ELSA-2025-22205

ELSA-2025-22205 - bind security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-01-06

Description

[32:9.11.4-26.0.5.P2.16]
- Resolve CVE-2025-40778 [Orabug: 38699863]

[32:9.11.4-26.0.3.P2.16]
- Resolve CVE-2024-11187 [Orabug: 37616907]

[32:9.11.4-26.0.1.P2.16]
- Resolve CVE-2024-1975
- Resolve CVE-2024-1737
- Add ability to change runtime limits for max types and records per name

[32:9.11.4-26.P2.16]
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers

[32:9.11.4-26.P2.15]
- Limit the amount of recursion possible in control channel (CVE-2023-3341)

[32:9.11.4-26.P2.14]
- Prevent the cache going over the configured limit (CVE-2023-2828)

[32:9.11.4-26.P2.13]
- Tighten cache protection against record from forwarders (CVE-2021-25220)

[32:9.11.4-26.P2.12]
- Include test of forwarders (CVE-2021-25220)

[32:9.11.4-26.P2.11]
- Prevent excessive resource use while processing large delegations.
(CVE-2022-2795)

[32:9.11.4-26.P2.10]
- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)

Related CVEs

CVE-2025-40778

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 7 (x86_64)	bind-9.11.4-26.0.5.P2.el7_9.16.src.rpm	a5fe993955a4db384226144f6cd4d6c93d60cd3d18bd81ce14f04d5ce99c6683	-	ol7_x86_64_latest_ELS
	bind-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	faabc05251dd07d95ade33cc002d4a4c130d6d0e857b2edacb0c3110ffcea3c1	-	ol7_x86_64_latest_ELS
	bind-chroot-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	d1815df4e4d5cf5bb4b32d82e583b3ec63ee507d25d1e184e3d66d4019191654	-	ol7_x86_64_latest_ELS
	bind-devel-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	126a7cd81959b7db63467a75e53aa9e70475c6ab0b173655c52b8fcfc57e393e	-	ol7_x86_64_latest_ELS
	bind-devel-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	7eab6a18f901fd4f0808141556973b937893dd5b82b98e91aa85976ef18842be	-	ol7_x86_64_latest_ELS
	bind-export-devel-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	111f4dce6c55db0a643524df898f508440d5444206cd62a9880721aa3aad919e	-	ol7_x86_64_latest_ELS
	bind-export-devel-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	4ee985c1f8e6dc7aeee1b82d4a9d510f5bbc63720d1227f23871b5455d403ea0	-	ol7_x86_64_latest_ELS
	bind-export-libs-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	92eb4328830b31a2df34b1d946493a18279c8529de052cea850bb350948c33de	-	ol7_x86_64_latest_ELS
	bind-export-libs-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	5c594af22735c11833fce5c4d66821ff8510aad13a0e37254890eaed34137efc	-	ol7_x86_64_latest_ELS
	bind-libs-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	bb7bc9decb70be235341a1acfc3c29e707c6148b0aabb7e78eb2542b657f40f9	-	ol7_x86_64_latest_ELS
	bind-libs-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	497696fcb448524954a0b675f8989d3a64901e45d4ec74a48baa9e05f0ed3613	-	ol7_x86_64_latest_ELS
	bind-libs-lite-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	affd8b52be69fad2d3f2f511694537906c5c79436b93d68d507f216d8d70b1ef	-	ol7_x86_64_latest_ELS
	bind-libs-lite-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	d44b0feecf15c8c1bc777007d8eb4f66c31f19305923352e16a84031c8ad8799	-	ol7_x86_64_latest_ELS
	bind-license-9.11.4-26.0.5.P2.el7_9.16.noarch.rpm	240e9e61e9b1488be94dcbf659ab2cdffd83503841982c0a4872ee3963cc0766	-	ol7_x86_64_latest_ELS
	bind-lite-devel-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	5388dd62fb576e09a83e4ba5918a12cbf3002f14b7875c928ae040b0894a87bb	-	ol7_x86_64_latest_ELS
	bind-lite-devel-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	b2721e07e266d334ac232d95e945312576617799284153e524c7a72cb1a1132f	-	ol7_x86_64_latest_ELS
	bind-pkcs11-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	9c01b1f8dd8ae79d868d77b94a2a44eaf06a4bce861cee82d39930604552be87	-	ol7_x86_64_latest_ELS
	bind-pkcs11-devel-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	48df162da247b0ef5ba84d8dbb6863ad74a594778df6259b7ffb8e81992234dd	-	ol7_x86_64_latest_ELS
	bind-pkcs11-devel-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	7d4a27d66382baec4849210116145b29749ee2d9ff67286046e8bbfb48090898	-	ol7_x86_64_latest_ELS
	bind-pkcs11-libs-9.11.4-26.0.5.P2.el7_9.16.i686.rpm	efe5ebe0136ce4000c294ed609db917aaa8929cd0aebfa373e6a07b275dd2993	-	ol7_x86_64_latest_ELS
	bind-pkcs11-libs-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	e73e4b70ab5fd0cc5c337672c19e8ad72be69c7c2d820dbdb7cf2f19783662bf	-	ol7_x86_64_latest_ELS
	bind-pkcs11-utils-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	c8b02dcced3b8b211ffe4e2f6c0830e74355cc770f7ab08b78effe5ecb0d07b5	-	ol7_x86_64_latest_ELS
	bind-sdb-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	8d75dfb0a113ce120a1fcf540f9cfc628d062637566f01251ac21c91242399b3	-	ol7_x86_64_latest_ELS
	bind-sdb-chroot-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	0746310d25510e369857e71ba34e16ee2421dd7c84230509cbc28215eebc0029	-	ol7_x86_64_latest_ELS
	bind-utils-9.11.4-26.0.5.P2.el7_9.16.x86_64.rpm	02c0c30e6060250b2f2b85712a3f82cf65f5a78b88818f8001f1b2697f171142	-	ol7_x86_64_latest_ELS

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team