Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2023-0402

Опубликовано: 24 янв. 2023
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2023-0402: bind security update (MODERATE)

[32:9.11.4-26.P2.13]

  • Tighten cache protection against record from forwarders (CVE-2021-25220)

[32:9.11.4-26.P2.12]

  • Include test of forwarders (CVE-2021-25220)

[32:9.11.4-26.P2.11]

  • Prevent excessive resource use while processing large delegations. (CVE-2022-2795)

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

bind

9.11.4-26.P2.el7_9.13

bind-chroot

9.11.4-26.P2.el7_9.13

bind-devel

9.11.4-26.P2.el7_9.13

bind-export-devel

9.11.4-26.P2.el7_9.13

bind-export-libs

9.11.4-26.P2.el7_9.13

bind-libs

9.11.4-26.P2.el7_9.13

bind-libs-lite

9.11.4-26.P2.el7_9.13

bind-license

9.11.4-26.P2.el7_9.13

bind-lite-devel

9.11.4-26.P2.el7_9.13

bind-pkcs11

9.11.4-26.P2.el7_9.13

bind-pkcs11-devel

9.11.4-26.P2.el7_9.13

bind-pkcs11-libs

9.11.4-26.P2.el7_9.13

bind-pkcs11-utils

9.11.4-26.P2.el7_9.13

bind-sdb

9.11.4-26.P2.el7_9.13

bind-sdb-chroot

9.11.4-26.P2.el7_9.13

bind-utils

9.11.4-26.P2.el7_9.13

Oracle Linux x86_64

bind

9.11.4-26.P2.el7_9.13

bind-chroot

9.11.4-26.P2.el7_9.13

bind-devel

9.11.4-26.P2.el7_9.13

bind-export-devel

9.11.4-26.P2.el7_9.13

bind-export-libs

9.11.4-26.P2.el7_9.13

bind-libs

9.11.4-26.P2.el7_9.13

bind-libs-lite

9.11.4-26.P2.el7_9.13

bind-license

9.11.4-26.P2.el7_9.13

bind-lite-devel

9.11.4-26.P2.el7_9.13

bind-pkcs11

9.11.4-26.P2.el7_9.13

bind-pkcs11-devel

9.11.4-26.P2.el7_9.13

bind-pkcs11-libs

9.11.4-26.P2.el7_9.13

bind-pkcs11-utils

9.11.4-26.P2.el7_9.13

bind-sdb

9.11.4-26.P2.el7_9.13

bind-sdb-chroot

9.11.4-26.P2.el7_9.13

bind-utils

9.11.4-26.P2.el7_9.13

Связанные CVE

CVE-2022-2795
CVE-2021-25220

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2022-2795

CVSS3: 5.3
ubuntu
больше 2 лет назад

By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.

redhat логотип

CVE-2022-2795

CVSS3: 5.3
redhat
больше 2 лет назад

By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.

nvd логотип

CVE-2022-2795

CVSS3: 5.3
nvd
больше 2 лет назад

By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.

msrc логотип

CVE-2022-2795

CVSS3: 5.3
msrc
больше 2 лет назад

Описание отсутствует

debian логотип

CVE-2022-2795

CVSS3: 5.3
debian
больше 2 лет назад

By flooding the target resolver with queries exploiting this flaw an a ...