stable

bind-9.18.19-1.fc38 and bind-dyndb-ldap-11.10-21.fc38

FEDORA-2023-a2621f58a9 created by pemensik 12 months ago for Fedora 38

BIND 9.18.19

Security Fixes

  • Previously, sending a specially crafted message over the control channel could cause the packet-parsing code to run out of available stack memory, causing named to terminate unexpectedly. This has been fixed. (CVE-2023-3341)
  • A flaw in the networking code handling DNS-over-TLS queries could cause named to terminate unexpectedly due to an assertion failure under significant DNS-over-TLS query load. This has been fixed. (CVE-2023-4236)
  • Upstream release notes

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-a2621f58a9

This update's test gating status has been changed to 'waiting'.

12 months ago

This update has been submitted for testing by bodhi.

12 months ago

pemensik edited this update.

12 months ago

pemensik edited this update.

12 months ago

This update's test gating status has been changed to 'failed'.

12 months ago

This update has been pushed to testing.

12 months ago

This update's test gating status has been changed to 'passed'.

12 months ago
User Icon besser82 commented & provided feedback 12 months ago
karma

Works great! LGTM! =)

User Icon bojan commented & provided feedback 12 months ago
karma

Works.

This update can be pushed to stable now if the maintainer wishes

12 months ago
User Icon filiperosset commented & provided feedback 12 months ago
karma

no regressions noted

This update has been submitted for stable by bodhi.

12 months ago

This update has been pushed to stable.

12 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
12 months ago
in testing
12 months ago
in stable
12 months ago
modified
12 months ago
approved
12 months ago
BZ#2232346 bind-9.18.19 is available
0
0
BZ#2239875 CVE-2023-3341 bind: insufficient input validation may lead to DoS [fedora-38]
0
0
BZ#2239878 CVE-2023-4236 bind: an assertion failure may lead to DoS [fedora-38]
0
0

Automated Test Results

Test Cases

0 0 Test Case bind