stable

bind-9.18.41-1.fc41 and bind-dyndb-ldap-11.10-35.fc41

FEDORA-2025-10c407da27 created by pemensik 4 months ago for Fedora 41

Update to 9.18.41 (#2405786)

Security fixes:

  • DNSSEC validation fails if matching but invalid DNSKEY is found. (CVE-2025-8677)
  • Address various spoofing attacks. (CVE-2025-40778)
  • Cache-poisoning due to weak pseudo-random number generator. (CVE-2025-40780)

New Features:

  • Support for parsing HHIT and BRID records has been added.

Removed Features:

  • Deprecate the "tkey-domain" statement.
  • Deprecate the "tkey-gssapi-credential" statement.

Bug Fixes:

  • Prevent spurious SERVFAILs for certain 0-TTL resource records.
  • Missing DNSSEC information when CD bit is set in query.

https://downloads.isc.org/isc/bind9/9.18.41/doc/arm/html/notes.html#notes-for-bind-9-18-41

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-10c407da27

This update's test gating status has been changed to 'waiting'.

4 months ago
User Icon pemensik commented & provided feedback 4 months ago

Ah, this is not properly created from side tag. Would break bind-dyndb-ldap this way.

User Icon pemensik commented & provided feedback 4 months ago

Oh, it is, but the second build is not yet finished.

pemensik edited this update.

New build(s):

  • bind-dyndb-ldap-11.10-35.fc41

Karma has been reset.

4 months ago

This update has been submitted for testing by pemensik.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'passed'.

4 months ago

This update has been pushed to testing.

4 months ago
User Icon geraldosimiao provided feedback 4 months ago
karma
User Icon filiperosset commented & provided feedback 4 months ago
karma

no regressions noted

This update can be pushed to stable now if the maintainer wishes

4 months ago

This update has been submitted for stable by pemensik.

4 months ago

This update has been pushed to stable.

4 months ago

Please log in to add feedback.

Metadata
Type
security
Severity
high
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
modified
4 months ago
approved
4 months ago
Builds
2
bind-9.18.41-1.fc41
bind-dyndb-ldap-11.10-35.fc41
BZ#2405786 bind-9.18.41 is available
0
0
BZ#2405831 CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 bind: various flaws [fedora-41]
0
0
bind-9.18.41-1.fc41
bind-dyndb-ldap-11.10-35.fc41

Automated Test Results

Test Cases
0 0 Test Case bind

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.3 on bodhi-web-16-g8xnq.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy