ALSA-2025:19950

[ALSA-2025:19950] Important: bind9.18 security update

Type:

security

Severity:

important

Release date:

2025-11-19

Description:

BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating properly.  

Security Fix(es):  

  * bind: Cache poisoning attacks with unsolicited RRs (CVE-2025-40778)
  * bind: Cache poisoning due to weak PRNG (CVE-2025-40780)
  * bind: Resource exhaustion via malformed DNSKEY handling (CVE-2025-8677)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	bind9.18-chroot-9.18.29-4.el9_6.2.aarch64.rpm	1cd4ae04c22e23cab6398d375dada8cf5ea354c45f2d8e292ae6d67df2a36dc4
aarch64	bind9.18-9.18.29-4.el9_6.2.aarch64.rpm	1dd34f23289eb1c2db9a9064cf862fc6f75756a1f2a7711e24ba301109c07f8d
aarch64	bind9.18-devel-9.18.29-4.el9_6.2.aarch64.rpm	22cd1b1e02143e36939baec0c2607d6a274228b5f2ac6ce23b9b51c17b75a943
aarch64	bind9.18-libs-9.18.29-4.el9_6.2.aarch64.rpm	a7adb9153823be008a606cf76d9210d92d95ad2f816fd77b48f70f15265aa1fd
aarch64	bind9.18-dnssec-utils-9.18.29-4.el9_6.2.aarch64.rpm	b33df7da9851e93f56c294c857cdb5c70164f67e3c765c66189a5554f85587a1
aarch64	bind9.18-utils-9.18.29-4.el9_6.2.aarch64.rpm	ef4d9db9c4a52a7f7cb02940465536048af39e0451ed6b48e6272da912f5c063
i686	bind9.18-libs-9.18.29-4.el9_6.2.i686.rpm	b38d4bd2b0a60136981a0e2d346f9dad6c43e48f68d18624ea8af9417c9cc907
i686	bind9.18-devel-9.18.29-4.el9_6.2.i686.rpm	d282ce314cd3827c64912e7e07e245c3a022382b6fa779781cef4bea54f303e4
noarch	bind9.18-doc-9.18.29-4.el9_6.2.noarch.rpm	96d3c97bb463ee4e457f2ba7e81f71eac1d9181a66f082476952e3305244b877
ppc64le	bind9.18-dnssec-utils-9.18.29-4.el9_6.2.ppc64le.rpm	04851a397b9e7b4657e5151b57ce7a482da6e83ddfc095e265a538b98cf0dd77
ppc64le	bind9.18-devel-9.18.29-4.el9_6.2.ppc64le.rpm	4e29b705221aa13081d90846ba55e6ae78bd5d07dd506904d6dbda00be944a01
ppc64le	bind9.18-libs-9.18.29-4.el9_6.2.ppc64le.rpm	9e3da8e3db48d6c4e9ce8e358228c61c785dda843025173766c95966d6934744
ppc64le	bind9.18-chroot-9.18.29-4.el9_6.2.ppc64le.rpm	a1ef9be9ac9e0a95c84e888bf82b03c2e163105a480be573eb2038b65254c5b2
ppc64le	bind9.18-utils-9.18.29-4.el9_6.2.ppc64le.rpm	bf9e3bd59766393a720215f6a6b2edfc3787d0cbea503d1c9278ba8b64ddc6b5
ppc64le	bind9.18-9.18.29-4.el9_6.2.ppc64le.rpm	d76c05a88039e354640c7f8042d7fb544eb5ff8496449ba27df19a258a70819f
s390x	bind9.18-devel-9.18.29-4.el9_6.2.s390x.rpm	078d9155080db8f68c8c9cbef17797bb0094c9445a0ae15828a65853f4e37cb5
s390x	bind9.18-libs-9.18.29-4.el9_6.2.s390x.rpm	2d5423ac3a99092b25ad8b254f639ecc9ab5b521574beed313b7a5dd3090977d
s390x	bind9.18-utils-9.18.29-4.el9_6.2.s390x.rpm	9aa267683c27b2d9259355f6552427f94ac0e37ee56f4a85fa0c3e0610694b4a
s390x	bind9.18-9.18.29-4.el9_6.2.s390x.rpm	9cf81e3eb0eb75f39560365cc9d2d55894c19c58537a7882dfbcd011d991bba5
s390x	bind9.18-chroot-9.18.29-4.el9_6.2.s390x.rpm	bf5e279508f29f0237a6d4961adf8ed7b12115a461accf93acf9b016d333814b
s390x	bind9.18-dnssec-utils-9.18.29-4.el9_6.2.s390x.rpm	db48aa6836da3ee0b0939cf6c8f4650d633cd15c9db2730adac170ff000304af
x86_64	bind9.18-devel-9.18.29-4.el9_6.2.x86_64.rpm	0a13cdf697e1a03e208347f6e86fa780617794b7b249b07d621093f30cc5318f
x86_64	bind9.18-chroot-9.18.29-4.el9_6.2.x86_64.rpm	205b88fb5bc6e7b442eecdee336789d5e110540dd8b557e0455aa276d47bcd92
x86_64	bind9.18-9.18.29-4.el9_6.2.x86_64.rpm	905c855675a16e025a4942f4792c3fb2fcce86ecf767e08d33526fa4bfabf662
x86_64	bind9.18-dnssec-utils-9.18.29-4.el9_6.2.x86_64.rpm	eccc41a3a3cc0353ac4035417a627eb99adef73b0451d86eed34af3139a1e73e
x86_64	bind9.18-utils-9.18.29-4.el9_6.2.x86_64.rpm	f402f24352e15b569fdfcce2503f064b530d2f65e23bab246b54e861a139ecd4
x86_64	bind9.18-libs-9.18.29-4.el9_6.2.x86_64.rpm	f419a2c405d6466529e95fdfdb51712201d6f609f5c608ceaa328ae626ae141b

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.