ELSA-2024-1789

ELSA-2024-1789 - bind security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-04-11

Description

bind
[32:9.16.23-14.4]
- Rebuild with correct z-stream tag again

[32:9.16.23-14.3]
- Rebuild together with bind-dyndb-ldap to adjust ABI changes

[32:9.16.23-14.2]
- Import tests for large DNS messages fix
- Add downstream change complementing CVE-2023-50387

[32:9.16.23-14.1]
- Prevent increased CPU load on large DNS messages (CVE-2023-4408)
- Prevent assertion failure when nxdomain-redirect is used with
RFC 1918 reverse zones (CVE-2023-5517)
- Prevent assertion failure if DNS64 and serve-stale is used (CVE-2023-5679)
- Specific recursive query patterns may lead to an out-of-memory
condition (CVE-2023-6516)
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
CVE-2023-50868)

bind-dyndb-ldap
[11.9-8.3]
- Rebuild with correct z-stream tag again

[11.9-8.2]
- Rebuild required for BIND changes for KeyTrap change (CVE-2023-50387)

Related CVEs

CVE-2023-5517

CVE-2023-5679

CVE-2023-50387

CVE-2023-50868

CVE-2023-4408

CVE-2023-6516

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label
Oracle Linux 9 (aarch64)	bind-9.16.23-14.el9_3.4.src.rpm	b8e3009b9a9091da795d6c4bc42ab277	-	ol9_aarch64_appstream
	bind-9.16.23-14.el9_3.4.src.rpm	b8e3009b9a9091da795d6c4bc42ab277	-	ol9_aarch64_codeready_builder
	bind-dyndb-ldap-11.9-8.el9_3.3.src.rpm	ccc654e45607e9593a7b992bbec35a2e	-	ol9_aarch64_appstream
	bind-9.16.23-14.el9_3.4.aarch64.rpm	af42a52f2b491fb42a07f73e8fdc0fda	-	ol9_aarch64_appstream
	bind-chroot-9.16.23-14.el9_3.4.aarch64.rpm	017e64ac21be2ba64f4df2604b11d122	-	ol9_aarch64_appstream
	bind-devel-9.16.23-14.el9_3.4.aarch64.rpm	c4b0ab949cc7347647a434aebe8513a0	-	ol9_aarch64_codeready_builder
	bind-dnssec-doc-9.16.23-14.el9_3.4.noarch.rpm	290534c3fe2432c26723c9916f97d39e	-	ol9_aarch64_appstream
	bind-dnssec-utils-9.16.23-14.el9_3.4.aarch64.rpm	f4094fd1755bf25e4e0920aae310f3f4	-	ol9_aarch64_appstream
	bind-doc-9.16.23-14.el9_3.4.noarch.rpm	8cb83b77cc642b8b7d0fc0c0e295ef7d	-	ol9_aarch64_codeready_builder
	bind-dyndb-ldap-11.9-8.el9_3.3.aarch64.rpm	e97845402401d67b7241031b8f8471e6	-	ol9_aarch64_appstream
	bind-libs-9.16.23-14.el9_3.4.aarch64.rpm	98e728f4a26a1904efda96f8dfc1d931	-	ol9_aarch64_appstream
	bind-license-9.16.23-14.el9_3.4.noarch.rpm	3a3fe6679ef401b109ecb3573055367a	-	ol9_aarch64_appstream
	bind-utils-9.16.23-14.el9_3.4.aarch64.rpm	69de5e7a03a0b6b79ca9d937d26d0de9	-	ol9_aarch64_appstream
	python3-bind-9.16.23-14.el9_3.4.noarch.rpm	3f3b5307985da8108247b2b35421956f	-	ol9_aarch64_appstream
Oracle Linux 9 (x86_64)	bind-9.16.23-14.el9_3.4.src.rpm	b8e3009b9a9091da795d6c4bc42ab277	-	ol9_x86_64_appstream
	bind-9.16.23-14.el9_3.4.src.rpm	b8e3009b9a9091da795d6c4bc42ab277	-	ol9_x86_64_codeready_builder
	bind-dyndb-ldap-11.9-8.el9_3.3.src.rpm	ccc654e45607e9593a7b992bbec35a2e	-	ol9_x86_64_appstream
	bind-9.16.23-14.el9_3.4.x86_64.rpm	01572d471667b5813386b18c9c3ad083	-	ol9_x86_64_appstream
	bind-chroot-9.16.23-14.el9_3.4.x86_64.rpm	40e256c321753ff16225a3c48effbeb8	-	ol9_x86_64_appstream
	bind-devel-9.16.23-14.el9_3.4.i686.rpm	80d184b76645d98a5af6ddf331eaac5f	-	ol9_x86_64_codeready_builder
	bind-devel-9.16.23-14.el9_3.4.x86_64.rpm	3094d806b850fcd53065a4aeece3febf	-	ol9_x86_64_codeready_builder
	bind-dnssec-doc-9.16.23-14.el9_3.4.noarch.rpm	290534c3fe2432c26723c9916f97d39e	-	ol9_x86_64_appstream
	bind-dnssec-utils-9.16.23-14.el9_3.4.x86_64.rpm	a3c6cfbf17f274ae8e928ae59324bf16	-	ol9_x86_64_appstream
	bind-doc-9.16.23-14.el9_3.4.noarch.rpm	8cb83b77cc642b8b7d0fc0c0e295ef7d	-	ol9_x86_64_codeready_builder
	bind-dyndb-ldap-11.9-8.el9_3.3.x86_64.rpm	b5d5ea9aea743ebdcbfd670c66d5d3e4	-	ol9_x86_64_appstream
	bind-libs-9.16.23-14.el9_3.4.i686.rpm	d05078201fe8c04e9fffb1a8aabd7ff9	-	ol9_x86_64_codeready_builder
	bind-libs-9.16.23-14.el9_3.4.x86_64.rpm	9eccbd93ccb7ceaa0f3cf56f89a42475	-	ol9_x86_64_appstream
	bind-license-9.16.23-14.el9_3.4.noarch.rpm	3a3fe6679ef401b109ecb3573055367a	-	ol9_x86_64_appstream
	bind-utils-9.16.23-14.el9_3.4.x86_64.rpm	c892edf17552b8a879f8dd8c506c588b	-	ol9_x86_64_appstream
	python3-bind-9.16.23-14.el9_3.4.noarch.rpm	3f3b5307985da8108247b2b35421956f	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team