Описание
ELSA-2025-19835: bind security update (IMPORTANT)
[32:9.11.36-16.6]
- Address various spoofing attacks (CVE-2025-40778)
[32:9.11.36-16.5]
- Add support for max-records-per-type and max-types-per-name options (RHEL-61936)
- Support reading of new options also in named-checkconf -z, v2
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
bind
9.11.36-16.el8_10.6
bind-chroot
9.11.36-16.el8_10.6
bind-devel
9.11.36-16.el8_10.6
bind-export-devel
9.11.36-16.el8_10.6
bind-export-libs
9.11.36-16.el8_10.6
bind-libs
9.11.36-16.el8_10.6
bind-libs-lite
9.11.36-16.el8_10.6
bind-license
9.11.36-16.el8_10.6
bind-lite-devel
9.11.36-16.el8_10.6
bind-pkcs11
9.11.36-16.el8_10.6
bind-pkcs11-devel
9.11.36-16.el8_10.6
bind-pkcs11-libs
9.11.36-16.el8_10.6
bind-pkcs11-utils
9.11.36-16.el8_10.6
bind-sdb
9.11.36-16.el8_10.6
bind-sdb-chroot
9.11.36-16.el8_10.6
bind-utils
9.11.36-16.el8_10.6
python3-bind
9.11.36-16.el8_10.6
Oracle Linux x86_64
bind
9.11.36-16.el8_10.6
bind-chroot
9.11.36-16.el8_10.6
bind-devel
9.11.36-16.el8_10.6
bind-export-devel
9.11.36-16.el8_10.6
bind-export-libs
9.11.36-16.el8_10.6
bind-libs
9.11.36-16.el8_10.6
bind-libs-lite
9.11.36-16.el8_10.6
bind-license
9.11.36-16.el8_10.6
bind-lite-devel
9.11.36-16.el8_10.6
bind-pkcs11
9.11.36-16.el8_10.6
bind-pkcs11-devel
9.11.36-16.el8_10.6
bind-pkcs11-libs
9.11.36-16.el8_10.6
bind-pkcs11-utils
9.11.36-16.el8_10.6
bind-sdb
9.11.36-16.el8_10.6
bind-sdb-chroot
9.11.36-16.el8_10.6
bind-utils
9.11.36-16.el8_10.6
python3-bind
9.11.36-16.el8_10.6
Связанные CVE
Связанные уязвимости
Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
Under certain circumstances, BIND is too lenient when accepting record ...
