CVE-2007-2925 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2007-2925 Interim 1 10 2025-11-05T06:20:52Z current 2021-05-30T12:39:06Z 2025-11-05T06:20:52Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2007-2925 The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Software Development Kit 11 SP4 openSUSE Tumbleweed bind-9.16.20-1.4 bind-9.20.11-160000.2.2 bind-9.5.0P2-20.7.1 bind-9.6ESVR5P1-0.8.1 bind-9.6ESVR7P4-0.10.1 bind-9.9.6P1-0.5.5 bind-chrootenv-9.5.0P2-20.7.1 bind-chrootenv-9.6ESVR5P1-0.8.1 bind-chrootenv-9.6ESVR7P4-0.10.1 bind-chrootenv-9.9.6P1-0.5.5 bind-devel-32bit-9.9.6P1-0.5.1 bind-devel-9.9.6P1-0.5.5 bind-doc-9.16.20-1.4 bind-doc-9.20.11-160000.2.2 bind-doc-9.5.0P2-20.7.1 bind-doc-9.6ESVR5P1-0.8.1 bind-doc-9.6ESVR7P4-0.10.1 bind-doc-9.9.6P1-0.5.5 bind-libs-32bit-9.5.0P2-20.7.1 bind-libs-32bit-9.6ESVR5P1-0.8.1 bind-libs-32bit-9.6ESVR7P4-0.10.1 bind-libs-32bit-9.9.6P1-0.5.5 bind-libs-9.5.0P2-20.7.1 bind-libs-9.6ESVR5P1-0.8.1 bind-libs-9.6ESVR7P4-0.10.1 bind-libs-9.9.6P1-0.5.5 bind-libs-x86-9.5.0P2-20.7.1 bind-libs-x86-9.6ESVR5P1-0.8.1 bind-libs-x86-9.6ESVR7P4-0.10.1 bind-libs-x86-9.9.6P1-0.5.1 bind-modules-generic-9.20.11-160000.2.2 bind-modules-ldap-9.20.11-160000.2.2 bind-modules-mysql-9.20.11-160000.2.2 bind-modules-perl-9.20.11-160000.2.2 bind-modules-sqlite3-9.20.11-160000.2.2 bind-utils-9.16.20-1.4 bind-utils-9.20.11-160000.2.2 bind-utils-9.5.0P2-20.7.1 bind-utils-9.6ESVR5P1-0.8.1 bind-utils-9.6ESVR7P4-0.10.1 bind-utils-9.9.6P1-0.5.5 python3-bind-9.16.20-1.4 bind-9.5.0P2-20.7.1 as a component of SUSE Linux Enterprise Server 11 SP1 bind-chrootenv-9.5.0P2-20.7.1 as a component of SUSE Linux Enterprise Server 11 SP1 bind-doc-9.5.0P2-20.7.1 as a component of SUSE Linux Enterprise Server 11 SP1 bind-libs-9.5.0P2-20.7.1 as a component of SUSE Linux Enterprise Server 11 SP1 bind-libs-32bit-9.5.0P2-20.7.1 as a component of SUSE Linux Enterprise Server 11 SP1 bind-libs-x86-9.5.0P2-20.7.1 as a component of SUSE Linux Enterprise Server 11 SP1 bind-utils-9.5.0P2-20.7.1 as a component of SUSE Linux Enterprise Server 11 SP1 bind-9.6ESVR5P1-0.8.1 as a component of SUSE Linux Enterprise Server 11 SP2 bind-chrootenv-9.6ESVR5P1-0.8.1 as a component of SUSE Linux Enterprise Server 11 SP2 bind-doc-9.6ESVR5P1-0.8.1 as a component of SUSE Linux Enterprise Server 11 SP2 bind-libs-9.6ESVR5P1-0.8.1 as a component of SUSE Linux Enterprise Server 11 SP2 bind-libs-32bit-9.6ESVR5P1-0.8.1 as a component of SUSE Linux Enterprise Server 11 SP2 bind-libs-x86-9.6ESVR5P1-0.8.1 as a component of SUSE Linux Enterprise Server 11 SP2 bind-utils-9.6ESVR5P1-0.8.1 as a component of SUSE Linux Enterprise Server 11 SP2 bind-9.6ESVR7P4-0.10.1 as a component of SUSE Linux Enterprise Server 11 SP3 bind-chrootenv-9.6ESVR7P4-0.10.1 as a component of SUSE Linux Enterprise Server 11 SP3 bind-doc-9.6ESVR7P4-0.10.1 as a component of SUSE Linux Enterprise Server 11 SP3 bind-libs-9.6ESVR7P4-0.10.1 as a component of SUSE Linux Enterprise Server 11 SP3 bind-libs-32bit-9.6ESVR7P4-0.10.1 as a component of SUSE Linux Enterprise Server 11 SP3 bind-libs-x86-9.6ESVR7P4-0.10.1 as a component of SUSE Linux Enterprise Server 11 SP3 bind-utils-9.6ESVR7P4-0.10.1 as a component of SUSE Linux Enterprise Server 11 SP3 bind-9.9.6P1-0.5.5 as a component of SUSE Linux Enterprise Server 11 SP4 bind-chrootenv-9.9.6P1-0.5.5 as a component of SUSE Linux Enterprise Server 11 SP4 bind-doc-9.9.6P1-0.5.5 as a component of SUSE Linux Enterprise Server 11 SP4 bind-libs-9.9.6P1-0.5.5 as a component of SUSE Linux Enterprise Server 11 SP4 bind-libs-32bit-9.9.6P1-0.5.5 as a component of SUSE Linux Enterprise Server 11 SP4 bind-libs-x86-9.9.6P1-0.5.1 as a component of SUSE Linux Enterprise Server 11 SP4 bind-utils-9.9.6P1-0.5.5 as a component of SUSE Linux Enterprise Server 11 SP4 bind-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-doc-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-modules-generic-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-modules-ldap-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-modules-mysql-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-modules-perl-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-modules-sqlite3-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-utils-9.20.11-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 bind-devel-9.9.6P1-0.5.5 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 bind-devel-32bit-9.9.6P1-0.5.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 bind-9.16.20-1.4 as a component of openSUSE Tumbleweed bind-doc-9.16.20-1.4 as a component of openSUSE Tumbleweed bind-utils-9.16.20-1.4 as a component of openSUSE Tumbleweed python3-bind-9.16.20-1.4 as a component of openSUSE Tumbleweed The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache. CVE-2007-2925 SUSE Linux Enterprise Server 11 SP1:bind-9.5.0P2-20.7.1 SUSE Linux Enterprise Server 11 SP1:bind-chrootenv-9.5.0P2-20.7.1 SUSE Linux Enterprise Server 11 SP1:bind-doc-9.5.0P2-20.7.1 SUSE Linux Enterprise Server 11 SP1:bind-libs-9.5.0P2-20.7.1 SUSE Linux Enterprise Server 11 SP1:bind-libs-32bit-9.5.0P2-20.7.1 SUSE Linux Enterprise Server 11 SP1:bind-libs-x86-9.5.0P2-20.7.1 SUSE Linux Enterprise Server 11 SP1:bind-utils-9.5.0P2-20.7.1 SUSE Linux Enterprise Server 11 SP2:bind-9.6ESVR5P1-0.8.1 SUSE Linux Enterprise Server 11 SP2:bind-chrootenv-9.6ESVR5P1-0.8.1 SUSE Linux Enterprise Server 11 SP2:bind-doc-9.6ESVR5P1-0.8.1 SUSE Linux Enterprise Server 11 SP2:bind-libs-9.6ESVR5P1-0.8.1 SUSE Linux Enterprise Server 11 SP2:bind-libs-32bit-9.6ESVR5P1-0.8.1 SUSE Linux Enterprise Server 11 SP2:bind-libs-x86-9.6ESVR5P1-0.8.1 SUSE Linux Enterprise Server 11 SP2:bind-utils-9.6ESVR5P1-0.8.1 SUSE Linux Enterprise Server 11 SP3:bind-9.6ESVR7P4-0.10.1 SUSE Linux Enterprise Server 11 SP3:bind-chrootenv-9.6ESVR7P4-0.10.1 SUSE Linux Enterprise Server 11 SP3:bind-doc-9.6ESVR7P4-0.10.1 SUSE Linux Enterprise Server 11 SP3:bind-libs-9.6ESVR7P4-0.10.1 SUSE Linux Enterprise Server 11 SP3:bind-libs-32bit-9.6ESVR7P4-0.10.1 SUSE Linux Enterprise Server 11 SP3:bind-libs-x86-9.6ESVR7P4-0.10.1 SUSE Linux Enterprise Server 11 SP3:bind-utils-9.6ESVR7P4-0.10.1 SUSE Linux Enterprise Server 11 SP4:bind-9.9.6P1-0.5.5 SUSE Linux Enterprise Server 11 SP4:bind-chrootenv-9.9.6P1-0.5.5 SUSE Linux Enterprise Server 11 SP4:bind-doc-9.9.6P1-0.5.5 SUSE Linux Enterprise Server 11 SP4:bind-libs-9.9.6P1-0.5.5 SUSE Linux Enterprise Server 11 SP4:bind-libs-32bit-9.9.6P1-0.5.5 SUSE Linux Enterprise Server 11 SP4:bind-libs-x86-9.9.6P1-0.5.1 SUSE Linux Enterprise Server 11 SP4:bind-utils-9.9.6P1-0.5.5 SUSE Linux Enterprise Server 16.0:bind-9.20.11-160000.2.2 SUSE Linux Enterprise Server 16.0:bind-doc-9.20.11-160000.2.2 SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.11-160000.2.2 SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.11-160000.2.2 SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.11-160000.2.2 SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.11-160000.2.2 SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.11-160000.2.2 SUSE Linux Enterprise Server 16.0:bind-utils-9.20.11-160000.2.2 SUSE Linux Enterprise Software Development Kit 11 SP4:bind-devel-9.9.6P1-0.5.5 SUSE Linux Enterprise Software Development Kit 11 SP4:bind-devel-32bit-9.9.6P1-0.5.1 openSUSE Tumbleweed:bind-9.16.20-1.4 openSUSE Tumbleweed:bind-doc-9.16.20-1.4 openSUSE Tumbleweed:bind-utils-9.16.20-1.4 openSUSE Tumbleweed:python3-bind-9.16.20-1.4 important 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N