You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
dns availability
About this tag
DNS availability is a recurring concern for WindowsForum readers, as DNS failures can disrupt logons, updates, and name resolution across hybrid infrastructures. Recent discussions highlight vulnerabilities in common DNS software such as dnsmasq, Unbound, and BIND 9, where malformed queries or race conditions can crash resolvers or authoritative servers, reducing availability. While these bugs are not Windows-specific, they affect Windows-adjacent environments where DNS dependencies cross operating-system boundaries. Topics include CVE-2026-5172 (dnsmasq heap crash), CVE-2026-32792 (Unbound DNSCrypt DoS), and CVE-2026-5947 (BIND SIG(0) race condition), emphasizing the need for patching and monitoring to prevent outages.
On May 11, 2026, CVE-2026-5172 was published as a dnsmasq vulnerability in which malformed DNS responses can trigger a heap out-of-bounds read and crash the service, reducing availability without necessarily causing a complete, sustained denial of service. That wording matters because it places...
CVE-2026-32792 is a newly published denial-of-service flaw in NLnet Labs Unbound, disclosed on May 20, 2026, affecting versions 1.6.2 through 1.25.0 when the resolver is built with DNSCrypt support and exposed to a malformed encrypted DNS query. The bug is not a Windows vulnerability in the...
On May 20, 2026, Internet Systems Consortium disclosed CVE-2026-5947, a high-severity BIND 9 flaw in which SIG(0)-signed DNS traffic arriving during a query flood can trigger a race condition, use freed memory, and crash DNS service. The bug is not a flashy remote-code-execution headline, but...