ELSA-2024-1789

ELSA-2024-1789 - bind security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2024-04-11

Description


bind
[32:9.16.23-14.4]
- Rebuild with correct z-stream tag again

[32:9.16.23-14.3]
- Rebuild together with bind-dyndb-ldap to adjust ABI changes

[32:9.16.23-14.2]
- Import tests for large DNS messages fix
- Add downstream change complementing CVE-2023-50387

[32:9.16.23-14.1]
- Prevent increased CPU load on large DNS messages (CVE-2023-4408)
- Prevent assertion failure when nxdomain-redirect is used with
RFC 1918 reverse zones (CVE-2023-5517)
- Prevent assertion failure if DNS64 and serve-stale is used (CVE-2023-5679)
- Specific recursive query patterns may lead to an out-of-memory
condition (CVE-2023-6516)
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
CVE-2023-50868)

bind-dyndb-ldap
[11.9-8.3]
- Rebuild with correct z-stream tag again

[11.9-8.2]
- Rebuild required for BIND changes for KeyTrap change (CVE-2023-50387)


Related CVEs


CVE-2023-5517
CVE-2023-5679
CVE-2023-50387
CVE-2023-50868
CVE-2023-4408
CVE-2023-6516

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) bind-9.16.23-14.el9_3.4.src.rpmacdc3d89ec7a60f467aae9ef24b2b3f141af362932e4bbf2964c021fcbbb0608-ol9_aarch64_appstream
bind-9.16.23-14.el9_3.4.src.rpmacdc3d89ec7a60f467aae9ef24b2b3f141af362932e4bbf2964c021fcbbb0608-ol9_aarch64_codeready_builder
bind-dyndb-ldap-11.9-8.el9_3.3.src.rpm6e6fd40b638314b3dedeb2df87eb6a50e83d93fea96d496983a700930d6d6b7b-ol9_aarch64_appstream
bind-9.16.23-14.el9_3.4.aarch64.rpm5165c7ddf3680477681e0298758f30405be737c0123cd7ca5da2b8e6502d3eb1-ol9_aarch64_appstream
bind-chroot-9.16.23-14.el9_3.4.aarch64.rpm33ed6a954e7311e1206ac7c3b2930f5fa5908bfb101504f1fd698af88051981e-ol9_aarch64_appstream
bind-devel-9.16.23-14.el9_3.4.aarch64.rpmc78a055443f5fb0506aa9aa0fbcfcef8253ee57721eed9012d50c8a87a7f5cf0-ol9_aarch64_codeready_builder
bind-dnssec-doc-9.16.23-14.el9_3.4.noarch.rpm8ad7e2499807efd7920661d556ba78e981dd28216a4cf79a76e6f351c3ef26d2-ol9_aarch64_appstream
bind-dnssec-utils-9.16.23-14.el9_3.4.aarch64.rpme69feac5a2087a3f3a0c9db2c39e3616fa242d211dea81064a0c919598e2802b-ol9_aarch64_appstream
bind-doc-9.16.23-14.el9_3.4.noarch.rpm0ee3603cb2529d213b748e88199aabd077b6b6973281f0cc126426fada34d8a1-ol9_aarch64_codeready_builder
bind-dyndb-ldap-11.9-8.el9_3.3.aarch64.rpm2b62e35b45b434a871c4bddcb32461e8822e1baee41ac430e68c2f4a1fe57c9e-ol9_aarch64_appstream
bind-libs-9.16.23-14.el9_3.4.aarch64.rpmcb6cf6a6fbabc8d53301aa1ce0d345f14aabd6acbfe22c6cf5e9084f582f7322-ol9_aarch64_appstream
bind-license-9.16.23-14.el9_3.4.noarch.rpm000780b3b2cd126174730486b445875c77b9b136765767f440e1a3200720f9aa-ol9_aarch64_appstream
bind-utils-9.16.23-14.el9_3.4.aarch64.rpmb0aa972ac661a443bbf62d36322e3627c06336184db48e55286109f13127aa71-ol9_aarch64_appstream
python3-bind-9.16.23-14.el9_3.4.noarch.rpma4e31e102a15a23bc847990046d4489837eb328694699f0c9e7246fe4bf51ace-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) bind-9.16.23-14.el9_3.4.src.rpmacdc3d89ec7a60f467aae9ef24b2b3f141af362932e4bbf2964c021fcbbb0608-ol9_x86_64_appstream
bind-9.16.23-14.el9_3.4.src.rpmacdc3d89ec7a60f467aae9ef24b2b3f141af362932e4bbf2964c021fcbbb0608-ol9_x86_64_codeready_builder
bind-dyndb-ldap-11.9-8.el9_3.3.src.rpm6e6fd40b638314b3dedeb2df87eb6a50e83d93fea96d496983a700930d6d6b7b-ol9_x86_64_appstream
bind-9.16.23-14.el9_3.4.x86_64.rpmb50c95cf5441e1026673ac26c6d35437744a21a53c2b904b5923e3f3f97f3115-ol9_x86_64_appstream
bind-chroot-9.16.23-14.el9_3.4.x86_64.rpmbcd72c8229669278dcb2ecfbecfef38b18709eefdfdb54d138b1199dc00e8bd3-ol9_x86_64_appstream
bind-devel-9.16.23-14.el9_3.4.i686.rpmedd8f3adf5c869c0d7b7e4d4958d2f48e2d1963c5cf08197eeb922c98f0cb698-ol9_x86_64_codeready_builder
bind-devel-9.16.23-14.el9_3.4.x86_64.rpmabd376bc2aa567fd90920d87435792957440288ee7c072411b6704789aa3009b-ol9_x86_64_codeready_builder
bind-dnssec-doc-9.16.23-14.el9_3.4.noarch.rpm8ad7e2499807efd7920661d556ba78e981dd28216a4cf79a76e6f351c3ef26d2-ol9_x86_64_appstream
bind-dnssec-utils-9.16.23-14.el9_3.4.x86_64.rpm89f72b44b63342a7970ca51956784f00d93f8ccff79c2356cf3e3acbff9fcc0c-ol9_x86_64_appstream
bind-doc-9.16.23-14.el9_3.4.noarch.rpm0ee3603cb2529d213b748e88199aabd077b6b6973281f0cc126426fada34d8a1-ol9_x86_64_codeready_builder
bind-dyndb-ldap-11.9-8.el9_3.3.x86_64.rpmbf6f1fe902b92491399a517937e2fcff03409347ae1ba954b0eb5b72efb89fd5-ol9_x86_64_appstream
bind-libs-9.16.23-14.el9_3.4.i686.rpme6916478ee9708b6eb8f5fbc4f3144935d7a79f0aa64ff908d816ee0b065debe-ol9_x86_64_codeready_builder
bind-libs-9.16.23-14.el9_3.4.x86_64.rpm62a57fb96c03dbee45940d36ba43b3e3a0ecac73f5fe7b32d580238639f43ab7-ol9_x86_64_appstream
bind-license-9.16.23-14.el9_3.4.noarch.rpm000780b3b2cd126174730486b445875c77b9b136765767f440e1a3200720f9aa-ol9_x86_64_appstream
bind-utils-9.16.23-14.el9_3.4.x86_64.rpm42b46252faa7a8d5a0d5aa75f0b9d492fa6bf051f2f0ab657d5dc99d22010e31-ol9_x86_64_appstream
python3-bind-9.16.23-14.el9_3.4.noarch.rpma4e31e102a15a23bc847990046d4489837eb328694699f0c9e7246fe4bf51ace-ol9_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete