[ALSA-2024:2551] Important: bind security update
Type:
security
Severity:
important
Release date:
2024-05-07
Description:
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) * bind: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * bind: Specific recursive query patterns may lead to an out-of-memory condition (CVE-2023-6516) * bind: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution (CVE-2023-5679) * bind: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled (CVE-2023-5517) * bind: Parsing large DNS messages may cause excessive CPU load (CVE-2023-4408) Bug Fix(es): * bind-dyndb-ldap: rebuilt to adapt ABI changes in bind For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 bind-libs-9.16.23-18.el9_4.1.aarch64.rpm 040de241aa5bb155aa3959e6cafb842f702e14a2b6420aae1d834dd912996702
aarch64 bind-9.16.23-18.el9_4.1.aarch64.rpm 11054ae22b10667320c97f5475d7c2be1e88304ef4a6c43640ee4226fa6a498f
aarch64 bind-devel-9.16.23-18.el9_4.1.aarch64.rpm 61484cbd6cc643c983998d7a59dd1c34d9d888355341c6076d1042944831a565
aarch64 bind-dyndb-ldap-11.9-9.el9_4.alma.1.aarch64.rpm 86f663cc3f89a665558963cc345719fb61c14265e3740e94ca1c10919a4456e2
aarch64 bind-utils-9.16.23-18.el9_4.1.aarch64.rpm a3d4bd331d18d35535ef642a3a441f3042525f8bd9639fc1b69a619a0347d7ad
aarch64 bind-dnssec-utils-9.16.23-18.el9_4.1.aarch64.rpm c9d81a41f086960710bfecc7e8ecff4110558430daccd910eed68d66d363ad67
aarch64 bind-chroot-9.16.23-18.el9_4.1.aarch64.rpm efc8634d5b86c85e30e3177f304876e5286cd8781daf5ce88e20dc7a2099215b
i686 bind-libs-9.16.23-18.el9_4.1.i686.rpm 51a338667417c99dafbe529b2e73c5bf5bf3dfc927946cf0f1169d5e1e9411e9
i686 bind-devel-9.16.23-18.el9_4.1.i686.rpm 869c3ff51f30f39bbaabb7aeb8d0d45994499842bfdd1faba3d8659001148859
noarch python3-bind-9.16.23-18.el9_4.1.noarch.rpm 3353e9654688cd38306bd37aa10893fbfae95a52fc000889d856ce6c964dfd28
noarch bind-license-9.16.23-18.el9_4.1.noarch.rpm ae7bf12a28a5753931c0725bf5b9bbea371aa3cbefdd5fe0075bedd29c59be6a
noarch bind-dnssec-doc-9.16.23-18.el9_4.1.noarch.rpm e4388e0eef62d2414d5a5aee824ba06b2443eea617ae13bfeac580a1f2ea3939
noarch bind-doc-9.16.23-18.el9_4.1.noarch.rpm f79829629665932a43bcf0575918edac6feb3858caced0cd6b7d9228d46c6ec4
ppc64le bind-9.16.23-18.el9_4.1.ppc64le.rpm 375975ca837820c4adfc455731c7d98f0782172bd9d35f8163e2ada4807a5699
ppc64le bind-dyndb-ldap-11.9-9.el9_4.alma.1.ppc64le.rpm 3b6b840ce8095052f0b60efbe59b0c9d247d389075fc765ffe2cd94df0d4ded7
ppc64le bind-libs-9.16.23-18.el9_4.1.ppc64le.rpm 6b1ebb481880ef75a7b2f7d943021a95086579021d2ebb231047b17200d5bdfc
ppc64le bind-utils-9.16.23-18.el9_4.1.ppc64le.rpm a9092b5575630501ef905468a80cd71a71e7720ed6e48ffa8414beb4bc12ac85
ppc64le bind-devel-9.16.23-18.el9_4.1.ppc64le.rpm af29cf9ed26be92888d031e0b712dcdc9f94d99242463a2c95331d4474b5f867
ppc64le bind-dnssec-utils-9.16.23-18.el9_4.1.ppc64le.rpm eec4be2369e2977ba6bf8c55e76a2935b3f27a99c9c7ba668f1896cae87a9644
ppc64le bind-chroot-9.16.23-18.el9_4.1.ppc64le.rpm fd1e454ac8317bdce2fff1f21f78acf1fc299aded6da733fa4cff8abefa5238c
s390x bind-devel-9.16.23-18.el9_4.1.s390x.rpm 71e539a68214a74173f6fe92fa60be3ec7c28400842101607565c6cd9019d742
s390x bind-libs-9.16.23-18.el9_4.1.s390x.rpm bd375fbdf9e6af651316f0cb2677a847f55ff03aab99d51847370b1b43e73ef6
s390x bind-dnssec-utils-9.16.23-18.el9_4.1.s390x.rpm cfa95b34c82b7fa734a95f2213229dda189990dea4b11a17fc70d38fc52db571
s390x bind-utils-9.16.23-18.el9_4.1.s390x.rpm d651fd40033b2bee4c988f1084686e959cdaf8e11af9de733fc41dce97b8165e
s390x bind-dyndb-ldap-11.9-9.el9_4.alma.1.s390x.rpm d96b3bf06c0ef711f24a821f5e74c28c329aed8209e4697a4541e8f4d8feb709
s390x bind-chroot-9.16.23-18.el9_4.1.s390x.rpm f619354188b2370021b502de0b9b0d16e4b1c3d9e23d3362f1d6ee6ddc92c46d
s390x bind-9.16.23-18.el9_4.1.s390x.rpm fe48569595f8a63c043dfba3fb75994da60f4f588dd4f122a1ef29d70ca57c1a
x86_64 bind-dyndb-ldap-11.9-9.el9_4.alma.1.x86_64.rpm 019caf6fde7da83ef31d17cd9f73c34469e6bb901f8cd358ca81ed6551fe34b7
x86_64 bind-dnssec-utils-9.16.23-18.el9_4.1.x86_64.rpm 0bdac2c9fe92359c92cc3d1ecf8452e401e6fd9e062834c89d810a59ace115e4
x86_64 bind-chroot-9.16.23-18.el9_4.1.x86_64.rpm 1d9cab4dd2d1da8692ca148812de720621ad032eaed54c67aa4848a905e2cc78
x86_64 bind-9.16.23-18.el9_4.1.x86_64.rpm da554395a1769bfeeebc12e215ae08783728159822a415fbb9591704a216e360
x86_64 bind-utils-9.16.23-18.el9_4.1.x86_64.rpm e1fa4991dcc797ad11d0e7cde132d418677f9a3c16b4d523336289b428eeab16
x86_64 bind-devel-9.16.23-18.el9_4.1.x86_64.rpm e51ef145e049cb39beca061e774b1ce871a9705684ab10faadc47d494db11db3
x86_64 bind-libs-9.16.23-18.el9_4.1.x86_64.rpm f165e3c85dce5474bf3e0195b3c1c53852ad737190b6a15a02a055a355d5db8f
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.