FEDORA-2017-0a876b0ba5

security update in Fedora 24 for bind

Status: stable 2 years ago

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138

How to install

sudo dnf upgrade --advisory=FEDORA-2017-0a876b0ba5

Comments 8

This update has been submitted for testing by pemensik.

pemensik edited this update.

works for me

karma: +1

This update has been pushed to testing.

no regressions noted

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1441125 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;"
#1441133 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver
#1441137 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received
#1441912 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver [fedora-all]
#1441916 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;" [fedora-all]
#1441925 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received [fedora-all]
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 6

00 #1441125 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;"
00 #1441133 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver
00 #1441137 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received
00 #1441912 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver [fedora-all]
00 #1441916 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;" [fedora-all]
00 #1441925 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received [fedora-all]

Automated Test Results