Cache poisoning:
CVE-2025-40778: Cache poisoning attacks with unsolicited RRs
CVE-2025-40780: Cache poisoning due to weak PRNG
 And DoS:
CVE-2025-8677: Resource exhaustion via malformed DNSKEY handling
Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion.
 in BIND 9.
In case you weren't busy enough patching Oracle shit, their quarterly advisory is published. https://www.oracle.com/security-alerts/cpuoct2025.html
AWS is getting ready to pass your mom as number one in going down.