FEDORA-2017-edce28f24b

security update in Fedora 24 for bind99

Status: stable 7 months ago

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138

Comments 8

This update has been submitted for testing by pemensik.

This update has been pushed to testing.

no regressions noted

karma: +1

no regressions noted

karma: +1

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

works for me

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown.

-1 0 +1 Feedback Guidelines
#1441125 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;"
#1441917 CVE-2017-3136 bind99: bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;" [fedora-all]
#1441133 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver
#1441913 CVE-2017-3137 bind99: bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver [fedora-all]
#1441137 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received
#1441926 CVE-2017-3138 bind99: bind: REQUIRE assertion failure when null command string on control channel is received [fedora-all]
Is the update generally functional?
Content Type
RPM
Status
stable
Submitted by
Update Type
security
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 8 months ago
in testing 8 months ago
in stable 7 months ago

Related Bugs 6

00 #1441125 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;"
00 #1441917 CVE-2017-3136 bind99: bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;" [fedora-all]
00 #1441133 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver
00 #1441913 CVE-2017-3137 bind99: bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver [fedora-all]
00 #1441137 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received
00 #1441926 CVE-2017-3138 bind99: bind: REQUIRE assertion failure when null command string on control channel is received [fedora-all]

Automated Test Results