Описание
Security update for bind
This update for bind fixes the following issues:
- CVE-2021-25214: Fixed a broken inbound incremental zone update (IXFR) which could have caused named to terminate unexpectedly (bsc#1185345).
- CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records that required the DNAME to be processed to resolve itself (bsc#1185345).
- Switched from /var/run to /run (bsc#1185073)
- Hardening: Compiled binary with PIE flags to make it position independent
Список пакетов
Image SLES15-SP3-BYOS-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-BYOS-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-BYOS-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-CHOST-BYOS-Aliyun
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-CHOST-BYOS-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-CHOST-BYOS-EC2
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-CHOST-BYOS-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-EC2-ECS-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-HPC-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-HPC-BYOS-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-HPC-BYOS-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-BYOS-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-BYOS-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAP-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAPCAL-Azure
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAPCAL-EC2-HVM
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
Image SLES15-SP3-SAPCAL-GCE
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
bind-devel-9.16.6-22.7.1
bind-utils-9.16.6-22.7.1
libbind9-1600-9.16.6-22.7.1
libdns1605-9.16.6-22.7.1
libirs-devel-9.16.6-22.7.1
libirs1601-9.16.6-22.7.1
libisc1606-9.16.6-22.7.1
libisccc1600-9.16.6-22.7.1
libisccfg1600-9.16.6-22.7.1
libns1604-9.16.6-22.7.1
python3-bind-9.16.6-22.7.1
SUSE Linux Enterprise Module for Server Applications 15 SP3
bind-9.16.6-22.7.1
bind-chrootenv-9.16.6-22.7.1
bind-doc-9.16.6-22.7.1
Ссылки
- Link for SUSE-SU-2021:1826-1
- E-Mail link for SUSE-SU-2021:1826-1
- SUSE Security Ratings
- SUSE Bug 1183453
- SUSE Bug 1185073
- SUSE CVE CVE-2021-25214 page
- SUSE CVE CVE-2021-25215 page
Описание
In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a malformed IXFR triggering the flaw described above, the named process will terminate due to a failed assertion the next time the transferred secondary zone is refreshed.
Затронутые продукты
Image SLES15-SP3-BYOS-Azure:bind-utils-9.16.6-22.7.1
Image SLES15-SP3-BYOS-Azure:libbind9-1600-9.16.6-22.7.1
Image SLES15-SP3-BYOS-Azure:libdns1605-9.16.6-22.7.1
Image SLES15-SP3-BYOS-Azure:libirs1601-9.16.6-22.7.1
Ссылки
- CVE-2021-25214
- SUSE Bug 1185345
Описание
In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record triggering the flaw described above, the named process will terminate due to a failed assertion check. The vulnerability affects all currently maintained BIND 9 branches (9.11, 9.11-S, 9.16, 9.16-S, 9.17) as well as all other versions of BIND 9.
Затронутые продукты
Image SLES15-SP3-BYOS-Azure:bind-utils-9.16.6-22.7.1
Image SLES15-SP3-BYOS-Azure:libbind9-1600-9.16.6-22.7.1
Image SLES15-SP3-BYOS-Azure:libdns1605-9.16.6-22.7.1
Image SLES15-SP3-BYOS-Azure:libirs1601-9.16.6-22.7.1
Ссылки
- CVE-2021-25215
- SUSE Bug 1185345
- SUSE Bug 1189848
- SUSE Bug 1196172
- SUSE Bug 1199298
- SUSE Bug 1225626