Stay Connected:

ELSA-2025-19912

ELSA-2025-19912 - bind security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2025-11-06

Description


[9.18.33-4.0.1]
- Fix warning when changing device file permissions [Orabug: 36518580]

[9.18.33-4.2]
- Fix upstream reported regression in recent CVE fix (CVE-2025-8677)

[9.18.33-4.1]
- Refuse malformed DNSKEY records (CVE-2025-8677)
- Address various spoofing attacks (CVE-2025-40778)
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)


Related CVEs


CVE-2025-40778
CVE-2025-8677
CVE-2025-40780

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 10 (aarch64) bind-9.18.33-4.0.1.el10_0.2.src.rpm20b806b42757558bbb1ee313fb0600694acc466c808bf9dfd0e74efe90bd70ed-ol10_aarch64_appstream
bind-9.18.33-4.0.1.el10_0.2.src.rpm20b806b42757558bbb1ee313fb0600694acc466c808bf9dfd0e74efe90bd70ed-ol10_aarch64_codeready_builder
bind-9.18.33-4.0.1.el10_0.2.aarch64.rpma8ec7ed06087f20cb14c0d8afa93337a4de7f6ab61a0f4b794394ed441246ba2-ol10_aarch64_appstream
bind-chroot-9.18.33-4.0.1.el10_0.2.aarch64.rpmde124e2c1c7657a9e93a95f950a2b9994aac420338014416574c7fbeeb6c61df-ol10_aarch64_appstream
bind-devel-9.18.33-4.0.1.el10_0.2.aarch64.rpmdb6f5b4c3b293e4dbbb88046a5f2a94b0343398d6b9e5886ec6451e9d2f65498-ol10_aarch64_codeready_builder
bind-dnssec-utils-9.18.33-4.0.1.el10_0.2.aarch64.rpm0ecfb34809888e285857d13dc74df54a81d74d85b1b2bb6390364e2c1223505e-ol10_aarch64_appstream
bind-doc-9.18.33-4.0.1.el10_0.2.noarch.rpmfbe292263692702c8ac14b22ff959ce62788dd695e5ba42c6d7728e9bd66b518-ol10_aarch64_codeready_builder
bind-libs-9.18.33-4.0.1.el10_0.2.aarch64.rpmd9e1bb46a58b81066bf3675dcd14cf099b480b2cd8a0aaa8f199254249f26729-ol10_aarch64_appstream
bind-license-9.18.33-4.0.1.el10_0.2.noarch.rpmb3da929238c425de9daaf17a3628d1fe0fff01707574b6639e6b091d1ca275af-ol10_aarch64_appstream
bind-utils-9.18.33-4.0.1.el10_0.2.aarch64.rpm5be3bcf274e8f89c20ad7712538ba7391cdc870f174b9a5b1eb4f67695c7895a-ol10_aarch64_appstream
Oracle Linux 10 (x86_64) bind-9.18.33-4.0.1.el10_0.2.src.rpm20b806b42757558bbb1ee313fb0600694acc466c808bf9dfd0e74efe90bd70ed-ol10_x86_64_appstream
bind-9.18.33-4.0.1.el10_0.2.src.rpm20b806b42757558bbb1ee313fb0600694acc466c808bf9dfd0e74efe90bd70ed-ol10_x86_64_codeready_builder
bind-9.18.33-4.0.1.el10_0.2.x86_64.rpm4348a56f25fef54e47a16abe69aff284fc7cd25030208a8736ea1fdf23f06ae8-ol10_x86_64_appstream
bind-chroot-9.18.33-4.0.1.el10_0.2.x86_64.rpmed01295054113acbc1dcbc114e32a10e2dd5995dc92651c1dfdce78fb8db07dc-ol10_x86_64_appstream
bind-devel-9.18.33-4.0.1.el10_0.2.x86_64.rpm8fd85843150f1d42cb635eb6fe81c65949409ca82ac8d65b2f6ac58b31ef0dc0-ol10_x86_64_codeready_builder
bind-dnssec-utils-9.18.33-4.0.1.el10_0.2.x86_64.rpm8159e061f07486158100e77025acd8dcbd02011e03339bd8c75fe2a2494b8d65-ol10_x86_64_appstream
bind-doc-9.18.33-4.0.1.el10_0.2.noarch.rpmfbe292263692702c8ac14b22ff959ce62788dd695e5ba42c6d7728e9bd66b518-ol10_x86_64_codeready_builder
bind-libs-9.18.33-4.0.1.el10_0.2.x86_64.rpm7be57ce1d624eddd49f4dfbfececf7da5666141be140df4730dd8496d71defc7-ol10_x86_64_appstream
bind-license-9.18.33-4.0.1.el10_0.2.noarch.rpmb3da929238c425de9daaf17a3628d1fe0fff01707574b6639e6b091d1ca275af-ol10_x86_64_appstream
bind-utils-9.18.33-4.0.1.el10_0.2.x86_64.rpm8b320fdd2977b261da6753b88a58578152927efd599b48003879b15f86c37bfc-ol10_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights