stable

bind-9.10.5-2.P2.fc24, bind-dyndb-ldap-10.1-2.fc24, & 1 more

FEDORA-2017-001f135337 created by pemensik 5 years ago for Fedora 24

Update back to ISC supported version. Security fix for CVE-2017-3143, CVE-2017-3142, CVE-2017-3140

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2017-001f135337

This update has been submitted for testing by pemensik.

5 years ago

This update has been pushed to testing.

5 years ago
User Icon cserpentis commented & provided feedback 5 years ago
karma

works fine for me in a VM

User Icon samoht0 commented & provided feedback 5 years ago
karma

no regressions noted

User Icon jonathancalloway commented & provided feedback 5 years ago
karma

Works for me in a VM.

BZ#1466611 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers [fedora-all]
BZ#1466193 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates
BZ#1461641 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query [fedora-all]
BZ#1461302 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query
BZ#1466189 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers
BZ#1466609 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates [fedora-all]

This update has been submitted for stable by bodhi.

5 years ago

This update has been pushed to stable.

5 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
3
Signed
Content Type
RPM
Test Gating
Builds
3
bind-9.10.5-2.P2.fc24
bind-dyndb-ldap-10.1-2.fc24
dnsperf-2.1.0.0-3.fc24
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago
BZ#1461302 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query
0
1
BZ#1461641 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query [fedora-all]
0
1
BZ#1466189 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers
0
1
BZ#1466193 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates
0
1
BZ#1466609 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates [fedora-all]
0
1
BZ#1466611 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers [fedora-all]
0
1
bind-9.10.5-2.P2.fc24
bind-dyndb-ldap-10.1-2.fc24
dnsperf-2.1.0.0-3.fc24

Automated Test Results

None

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.0.1 on bodhi-web-66-dxxtt.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy