ELSA-2023-2792

ELSA-2023-2792 - bind9.16 security and bug fix update

Type:SECURITY
Severity:MODERATE
Release Date:2023-05-24

Description


[32:9.16.23-0.14]
- Handle subtle difference between upstream and rhel (CVE-2022-3094)

[32:9.16.23-0.13]
- Prevent flooding with UPDATE requests (CVE-2022-3094)
- Handle RRSIG queries when server-stale is active (CVE-2022-3736)
- Fix crash when soft-quota is reached and serve-stale is active (CVE-2022-3924)

[32:9.16.23-0.12]
- Include bind9.16-dnssec-utils in public repository (#2115322)

[32:9.16.23-0.11]
- Bound the amount of work performed for delegations (CVE-2022-2795)

[32:9.16.23-0.10]
- Fix possible serve-stale related crash (CVE-2022-3080)
- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)


Related CVEs


CVE-2022-3094
CVE-2022-3924
CVE-2022-3736
CVE-2022-2795

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) bind9.16-9.16.23-0.14.el8.src.rpm1f9a92ba9ad4ea204d58fbf1dfdcb202-
bind9.16-9.16.23-0.14.el8.aarch64.rpm57419782bd03389be109e6f5d8758000-
bind9.16-chroot-9.16.23-0.14.el8.aarch64.rpm5f5dc4de1a3a6a92f4cf54414e80c2fa-
bind9.16-devel-9.16.23-0.14.el8.aarch64.rpmbfdfc2a37b0f9405e3ec791f67100655-
bind9.16-dnssec-utils-9.16.23-0.14.el8.aarch64.rpm7ab0b1fdbfa953edd67c928af2705b70-
bind9.16-doc-9.16.23-0.14.el8.noarch.rpmc386ee9e25303f3d0240e9990bd3ec7f-
bind9.16-libs-9.16.23-0.14.el8.aarch64.rpm4d164f2d2e94c6b028a2a6359addce07-
bind9.16-license-9.16.23-0.14.el8.noarch.rpmcbc27524e9e087adf1b6cd54af116967-
bind9.16-utils-9.16.23-0.14.el8.aarch64.rpm12a2da18b2874d2e10aa655cf6f32b2e-
python3-bind9.16-9.16.23-0.14.el8.noarch.rpm40981e732c45c9f1da7330b95c3bd1bf-
Oracle Linux 8 (x86_64) bind9.16-9.16.23-0.14.el8.src.rpm1f9a92ba9ad4ea204d58fbf1dfdcb202-
bind9.16-9.16.23-0.14.el8.x86_64.rpmec7a05e8c0481c429691622be56f49a2-
bind9.16-chroot-9.16.23-0.14.el8.x86_64.rpm159f4ccb05c669dbbbe291c3a86b47f6-
bind9.16-devel-9.16.23-0.14.el8.i686.rpmb9787e250fa3d9ec827572c984b9e990-
bind9.16-devel-9.16.23-0.14.el8.x86_64.rpm09fba23bb3cb0fb5c6374e646dea4e64-
bind9.16-dnssec-utils-9.16.23-0.14.el8.x86_64.rpmaea7e98baae7f330f81b2e3ed4df106c-
bind9.16-doc-9.16.23-0.14.el8.noarch.rpmc386ee9e25303f3d0240e9990bd3ec7f-
bind9.16-libs-9.16.23-0.14.el8.i686.rpm5009fe455ea20c366e4e9af9b1bdb412-
bind9.16-libs-9.16.23-0.14.el8.x86_64.rpmde563a33d7b6a880a6baec81c109f0ca-
bind9.16-license-9.16.23-0.14.el8.noarch.rpmcbc27524e9e087adf1b6cd54af116967-
bind9.16-utils-9.16.23-0.14.el8.x86_64.rpm9469df36a7a3059ccffe28136ac8b9e9-
python3-bind9.16-9.16.23-0.14.el8.noarch.rpm40981e732c45c9f1da7330b95c3bd1bf-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete