[ALSA-2024:1789] Important: bind security update
Type:
security
Severity:
important
Release date:
2024-04-12
Description:
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) * bind: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * bind: Specific recursive query patterns may lead to an out-of-memory condition (CVE-2023-6516) * bind: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution (CVE-2023-5679) * bind: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled (CVE-2023-5517) * bind: Parsing large DNS messages may cause excessive CPU load (CVE-2023-4408) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 bind-devel-9.16.23-14.el9_3.4.aarch64.rpm 197ea72a2bc7d2805b56066752b8e3ee257003de1b11b03471cffc70a1141eb3
aarch64 bind-chroot-9.16.23-14.el9_3.4.aarch64.rpm 34a984ce9967050e730bef395c160534083f355c25e61657e89db680e578c3ea
aarch64 bind-dnssec-utils-9.16.23-14.el9_3.4.aarch64.rpm 64c383573b3a42d7be3750816d04600f63a27c09032abbdf9a1e813d27ec97eb
aarch64 bind-dyndb-ldap-11.9-8.el9_3.3.alma.1.aarch64.rpm 8a3cb1ffee1b11c879b1325a3e0ad360bbdbc7afad6f29242f8ba67876f5da32
aarch64 bind-utils-9.16.23-14.el9_3.4.aarch64.rpm 9edfe0ad8134e312296cac1fc0c61b7e9d0570dd917a939609afa2e274696113
aarch64 bind-9.16.23-14.el9_3.4.aarch64.rpm a63356fa06ff1f7cece2bfa80252529ba4cd8a0a8c9351fc80512b1f1d7567e3
aarch64 bind-libs-9.16.23-14.el9_3.4.aarch64.rpm ba01a052a7db448d7dbfe4e637e39feb84487326c57ea017d43bb236d92b1f5a
i686 bind-devel-9.16.23-14.el9_3.4.i686.rpm 6bd599f817f7b49d1640c6cd5feb5c69a89e508b4ad4c59120b11e8208e8aad1
i686 bind-libs-9.16.23-14.el9_3.4.i686.rpm 98c780637c10fcbd46d6fa5760530fc5b036ec2c1e95c202ca699324068bd28b
noarch bind-license-9.16.23-14.el9_3.4.noarch.rpm 012982f0586afa53de7d12064b54b611c6aa3996136ae529dafd184fb5a1d4b8
noarch python3-bind-9.16.23-14.el9_3.4.noarch.rpm 170453af55c64d7384969b646894606ed2f1c355646c5fd9c3af89cd4d2eb837
noarch bind-doc-9.16.23-14.el9_3.4.noarch.rpm 22ea42050319c6952320fdfdb1eb6f005290375161f8b1ae7f8089901182832f
noarch bind-dnssec-doc-9.16.23-14.el9_3.4.noarch.rpm 8d0966d77d817acd3ef8ba3560ebc38f42057b8f42362fbf4c75953e90c7e7cf
ppc64le bind-devel-9.16.23-14.el9_3.4.ppc64le.rpm 0aeb4720088b3aac2e954cb395dfeb9e975adf53b1fb936a0a4f3035136131eb
ppc64le bind-9.16.23-14.el9_3.4.ppc64le.rpm 550d0306adeea586f14b1e7b7b641bcbd423be843046ec68c96e37005f801b04
ppc64le bind-chroot-9.16.23-14.el9_3.4.ppc64le.rpm 658a4d2e8138797e51456db7fdd87763f4c30df1f825fb1ef768d611293117d6
ppc64le bind-libs-9.16.23-14.el9_3.4.ppc64le.rpm 7b014cfefb04ff4e9832472415cdb0f9b8425e5e730f5bd0fb8e1c119bc59ca9
ppc64le bind-dyndb-ldap-11.9-8.el9_3.3.alma.1.ppc64le.rpm d4e596b6be0bc7018a5f8d99bac0efc8838f3392b26d7260a2b47aa4377f31f2
ppc64le bind-utils-9.16.23-14.el9_3.4.ppc64le.rpm df9e6914858c7b159b1f65cb1508c8a6805cbe261ac6a364b7438892b5d63fad
ppc64le bind-dnssec-utils-9.16.23-14.el9_3.4.ppc64le.rpm f330ef271f2334bfeef7c891438f57bc11e61d56d708be2a684b46c6c462f708
s390x bind-chroot-9.16.23-14.el9_3.4.s390x.rpm 53d162149c0ac8728391699595b0d7acf54921d5fac14cb152c81f58b7467ba7
s390x bind-dnssec-utils-9.16.23-14.el9_3.4.s390x.rpm 7ceb7384888b4121da4acacf4df81770b5d3d943d0e9b95e72a96a8f134c9009
s390x bind-9.16.23-14.el9_3.4.s390x.rpm 867e9aa55b578c5a3f403612ce6a249d9065884d071defb62c98b0db71b3595f
s390x bind-dyndb-ldap-11.9-8.el9_3.3.alma.1.s390x.rpm aef26e24d8ac9a8fdd2ebc9d1224b4020d424b8fb829d160965b9a32e44eb313
s390x bind-utils-9.16.23-14.el9_3.4.s390x.rpm bed2f04a24cfbf1c543288058587098f145c779bf0a8d44d2d6f9861c6240c3d
s390x bind-libs-9.16.23-14.el9_3.4.s390x.rpm dbe18f462da0afd1a5321f5f620e9030aa2d5f1472921dc5f0393c4d8eb37932
s390x bind-devel-9.16.23-14.el9_3.4.s390x.rpm e8f6380ead1bb50227b442f9ed716967b8c6317c1b41a490cc95da9116593919
x86_64 bind-devel-9.16.23-14.el9_3.4.x86_64.rpm 1f3ab94be6710564bb101a0a53e3deb4d922032dc693d6930362555784a5606d
x86_64 bind-9.16.23-14.el9_3.4.x86_64.rpm 2d01a1481bddf1626c3dfd2f0d809717e7b0e94b2dac3610023b72bad77650af
x86_64 bind-dnssec-utils-9.16.23-14.el9_3.4.x86_64.rpm 41adb193b5134a1a9471c89b863077e0ad757278b750ff5320b3a17fead15202
x86_64 bind-chroot-9.16.23-14.el9_3.4.x86_64.rpm 8f80bcb809878227754abf14560baa073a7c16e40f2cfcdb2821181047e4f442
x86_64 bind-dyndb-ldap-11.9-8.el9_3.3.alma.1.x86_64.rpm a9680d6c0778c97d236a5deef643163efba46db98e5b0a7d8641b4170cb2a012
x86_64 bind-utils-9.16.23-14.el9_3.4.x86_64.rpm e12cbb46e01f251b8e8e644e2d936da00e7a05db14944af2f9ea35b3e6db7cad
x86_64 bind-libs-9.16.23-14.el9_3.4.x86_64.rpm ed04dc31b7bd24aa2260f4e0aafe7d7407966a5cbb717ee22a6c614c4d2eebd4
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.