查看更多情报信息。
Same Patch Batch · ISC · 2026-03-25 · 5 CVEs total
| CVE-2026-3608 | 7.5 HIGH | Stack overflow in Kea daemons |
| CVE-2026-1519 | 7.5 HIGH | Excessive NSEC3 iterations cause high CPU load during insecure delegation validation |
| CVE-2026-3119 | 6.5 MEDIUM | Authenticated query containing a TKEY record may cause named to terminate unexpectedly |
| CVE-2026-3591 | 5.4 MEDIUM | A stack use-after-return flaw in SIG(0) handling code may enable ACL bypass |
IV. Related Vulnerabilities
Same product: BIND 9
- CVE-2026-3591
A stack use-after-return flaw in SIG(0) handling code may en - CVE-2026-3119
Authenticated query containing a TKEY record may cause named - CVE-2026-1519
Excessive NSEC3 iterations cause high CPU load during insecu - CVE-2025-13878
Malformed BRID/HHIT records can cause named to terminate une - CVE-2025-40780
Cache poisoning due to weak PRNG
Same vendor: ISC
- CVE-2026-3591
A stack use-after-return flaw in SIG(0) handling code may en - CVE-2026-3119
Authenticated query containing a TKEY record may cause named - CVE-2026-1519
Excessive NSEC3 iterations cause high CPU load during insecu - CVE-2026-3608
Stack overflow in Kea daemons - CVE-2025-13878
Malformed BRID/HHIT records can cause named to terminate une
Same weakness: CWE-772
- CVE-2026-2261
blocklistd(8) socket leak - CVE-2026-20082
Cisco Secure Firewall Adaptive Security Appliance 安全漏洞 - CVE-2026-2359
Multer vulnerable to Denial of Service via resource exhausti - CVE-2025-14969
Hibernate-reactive-core: hibernate reactive: denial of servi - CVE-2026-21874
NiceGUI has Redis connection leak via tab storage causes ser
V. Comments for CVE-2026-3104
No comments yet