Red Hat Security Advisory: bind security update
This advisory addresses two security vulnerabilities in the Berkeley Internet Name Domain (BIND) software used in Red Hat Enterprise Linux 9. The vulnerabilities involve cache poisoning attacks: one through unsolicited resource records (CVE-2025-40778) and another due to a weak pseudo-random number generator (CVE-2025-40780). These issues could allow an attacker to corrupt DNS cache data. Red Hat has released updated packages to fix these vulnerabilities. The update is rated as Important by Red Hat Product Security. Users of affected Red Hat Enterprise Linux 9 versions should apply the provided updates to mitigate these risks.
AI Analysis
Technical Summary
The Berkeley Internet Name Domain (BIND) software, which implements DNS protocols and includes a DNS server and resolver library, has two identified vulnerabilities affecting Red Hat Enterprise Linux 9. CVE-2025-40778 allows cache poisoning attacks via unsolicited resource records, while CVE-2025-40780 involves cache poisoning due to a weak pseudo-random number generator. These vulnerabilities could compromise DNS cache integrity. Red Hat has issued an Important security advisory (RHSA-2025:21110) and released updated bind packages to address these issues. The advisory covers multiple Red Hat Enterprise Linux 9 variants and related products. Detailed CVSS scores are not provided in the advisory, but the severity is assessed as Important.
Potential Impact
Successful exploitation of these vulnerabilities could allow an attacker to perform DNS cache poisoning, potentially redirecting DNS queries to malicious destinations. This undermines DNS trust and can affect network communications relying on DNS resolution. The advisory does not report known exploits in the wild. The impact is significant enough for Red Hat to rate the update as Important, indicating a high security risk if unpatched.
Mitigation Recommendations
Red Hat has released updated bind packages addressing these vulnerabilities for Red Hat Enterprise Linux 9 and related products. Users should apply these official updates as detailed in Red Hat advisory RHSA-2025:21110 and the referenced article https://access.redhat.com/articles/11258. No additional mitigation steps are indicated beyond applying the provided patches. Patch status is confirmed as available and official fixes have been issued.
Red Hat Security Advisory: bind security update
Description
This advisory addresses two security vulnerabilities in the Berkeley Internet Name Domain (BIND) software used in Red Hat Enterprise Linux 9. The vulnerabilities involve cache poisoning attacks: one through unsolicited resource records (CVE-2025-40778) and another due to a weak pseudo-random number generator (CVE-2025-40780). These issues could allow an attacker to corrupt DNS cache data. Red Hat has released updated packages to fix these vulnerabilities. The update is rated as Important by Red Hat Product Security. Users of affected Red Hat Enterprise Linux 9 versions should apply the provided updates to mitigate these risks.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The Berkeley Internet Name Domain (BIND) software, which implements DNS protocols and includes a DNS server and resolver library, has two identified vulnerabilities affecting Red Hat Enterprise Linux 9. CVE-2025-40778 allows cache poisoning attacks via unsolicited resource records, while CVE-2025-40780 involves cache poisoning due to a weak pseudo-random number generator. These vulnerabilities could compromise DNS cache integrity. Red Hat has issued an Important security advisory (RHSA-2025:21110) and released updated bind packages to address these issues. The advisory covers multiple Red Hat Enterprise Linux 9 variants and related products. Detailed CVSS scores are not provided in the advisory, but the severity is assessed as Important.
Potential Impact
Successful exploitation of these vulnerabilities could allow an attacker to perform DNS cache poisoning, potentially redirecting DNS queries to malicious destinations. This undermines DNS trust and can affect network communications relying on DNS resolution. The advisory does not report known exploits in the wild. The impact is significant enough for Red Hat to rate the update as Important, indicating a high security risk if unpatched.
Mitigation Recommendations
Red Hat has released updated bind packages addressing these vulnerabilities for Red Hat Enterprise Linux 9 and related products. Users should apply these official updates as detailed in Red Hat advisory RHSA-2025:21110 and the referenced article https://access.redhat.com/articles/11258. No additional mitigation steps are indicated beyond applying the provided patches. Patch status is confirmed as available and official fixes have been issued.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:21110
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-40780"]
- Cvss Version
- null
Threat ID: 6a1f4e86e29bf47b5007fc22
Added to database: 6/2/2026, 9:43:34 PM
Last enriched: 6/2/2026, 10:02:23 PM
Last updated: 6/3/2026, 4:59:46 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.