ELSA-2026-8312

ULN >
Oracle Linux Errata repository >
ELSA-2026-8312

ELSA-2026-8312 - bind security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-04-22

Description

[9.18.33-10.0.2.el10_1.3]
- Hard require needed openssl-libs [Orabug: 38742109]
- Fix warning when changing device file permissions [Orabug: 36518580]

[32:9.18.33-10.3]
- Prevent Denial of Service via maliciously crafted DNSSEC-validated zone
(CVE-2026-1519)

[32:9.18.33-10.2]
- Fix upstream reported regression in recent CVE fix (CVE-2025-8677)

[32:9.18.33-10.1]
- Refuse malformed DNSKEY records (CVE-2025-8677)
- Address various spoofing attacks (CVE-2025-40778)
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)

Related CVEs

CVE-2026-1519

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 10 (aarch64)	bind-9.18.33-10.0.2.el10_1.3.src.rpm	eb922ef110b9e3590b987212b134a6f908bdc5e8709728c9eae414126e0dd6bb	-	ol10_aarch64_appstream
	bind-9.18.33-10.0.2.el10_1.3.src.rpm	eb922ef110b9e3590b987212b134a6f908bdc5e8709728c9eae414126e0dd6bb	-	ol10_aarch64_codeready_builder
	bind-9.18.33-10.0.2.el10_1.3.aarch64.rpm	d64c086d3d9a05827e503ea296572ce18f63e4feca760b0891362396cae0b494	-	ol10_aarch64_appstream
	bind-chroot-9.18.33-10.0.2.el10_1.3.aarch64.rpm	e5d3ab75d958d6264d104d61d438850ae5223014f1c28a07d853445d3da8d2c5	-	ol10_aarch64_appstream
	bind-devel-9.18.33-10.0.2.el10_1.3.aarch64.rpm	dab60e99010be875cb79c50bb938ac40a97e0a3cc4325cd2309ac245d07c3189	-	ol10_aarch64_codeready_builder
	bind-dnssec-utils-9.18.33-10.0.2.el10_1.3.aarch64.rpm	341db5462740046759e97b8e43552ef7e8a423aeb8c2e3e6f0f2289b58577c5b	-	ol10_aarch64_appstream
	bind-doc-9.18.33-10.0.2.el10_1.3.noarch.rpm	f01655fa845a5066ea6f5b86a34680961e0aa09ff3d99325258bf1590a1f8009	-	ol10_aarch64_codeready_builder
	bind-libs-9.18.33-10.0.2.el10_1.3.aarch64.rpm	48979678af95ea8228e4ffb9bb71f874b088dd80743f422c0c0a13ba2fdbd967	-	ol10_aarch64_appstream
	bind-license-9.18.33-10.0.2.el10_1.3.noarch.rpm	69c7488da6abe2162d13ee3aa49934a0a50195bea9dab14a2306a5392bd73fea	-	ol10_aarch64_appstream
	bind-utils-9.18.33-10.0.2.el10_1.3.aarch64.rpm	25dd6a1849b5b5ec14f67e799adc71c71508a6842f36dd93286afa14607e62d0	-	ol10_aarch64_appstream

Oracle Linux 10 (x86_64)	bind-9.18.33-10.0.2.el10_1.3.src.rpm	eb922ef110b9e3590b987212b134a6f908bdc5e8709728c9eae414126e0dd6bb	-	ol10_x86_64_appstream
	bind-9.18.33-10.0.2.el10_1.3.src.rpm	eb922ef110b9e3590b987212b134a6f908bdc5e8709728c9eae414126e0dd6bb	-	ol10_x86_64_codeready_builder
	bind-9.18.33-10.0.2.el10_1.3.x86_64.rpm	8039c61e36d324b91b73d11a1924626bb6dee80c333a1f360c7a0336db667476	-	ol10_x86_64_appstream
	bind-chroot-9.18.33-10.0.2.el10_1.3.x86_64.rpm	cd329c0b7b7a525d555c37ffce1703318c8370990fe263c8127a1f5c42f74c41	-	ol10_x86_64_appstream
	bind-devel-9.18.33-10.0.2.el10_1.3.x86_64.rpm	e82069305ce38e3235e488cfed3a027ecb2eb08b70ac61ede1be4d8b7fea1dc1	-	ol10_x86_64_codeready_builder
	bind-dnssec-utils-9.18.33-10.0.2.el10_1.3.x86_64.rpm	c2d759da2d67933e4e8a61952a5a4b651a5ce15b384186d9681827f7a8081c9f	-	ol10_x86_64_appstream
	bind-doc-9.18.33-10.0.2.el10_1.3.noarch.rpm	f01655fa845a5066ea6f5b86a34680961e0aa09ff3d99325258bf1590a1f8009	-	ol10_x86_64_codeready_builder
	bind-libs-9.18.33-10.0.2.el10_1.3.x86_64.rpm	65b7d04e8f434096093219405784be00d951dadd44ada6a84bbb59d60c1a2fed	-	ol10_x86_64_appstream
	bind-license-9.18.33-10.0.2.el10_1.3.noarch.rpm	69c7488da6abe2162d13ee3aa49934a0a50195bea9dab14a2306a5392bd73fea	-	ol10_x86_64_appstream
	bind-utils-9.18.33-10.0.2.el10_1.3.x86_64.rpm	5045ae2e486b3bf1cc2dcf99a76fc5e37f496430d3e0a4a60bce5835291ec648	-	ol10_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691