Update back to ISC supported version. Security fix for CVE-2017-3143, CVE-2017-3142, CVE-2017-3140

How to install

sudo dnf upgrade --advisory=FEDORA-2017-001f135337

This update has been submitted for testing by pemensik.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon cserpentis commented & provided feedback 2 years ago
karma

works fine for me in a VM

User Icon samoht0 commented & provided feedback 2 years ago
karma

no regressions noted

User Icon jonathancalloway commented & provided feedback 2 years ago
karma

Works for me in a VM.

BZ#1466611 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers [fedora-all]
BZ#1466193 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates
BZ#1461641 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query [fedora-all]
BZ#1461302 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query
BZ#1466189 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers
BZ#1466609 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates [fedora-all]

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1461302 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query
0
1
BZ#1461641 CVE-2017-3140 bind: Error processing RPZ rules leads to endless loop while handling query [fedora-all]
0
1
BZ#1466189 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers
0
1
BZ#1466193 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates
0
1
BZ#1466609 CVE-2017-3143 bind: An error in TSIG authentication can permit unauthorized dynamic updates [fedora-all]
0
1
BZ#1466611 CVE-2017-3142 bind: An error in TSIG authentication can permit unauthorized zone transfers [fedora-all]
0
1

Automated Test Results