ELSA-2024-1781

ULN >
Oracle Linux Errata repository >
ELSA-2024-1781

ELSA-2024-1781 - bind9.16 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-04-11

Description

[32:9.16.23-0.16.2]
- Prevent crashing at masterformat system test (CVE-2023-6516)

[32:9.16.23-0.16.1]
- Prevent increased CPU load on large DNS messages (CVE-2023-4408)
- Prevent assertion failure when nxdomain-redirect is used with
RFC 1918 reverse zones (CVE-2023-5517)
- Prevent assertion failure if DNS64 and serve-stale is used (CVE-2023-5679)
- Specific recursive query patterns may lead to an out-of-memory
condition (CVE-2023-6516)
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
CVE-2023-50868)
- Import tests for large DNS messages fix
- Add downstream change complementing CVE-2023-50387

[32:9.16.23-0.16]
- Limit the amount of recursion possible in control channel (CVE-2023-3341)

[32:9.16.23-0.15]
- Strengten cache cleaning to prevent overflowing configured limit
(CVE-2023-2828)

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	bind9.16-9.16.23-0.16.el8_9.2.src.rpm	b49c13e29ab8d6f6454863d7479b520a	-	ol8_aarch64_appstream
	bind9.16-9.16.23-0.16.el8_9.2.src.rpm	b49c13e29ab8d6f6454863d7479b520a	-	ol8_aarch64_codeready_builder
	bind9.16-9.16.23-0.16.el8_9.2.aarch64.rpm	b7f04c65cf24495bea54ed55dfcb44f9	-	ol8_aarch64_appstream
	bind9.16-chroot-9.16.23-0.16.el8_9.2.aarch64.rpm	d4b328b78714e5f666bdcebe8c6c5f28	-	ol8_aarch64_appstream
	bind9.16-devel-9.16.23-0.16.el8_9.2.aarch64.rpm	0d304ca7de3d257a9f0a5e36241af8e8	-	ol8_aarch64_codeready_builder
	bind9.16-dnssec-utils-9.16.23-0.16.el8_9.2.aarch64.rpm	208bcc7e10508f6d9cecd9428fab17ca	-	ol8_aarch64_appstream
	bind9.16-doc-9.16.23-0.16.el8_9.2.noarch.rpm	b68d9a19fcabcb2e87b4835c7ca2006d	-	ol8_aarch64_codeready_builder
	bind9.16-libs-9.16.23-0.16.el8_9.2.aarch64.rpm	6033e4d9b7a0188db64db7827d832abc	-	ol8_aarch64_appstream
	bind9.16-license-9.16.23-0.16.el8_9.2.noarch.rpm	cba3b8d9b1c973da1d13f4025fc55b0c	-	ol8_aarch64_appstream
	bind9.16-utils-9.16.23-0.16.el8_9.2.aarch64.rpm	b487f98c558c813f16093667c7fbe2aa	-	ol8_aarch64_appstream
	python3-bind9.16-9.16.23-0.16.el8_9.2.noarch.rpm	3bbf759dc557888d449b91fda75a06ad	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	bind9.16-9.16.23-0.16.el8_9.2.src.rpm	b49c13e29ab8d6f6454863d7479b520a	-	ol8_x86_64_appstream
	bind9.16-9.16.23-0.16.el8_9.2.src.rpm	b49c13e29ab8d6f6454863d7479b520a	-	ol8_x86_64_codeready_builder
	bind9.16-9.16.23-0.16.el8_9.2.x86_64.rpm	66f60782945b9e4b7d792570228d5215	-	ol8_x86_64_appstream
	bind9.16-chroot-9.16.23-0.16.el8_9.2.x86_64.rpm	bf0408b0ed8a6cf065a496fc7c2af344	-	ol8_x86_64_appstream
	bind9.16-devel-9.16.23-0.16.el8_9.2.i686.rpm	43ac4f2a767cf4405406326f8533aa97	-	ol8_x86_64_codeready_builder
	bind9.16-devel-9.16.23-0.16.el8_9.2.x86_64.rpm	102ee91266bf40cf60ad4118703fb884	-	ol8_x86_64_codeready_builder
	bind9.16-dnssec-utils-9.16.23-0.16.el8_9.2.x86_64.rpm	aac9a831072451a84cc32c8c2140673b	-	ol8_x86_64_appstream
	bind9.16-doc-9.16.23-0.16.el8_9.2.noarch.rpm	b68d9a19fcabcb2e87b4835c7ca2006d	-	ol8_x86_64_codeready_builder
	bind9.16-libs-9.16.23-0.16.el8_9.2.i686.rpm	de40dad23710d2b08ab413c13bb6ec3d	-	ol8_x86_64_codeready_builder
	bind9.16-libs-9.16.23-0.16.el8_9.2.x86_64.rpm	fcf7aa3cea1525cd3213981ddac2fb50	-	ol8_x86_64_appstream
	bind9.16-license-9.16.23-0.16.el8_9.2.noarch.rpm	cba3b8d9b1c973da1d13f4025fc55b0c	-	ol8_x86_64_appstream
	bind9.16-utils-9.16.23-0.16.el8_9.2.x86_64.rpm	4be71f250950df9db6df98f74563ed21	-	ol8_x86_64_appstream
	python3-bind9.16-9.16.23-0.16.el8_9.2.noarch.rpm	3bbf759dc557888d449b91fda75a06ad	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691