[ALSA-2026:24368] Important: bind9.18 security update
Type:
security
Severity:
important
Release date:
2026-07-02
Description:
BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating properly. Security Fix(es): * bind: BIND 9 server memory exhaustion during GSS-API TKEY negotiation (CVE-2026-3039) * bind: BIND: Denial of Service via specially crafted DNS messages (CVE-2026-5946) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 bind9.18-9.18.29-14.el9_8.2.aarch64.rpm 420ef93c4ddfe2bc49d04e31d7bf3d546679d674506e71437879e7cf887a7a39
aarch64 bind9.18-utils-9.18.29-14.el9_8.2.aarch64.rpm 610175e0a08bc5ca2df044c42930c410374081298786c4c8149ac9ec8f5f8efb
aarch64 bind9.18-dnssec-utils-9.18.29-14.el9_8.2.aarch64.rpm 79f0ca82c283ed1d0b09d8e894eda078d498a9dc583a648cf79e4676f50e9a51
aarch64 bind9.18-libs-9.18.29-14.el9_8.2.aarch64.rpm 7c8958275d57a1e0d085bcf25c22126c5800080e1573e3134eb132206cd93734
aarch64 bind9.18-devel-9.18.29-14.el9_8.2.aarch64.rpm eb77401ae06335edf464011725a4347d009c1824909e44dcbc542827e2015e4a
aarch64 bind9.18-chroot-9.18.29-14.el9_8.2.aarch64.rpm ffff0bd3b92284446691a5b5d6ae41b4b5994e8c760eb261cdcd52e4fec328ac
i686 bind9.18-libs-9.18.29-14.el9_8.2.i686.rpm c47222191b9561dee41b8863985e5834ae3436f89d9b9a2772e79ae024ea46f6
i686 bind9.18-devel-9.18.29-14.el9_8.2.i686.rpm dc8a97a95ec7ffc977d4e36d622413880af6c6d70e72e5a5981ad2d01e444714
noarch bind9.18-doc-9.18.29-14.el9_8.2.noarch.rpm 68a27d03850179ffcde06f989314cd19345ba7c77add31751ac85aa364d71405
ppc64le bind9.18-chroot-9.18.29-14.el9_8.2.ppc64le.rpm 07ffc5eaec7f7207446c72bcb2d32e83bcb1e61050080b48d67017e8e44138d1
ppc64le bind9.18-devel-9.18.29-14.el9_8.2.ppc64le.rpm 2d3494dc5f826123374a4b13bd2ebdbccbafa9159f299404425b17f5e0bb41d1
ppc64le bind9.18-9.18.29-14.el9_8.2.ppc64le.rpm 3679f92a21af180ac1145a48028591ec8cda2b92550c681a42b151623132bcf9
ppc64le bind9.18-libs-9.18.29-14.el9_8.2.ppc64le.rpm 9cbf1edb52c895e4605d2b6ab3d49bee0440b8403ec1e7b208f508f99756e906
ppc64le bind9.18-utils-9.18.29-14.el9_8.2.ppc64le.rpm dc2ca66002b16c760da6a1b709404f5cefdc3f2d9d94bf4cc1069e2af5a6bd4e
ppc64le bind9.18-dnssec-utils-9.18.29-14.el9_8.2.ppc64le.rpm fd7572ade4ea428e23d68ce402726a9288bcc8b62e9c208642db756a3fb12abd
s390x bind9.18-utils-9.18.29-14.el9_8.2.s390x.rpm 322ff1c9493a5c144554a711e14f86f4efd81c42ac7d2ecf77d8b63dfbd9e76c
s390x bind9.18-chroot-9.18.29-14.el9_8.2.s390x.rpm 5dd02ae3d51c9a77c2fcb73963bef540d52515a876c08b56279337f89b99a965
s390x bind9.18-dnssec-utils-9.18.29-14.el9_8.2.s390x.rpm 8a66be4c64da88cea18ce45bfac36a4d26110ee66601db75d8b412a4b41b6274
s390x bind9.18-libs-9.18.29-14.el9_8.2.s390x.rpm a04783efe76932a1ecf029500aeb82e440b13ef313d48465db7274ae8c0c9778
s390x bind9.18-devel-9.18.29-14.el9_8.2.s390x.rpm adc0fcc39a325a13e46ca73a0601e8d9175a8afe8dab3f6611d9b6a9118d814e
s390x bind9.18-9.18.29-14.el9_8.2.s390x.rpm c430d8db0bca86280948cc164f6cd8d267035e8bfb1e741c555300810630febd
x86_64 bind9.18-libs-9.18.29-14.el9_8.2.x86_64.rpm 469069e33b121d33c27d04ff930a7729b10ddbbd6febbf2585c7a26a75a84388
x86_64 bind9.18-devel-9.18.29-14.el9_8.2.x86_64.rpm 5dda94e0eb4e43ed8e306596a363d7eadde459ff130af7a3b06da22d0d3b018a
x86_64 bind9.18-dnssec-utils-9.18.29-14.el9_8.2.x86_64.rpm 5f75a3de576826df7c005baf8dd595c90c696237556c84b4dcf671af16a3961b
x86_64 bind9.18-utils-9.18.29-14.el9_8.2.x86_64.rpm 7f9d776b2fab62b3206f49d4994aaa3657ac63a49cd0c071d97afbd09dc00ef6
x86_64 bind9.18-9.18.29-14.el9_8.2.x86_64.rpm e5fda86215e0b7cd818e237e917bd9564b949284875d1664ad3c715efa311a5c
x86_64 bind9.18-chroot-9.18.29-14.el9_8.2.x86_64.rpm ec28995e185f2bfb2aed8d9a4acc7532feae3d76a981a7d8d62ac5ce05461ee5
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.