VulnerableCode Package Details - pkg:apk/alpine/bind@9.20.11-r0?arch=riscv64&distroversion=edge&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/bind@9.20.11-r0?arch=riscv64&distroversion=edge&reponame=main

purl	pkg:apk/alpine/bind@9.20.11-r0?arch=riscv64&distroversion=edge&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-d9np-47r3-rkg1	bind: bind assertion failure	CVE-2025-40777
VCID-stfg-weu9-3kag	A `named` caching resolver that is configured to send ECS (EDNS Client Subnet) options may be vulnerable to a cache-poisoning attack. This issue affects BIND 9 versions 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.37-S1, and 9.20.9-S1 through 9.20.10-S1.	CVE-2025-40776

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-06T04:45:47.641236+00:00	Alpine Linux Importer	Fixing	VCID-stfg-weu9-3kag	https://secdb.alpinelinux.org/edge/main.json	38.1.0
2026-04-03T17:44:41.934905+00:00	Alpine Linux Importer	Fixing	VCID-d9np-47r3-rkg1	https://secdb.alpinelinux.org/edge/main.json	38.1.0