stable

bind-9.18.41-1.fc42 and bind-dyndb-ldap-11.11-7.fc42

FEDORA-2025-92566203fd created by pemensik 4 months ago for Fedora 42

Update to 9.18.41 (#2405786)

Security fixes:

  • DNSSEC validation fails if matching but invalid DNSKEY is found. (CVE-2025-8677)
  • Address various spoofing attacks. (CVE-2025-40778)
  • Cache-poisoning due to weak pseudo-random number generator. (CVE-2025-40780)

New Features:

  • Support for parsing HHIT and BRID records has been added.

Removed Features:

  • Deprecate the "tkey-domain" statement.
  • Deprecate the "tkey-gssapi-credential" statement.

Bug Fixes:

  • Prevent spurious SERVFAILs for certain 0-TTL resource records.
  • Missing DNSSEC information when CD bit is set in query.

https://downloads.isc.org/isc/bind9/9.18.41/doc/arm/html/notes.html#notes-for-bind-9-18-41

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-92566203fd

This update's test gating status has been changed to 'waiting'.

4 months ago

This update has been submitted for testing by bodhi.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'passed'.

4 months ago
User Icon fredrik commented & provided feedback 4 months ago
karma

No errors observed. Silverblue 42.20251024.0

This update has been pushed to testing.

4 months ago
User Icon filiperosset commented & provided feedback 4 months ago
karma

no regressions noted

This update can be pushed to stable now if the maintainer wishes

4 months ago

This update has been submitted for stable by pemensik.

4 months ago

This update has been pushed to stable.

4 months ago

Please log in to add feedback.

Metadata
Type
security
Severity
high
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
approved
4 months ago
Builds
2
bind-9.18.41-1.fc42
bind-dyndb-ldap-11.11-7.fc42
BZ#2405786 bind-9.18.41 is available
0
0
BZ#2405833 CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 bind: various flaws [fedora-42]
0
0
bind-9.18.41-1.fc42
bind-dyndb-ldap-11.11-7.fc42

Automated Test Results

Test Cases
0 0 Test Case bind

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.3 on bodhi-web-16-g8xnq.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy