ELSA-2026-18786

ULN >
Oracle Linux Errata repository >
ELSA-2026-18786

ELSA-2026-18786 - bind security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-06-12

Description

[9.16.23-40.0.1.el9_8.1]
- Fix warning when changing device file permissions [Orabug: 36518580]

[32:9.16.23-40.1]
- Prevent Denial of Service via maliciously crafted DNSSEC-validated zone
(CVE-2026-1519)

[32:9.16.23-40]
- Add forgotten _libdir/named into bind-chroot tmpfiles (RHEL-135629)

[32:9.16.23-39]
- Backport fix for nameserver line processing. (RHEL-79714)

[32:9.16.23-38]
- Add sysusers named user creation (RHEL-132053)

[32:9.16.23-37]
- Create /var/named directories for bind-chroot (RHEL-132053)

[32:9.16.23-36]
- Copy named.* files from /var/named into /usr/share/named

[32:9.16.23-35]
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)
- Replace downstream fixes with upstream changes
- Address various spoofing attacks (CVE-2025-40778)

Related CVEs

CVE-2025-8677

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	bind-9.16.23-40.0.1.el9_8.1.src.rpm	64f639783894c178a0b71976ea3de2757e75aa721d10e6feb293ccb84eae2fc3	-	ol9_aarch64_appstream
	bind-9.16.23-40.0.1.el9_8.1.src.rpm	64f639783894c178a0b71976ea3de2757e75aa721d10e6feb293ccb84eae2fc3	-	ol9_aarch64_codeready_builder
	bind-9.16.23-40.0.1.el9_8.1.aarch64.rpm	a726f8c7c15456bd6d4f42693e746d86c19a2881a494a39ed78f9a01e4468e9b	-	ol9_aarch64_appstream
	bind-chroot-9.16.23-40.0.1.el9_8.1.aarch64.rpm	4d62597fe791a47d76cf49de32ced42e8f8eb95846341009803262849521af8f	-	ol9_aarch64_appstream
	bind-devel-9.16.23-40.0.1.el9_8.1.aarch64.rpm	73465dc7dad0990f218692952a20e0d6454bb639f85c00a565c718a725a0fd20	-	ol9_aarch64_codeready_builder
	bind-dnssec-doc-9.16.23-40.0.1.el9_8.1.noarch.rpm	efbf65fc9d00d6b3ade270f9cfebbad4771ff21a5c959608bdf613e56648c6b8	-	ol9_aarch64_appstream
	bind-dnssec-utils-9.16.23-40.0.1.el9_8.1.aarch64.rpm	d6b2a39a51595b481e3ebb5740a3450a298adab9b5f307d0f90d9b589e4f0095	-	ol9_aarch64_appstream
	bind-doc-9.16.23-40.0.1.el9_8.1.noarch.rpm	3d55aa3405b882dd1597d0c9042685042b17520a52165924aff46a1f13685ffb	-	ol9_aarch64_codeready_builder
	bind-libs-9.16.23-40.0.1.el9_8.1.aarch64.rpm	f2a2b0184999ae4ccea6be1b23cec8a1a48d22bee9f2d3bfc64727d5de8cbf21	-	ol9_aarch64_appstream
	bind-license-9.16.23-40.0.1.el9_8.1.noarch.rpm	329fbc939e6d13e7a6194f62bc636ff602acf22fd6f28bfad72657735e5629f9	-	ol9_aarch64_appstream
	bind-utils-9.16.23-40.0.1.el9_8.1.aarch64.rpm	d57b87794791b660a8493f6651c492c0c694fe75343aaa55b52f3c4e7b36dd0b	-	ol9_aarch64_appstream
	python3-bind-9.16.23-40.0.1.el9_8.1.noarch.rpm	a7ce6c401f74fc1222c862082b6258553f8276e3696282f23f3e2ce6e574e709	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	bind-9.16.23-40.0.1.el9_8.1.src.rpm	64f639783894c178a0b71976ea3de2757e75aa721d10e6feb293ccb84eae2fc3	-	ol9_x86_64_appstream
	bind-9.16.23-40.0.1.el9_8.1.src.rpm	64f639783894c178a0b71976ea3de2757e75aa721d10e6feb293ccb84eae2fc3	-	ol9_x86_64_codeready_builder
	bind-9.16.23-40.0.1.el9_8.1.x86_64.rpm	38b2271479b7e8bce428a860f0b283db7e7f3a871c0335cfbeeb012c37717737	-	ol9_x86_64_appstream
	bind-chroot-9.16.23-40.0.1.el9_8.1.x86_64.rpm	b00d7a35da3f4d8a98a4c7134ae05596624a2f763380d3305da84a783dd7b66a	-	ol9_x86_64_appstream
	bind-devel-9.16.23-40.0.1.el9_8.1.i686.rpm	50b8c1c2a238aa2f4b34d5c2841bc52e457e65d659a5b438538ae5b4c8f8b998	-	ol9_x86_64_codeready_builder
	bind-devel-9.16.23-40.0.1.el9_8.1.x86_64.rpm	faef639824b8d68055a7bbb7b21af709b9ef036abcc8c396136917373e2143d6	-	ol9_x86_64_codeready_builder
	bind-dnssec-doc-9.16.23-40.0.1.el9_8.1.noarch.rpm	efbf65fc9d00d6b3ade270f9cfebbad4771ff21a5c959608bdf613e56648c6b8	-	ol9_x86_64_appstream
	bind-dnssec-utils-9.16.23-40.0.1.el9_8.1.x86_64.rpm	8b6cfaf332f59d7f7c281be112f0cd1164f2a3040096a011af5275e37042d4b1	-	ol9_x86_64_appstream
	bind-doc-9.16.23-40.0.1.el9_8.1.noarch.rpm	3d55aa3405b882dd1597d0c9042685042b17520a52165924aff46a1f13685ffb	-	ol9_x86_64_codeready_builder
	bind-libs-9.16.23-40.0.1.el9_8.1.i686.rpm	77e7f2b1dccac0b549ede36b1558d6193bf64cff422553a53b73f450a6f497ff	-	ol9_x86_64_codeready_builder
	bind-libs-9.16.23-40.0.1.el9_8.1.x86_64.rpm	146ac38d0c3e7296e36f815e28c1b65750ac9e6822779e3d125bf71fcc454eb6	-	ol9_x86_64_appstream
	bind-license-9.16.23-40.0.1.el9_8.1.noarch.rpm	329fbc939e6d13e7a6194f62bc636ff602acf22fd6f28bfad72657735e5629f9	-	ol9_x86_64_appstream
	bind-utils-9.16.23-40.0.1.el9_8.1.x86_64.rpm	26f3fcb9e8418cc6518991b3b2d4140202fa2b866a40a6d7c6475b00fcc94485	-	ol9_x86_64_appstream
	python3-bind-9.16.23-40.0.1.el9_8.1.noarch.rpm	a7ce6c401f74fc1222c862082b6258553f8276e3696282f23f3e2ce6e574e709	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691