stable

bind-9.18.19-1.fc38 and bind-dyndb-ldap-11.10-21.fc38

FEDORA-2023-a2621f58a9 created by pemensik 2 months ago for Fedora 38

BIND 9.18.19

Security Fixes

  • Previously, sending a specially crafted message over the control channel could cause the packet-parsing code to run out of available stack memory, causing named to terminate unexpectedly. This has been fixed. (CVE-2023-3341)
  • A flaw in the networking code handling DNS-over-TLS queries could cause named to terminate unexpectedly due to an assertion failure under significant DNS-over-TLS query load. This has been fixed. (CVE-2023-4236)
  • Upstream release notes

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-a2621f58a9

This update's test gating status has been changed to 'waiting'.

2 months ago

This update has been submitted for testing by bodhi.

2 months ago

pemensik edited this update.

2 months ago

pemensik edited this update.

2 months ago

This update's test gating status has been changed to 'failed'.

2 months ago

This update has been pushed to testing.

2 months ago

This update's test gating status has been changed to 'passed'.

2 months ago
User Icon besser82 commented & provided feedback 2 months ago
karma

Works great! LGTM! =)

User Icon bojan commented & provided feedback 2 months ago
karma

Works.

This update can be pushed to stable now if the maintainer wishes

2 months ago
User Icon filiperosset commented & provided feedback 2 months ago
karma

no regressions noted

This update has been submitted for stable by bodhi.

2 months ago

This update has been pushed to stable.

2 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
2 months ago
in testing
2 months ago
in stable
2 months ago
modified
2 months ago
approved
2 months ago
BZ#2232346 bind-9.18.19 is available
0
0
BZ#2239875 CVE-2023-3341 bind: insufficient input validation may lead to DoS [fedora-38]
0
0
BZ#2239878 CVE-2023-4236 bind: an assertion failure may lead to DoS [fedora-38]
0
0

Automated Test Results

Test Cases

0 0 Test Case bind