2405829 – (CVE-2025-40780) CVE-2025-40780 bind: Cache poisoning due to weak PRNG

Bug 2405829 (CVE-2025-40780) - CVE-2025-40780 bind: Cache poisoning due to weak PRNG

Summary: CVE-2025-40780 bind: Cache poisoning due to weak PRNG

Keywords:
Status:	NEW
Alias:	CVE-2025-40780
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2394406 2405831 2405832 2405833 2405834
Blocks:	2406399
TreeView+	depends on / blocked

Reported:	2025-10-22 15:22 UTC by OSIDB Bzimport
Modified:	2026-01-30 14:19 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2025:20022	None	None	None	2025-11-10 13:02:13 UTC
Red Hat Product Errata	RHBA-2025:20023	None	None	None	2025-11-10 12:59:45 UTC
Red Hat Product Errata	RHBA-2025:21127	None	None	None	2025-11-12 13:24:58 UTC
Red Hat Product Errata	RHBA-2025:21464	None	None	None	2025-11-17 08:27:08 UTC
Red Hat Product Errata	RHSA-2025:19793	None	None	None	2025-11-05 11:51:24 UTC
Red Hat Product Errata	RHSA-2025:19912	None	None	None	2025-11-06 15:39:26 UTC
Red Hat Product Errata	RHSA-2025:19950	None	None	None	2025-11-10 02:34:18 UTC
Red Hat Product Errata	RHSA-2025:19951	None	None	None	2025-11-10 02:42:21 UTC
Red Hat Product Errata	RHSA-2025:21034	None	None	None	2025-11-11 19:49:27 UTC
Red Hat Product Errata	RHSA-2025:21110	None	None	None	2025-11-12 10:38:51 UTC
Red Hat Product Errata	RHSA-2025:21111	None	None	None	2025-11-12 10:35:00 UTC
Red Hat Product Errata	RHSA-2025:21817	None	None	None	2025-11-20 07:56:41 UTC
Red Hat Product Errata	RHSA-2025:21887	None	None	None	2025-11-20 20:42:55 UTC
Red Hat Product Errata	RHSA-2025:21889	None	None	None	2025-11-20 21:08:54 UTC
Red Hat Product Errata	RHSA-2025:21939	None	None	None	2025-11-24 10:32:19 UTC
Red Hat Product Errata	RHSA-2025:22168	None	None	None	2025-11-26 07:23:53 UTC
Red Hat Product Errata	RHSA-2026:0316	None	None	None	2026-01-15 05:11:22 UTC
Red Hat Product Errata	RHSA-2026:0326	None	None	None	2026-01-15 18:46:27 UTC
Red Hat Product Errata	RHSA-2026:0332	None	None	None	2026-01-15 18:55:10 UTC
Red Hat Product Errata	RHSA-2026:0420	None	None	None	2026-01-14 13:24:24 UTC
Red Hat Product Errata	RHSA-2026:0674	None	None	None	2026-01-22 20:17:58 UTC
Red Hat Product Errata	RHSA-2026:0677	None	None	None	2026-01-22 20:16:58 UTC
Red Hat Product Errata	RHSA-2026:0702	None	None	None	2026-01-22 19:07:48 UTC
Red Hat Product Errata	RHSA-2026:0996	None	None	None	2026-01-30 14:19:42 UTC

Description OSIDB Bzimport 2025-10-22 15:22:51 UTC

In specific circumstances, due to a weakness in the Pseudo Random Number Generator (PRNG) that is used, it is possible for an attacker to predict the source port and query ID that BIND will use.

Comment 2 errata-xmlrpc 2025-11-05 11:51:23 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:19793 https://access.redhat.com/errata/RHSA-2025:19793

Comment 3 errata-xmlrpc 2025-11-06 15:39:25 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2025:19912 https://access.redhat.com/errata/RHSA-2025:19912

Comment 4 errata-xmlrpc 2025-11-10 02:34:16 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:19950 https://access.redhat.com/errata/RHSA-2025:19950

Comment 5 errata-xmlrpc 2025-11-10 02:42:19 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:19951 https://access.redhat.com/errata/RHSA-2025:19951

Comment 6 errata-xmlrpc 2025-11-11 19:49:26 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2025:21034 https://access.redhat.com/errata/RHSA-2025:21034

Comment 7 errata-xmlrpc 2025-11-12 10:34:58 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:21111 https://access.redhat.com/errata/RHSA-2025:21111

Comment 8 errata-xmlrpc 2025-11-12 10:38:49 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:21110 https://access.redhat.com/errata/RHSA-2025:21110

Comment 13 errata-xmlrpc 2025-11-20 07:56:40 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:21817 https://access.redhat.com/errata/RHSA-2025:21817

Comment 14 errata-xmlrpc 2025-11-20 20:42:54 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2025:21887 https://access.redhat.com/errata/RHSA-2025:21887

Comment 15 errata-xmlrpc 2025-11-20 21:08:53 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Via RHSA-2025:21889 https://access.redhat.com/errata/RHSA-2025:21889

Comment 16 errata-xmlrpc 2025-11-24 10:32:17 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2025:21939 https://access.redhat.com/errata/RHSA-2025:21939

Comment 17 errata-xmlrpc 2025-11-26 07:23:52 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Via RHSA-2025:22168 https://access.redhat.com/errata/RHSA-2025:22168

Comment 21 errata-xmlrpc 2026-01-14 13:24:22 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.20

Via RHSA-2026:0420 https://access.redhat.com/errata/RHSA-2026:0420

Comment 22 errata-xmlrpc 2026-01-15 05:11:21 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.12

Via RHSA-2026:0316 https://access.redhat.com/errata/RHSA-2026:0316

Comment 23 errata-xmlrpc 2026-01-15 18:46:25 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.16

Via RHSA-2026:0326 https://access.redhat.com/errata/RHSA-2026:0326

Comment 24 errata-xmlrpc 2026-01-15 18:55:08 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.18

Via RHSA-2026:0332 https://access.redhat.com/errata/RHSA-2026:0332

Comment 25 errata-xmlrpc 2026-01-22 19:07:47 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.17

Via RHSA-2026:0702 https://access.redhat.com/errata/RHSA-2026:0702

Comment 26 errata-xmlrpc 2026-01-22 20:16:56 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.13

Via RHSA-2026:0677 https://access.redhat.com/errata/RHSA-2026:0677

Comment 27 errata-xmlrpc 2026-01-22 20:17:56 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.19

Via RHSA-2026:0674 https://access.redhat.com/errata/RHSA-2026:0674

Comment 28 errata-xmlrpc 2026-01-30 14:19:40 UTC

This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.14

Via RHSA-2026:0996 https://access.redhat.com/errata/RHSA-2026:0996

Note You need to log in before you can comment on or make changes to this bug.