ALSA-2025:21034

[ALSA-2025:21034] Important: bind security update

Type:

security

Severity:

important

Release date:

2025-11-24

Description:

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.  

Security Fix(es):  

  * bind: Cache poisoning attacks with unsolicited RRs (CVE-2025-40778)
  * bind: Cache poisoning due to weak PRNG (CVE-2025-40780)
  * bind: Resource exhaustion via malformed DNSKEY handling (CVE-2025-8677)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	bind-dnssec-utils-9.18.33-10.el10_1.2.aarch64.rpm	05a916d2d8fcbca19e7cd19cc3e44f6029cdf54565866b48ec1e69f4b288a1b3
aarch64	bind-utils-9.18.33-10.el10_1.2.aarch64.rpm	72b34611c4c00338d97eadc6eb4acfe45083ae9ec1f2741aefd3a6b71bdacfd7
aarch64	bind-devel-9.18.33-10.el10_1.2.aarch64.rpm	ba741c09ad9423f9cfa99de871c5b6fe99eb0b3e401bcad6ac3e8f64193a5813
aarch64	bind-chroot-9.18.33-10.el10_1.2.aarch64.rpm	d6b37fda47ee257fee86f1d1852e92afd4f8328178ef0f13b27916b79a5a1299
aarch64	bind-libs-9.18.33-10.el10_1.2.aarch64.rpm	d6e880dea6e19251de7e8100e48934d6290f5a1577d0bffd496abcf70d1771f8
aarch64	bind-9.18.33-10.el10_1.2.aarch64.rpm	e67d30311c6e6eb5521160ccadc6c09032ed7082768802d3d1cc2da90fb2accb
noarch	bind-doc-9.18.33-10.el10_1.2.noarch.rpm	14fe04b80ca60cf08295b2d4c7453ec62c4218f8f7033648c849ab00bfaa830a
noarch	bind-license-9.18.33-10.el10_1.2.noarch.rpm	60860518146a337085ddae781b62f3329c321059775c4af709bd2b8e5bfc264f
ppc64le	bind-9.18.33-10.el10_1.2.ppc64le.rpm	2214a4be10af910105c633e150356f52b537c783761fa323d8dc587d7ae546c0
ppc64le	bind-utils-9.18.33-10.el10_1.2.ppc64le.rpm	52cdb22878a8cb5f5e885e0faa43d82f6a5b99958a57c571492982d52b7ccb94
ppc64le	bind-dnssec-utils-9.18.33-10.el10_1.2.ppc64le.rpm	60e228b7abbe62d3577e2c8bc3152c55f4cf4828368a7b1cfe17f44e87585bf0
ppc64le	bind-libs-9.18.33-10.el10_1.2.ppc64le.rpm	9e4206d7c7bb926966498ba9a2edeb46316c2237cca1f3fad0d64f3432e22ac3
ppc64le	bind-chroot-9.18.33-10.el10_1.2.ppc64le.rpm	db7c7ae1905929cf1919e93dbbc1fda4af96aa7f9feded05af20a513a1d06b8e
ppc64le	bind-devel-9.18.33-10.el10_1.2.ppc64le.rpm	fef6fb6879e43f259c99b026b03959975e8b00ea74773f7126db21a9ba0eae87
s390x	bind-chroot-9.18.33-10.el10_1.2.s390x.rpm	101647f0ccaac0973abcb6763114c45eebdc966fd288300a4605579ba2774014
s390x	bind-dnssec-utils-9.18.33-10.el10_1.2.s390x.rpm	1a037f1c120514e0c71941ea40a43228a90d17ab5b931279faa986773805acbf
s390x	bind-9.18.33-10.el10_1.2.s390x.rpm	47a9b7fc9f6ebecbf48c12c591cb92bc499401f3e6413e485ac662534efa75de
s390x	bind-devel-9.18.33-10.el10_1.2.s390x.rpm	672686efd5172dac64f1941bb609caaa310d6ef371e9d138f753561071a87d69
s390x	bind-utils-9.18.33-10.el10_1.2.s390x.rpm	8d4a764cca0b7238d96acb85c64afeee2c398239d8a4abccf9380446757614cf
s390x	bind-libs-9.18.33-10.el10_1.2.s390x.rpm	a8a26ad771d2edf0e3f50e0598ddcce000b4f091156300d69bc9f1643e433146
x86_64	bind-devel-9.18.33-10.el10_1.2.x86_64.rpm	2fd62eb56a18b474f1a8a7021f4363d234876313d15df9fa843a0815dd74be65
x86_64	bind-chroot-9.18.33-10.el10_1.2.x86_64.rpm	879d09f1bc0d97f21f792855c126f7fdc67d92894ce4c17729c791560974a5d8
x86_64	bind-utils-9.18.33-10.el10_1.2.x86_64.rpm	c2b88452c15fed698387b114a737a5a97a0094522696296a18976a15a57717e7
x86_64	bind-9.18.33-10.el10_1.2.x86_64.rpm	cdccbe34241aa395a0818b34be27ae61c50acd4c55d37a740d9bdd22fd9e8604
x86_64	bind-dnssec-utils-9.18.33-10.el10_1.2.x86_64.rpm	e85503dfdeb4450d783b6865849ae3860831b2e9bb0066c0d3ba44b977fc4fc6
x86_64	bind-libs-9.18.33-10.el10_1.2.x86_64.rpm	e963e1d90740c8524f7193ee97a0ea69f2ad14ae2640aee06d71496f112b04f9
x86_64_v2	bind-utils-9.18.33-10.el10_1.2.x86_64_v2.rpm	324f76541dccfc8025e2950a722c3e990a662ab26254e4addf4f55d7d872b407
x86_64_v2	bind-chroot-9.18.33-10.el10_1.2.x86_64_v2.rpm	47fbd98e4d0475c7c76f2930e1094b933d3f91f448edc013580d788324a32cff
x86_64_v2	bind-devel-9.18.33-10.el10_1.2.x86_64_v2.rpm	4e4da6f714f37d27168e652f2bb47ff98693fb6d30620eb85cd3887fed46fa57
x86_64_v2	bind-9.18.33-10.el10_1.2.x86_64_v2.rpm	c134be37b9f8ca7e64387d041119e24ad116f1248f12e2af65d7f13f50bdf395
x86_64_v2	bind-dnssec-utils-9.18.33-10.el10_1.2.x86_64_v2.rpm	cdd598ff2feaddc381db64c91276b2e66ab8687245da759f5bc9cff2d0d2000a
x86_64_v2	bind-libs-9.18.33-10.el10_1.2.x86_64_v2.rpm	d8a4dda4a88c95ea8d5b6ced23746a9de024e55cd92b9a0940a2689484945035

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.