SUSE-SU-2025:0427-1

Опубликовано: 11 фев. 2025

Источник: suse-cvrf

Описание

Security update for bind

This update for bind fixes the following issues:

CVE-2024-11187: Fixes CPU exhaustion caused by many records in the additional section (bsc#1236596)

Список пакетов

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

bind-utils-9.16.6-150300.22.50.1

libbind9-1600-9.16.6-150300.22.50.1

libdns1605-9.16.6-150300.22.50.1

libirs1601-9.16.6-150300.22.50.1

libisc1606-9.16.6-150300.22.50.1

libisccc1600-9.16.6-150300.22.50.1

libisccfg1600-9.16.6-150300.22.50.1

libns1604-9.16.6-150300.22.50.1

python3-bind-9.16.6-150300.22.50.1

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

bind-utils-9.16.6-150300.22.50.1

libbind9-1600-9.16.6-150300.22.50.1

libdns1605-9.16.6-150300.22.50.1

libirs1601-9.16.6-150300.22.50.1

libisc1606-9.16.6-150300.22.50.1

libisccc1600-9.16.6-150300.22.50.1

libisccfg1600-9.16.6-150300.22.50.1

libns1604-9.16.6-150300.22.50.1

python3-bind-9.16.6-150300.22.50.1

SUSE Enterprise Storage 7.1

bind-9.16.6-150300.22.50.1

bind-chrootenv-9.16.6-150300.22.50.1

bind-devel-9.16.6-150300.22.50.1

bind-doc-9.16.6-150300.22.50.1

bind-utils-9.16.6-150300.22.50.1

libbind9-1600-9.16.6-150300.22.50.1

libdns1605-9.16.6-150300.22.50.1

libirs-devel-9.16.6-150300.22.50.1

libirs1601-9.16.6-150300.22.50.1

libisc1606-9.16.6-150300.22.50.1

libisccc1600-9.16.6-150300.22.50.1

libisccfg1600-9.16.6-150300.22.50.1

libns1604-9.16.6-150300.22.50.1

python3-bind-9.16.6-150300.22.50.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

bind-9.16.6-150300.22.50.1

bind-chrootenv-9.16.6-150300.22.50.1

bind-devel-9.16.6-150300.22.50.1

bind-doc-9.16.6-150300.22.50.1

bind-utils-9.16.6-150300.22.50.1

libbind9-1600-9.16.6-150300.22.50.1

libdns1605-9.16.6-150300.22.50.1

libirs-devel-9.16.6-150300.22.50.1

libirs1601-9.16.6-150300.22.50.1

libisc1606-9.16.6-150300.22.50.1

libisccc1600-9.16.6-150300.22.50.1

libisccfg1600-9.16.6-150300.22.50.1

libns1604-9.16.6-150300.22.50.1

python3-bind-9.16.6-150300.22.50.1

SUSE Linux Enterprise Module for Basesystem 15 SP6

libdns1605-9.16.6-150300.22.50.1

libirs-devel-9.16.6-150300.22.50.1

libirs1601-9.16.6-150300.22.50.1

libisc1606-9.16.6-150300.22.50.1

libisccfg1600-9.16.6-150300.22.50.1

SUSE Linux Enterprise Server 15 SP3-LTSS

bind-9.16.6-150300.22.50.1

bind-chrootenv-9.16.6-150300.22.50.1

bind-devel-9.16.6-150300.22.50.1

bind-doc-9.16.6-150300.22.50.1

bind-utils-9.16.6-150300.22.50.1

libbind9-1600-9.16.6-150300.22.50.1

libdns1605-9.16.6-150300.22.50.1

libirs-devel-9.16.6-150300.22.50.1

libirs1601-9.16.6-150300.22.50.1

libisc1606-9.16.6-150300.22.50.1

libisccc1600-9.16.6-150300.22.50.1

libisccfg1600-9.16.6-150300.22.50.1

libns1604-9.16.6-150300.22.50.1

python3-bind-9.16.6-150300.22.50.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

bind-9.16.6-150300.22.50.1

bind-chrootenv-9.16.6-150300.22.50.1

bind-devel-9.16.6-150300.22.50.1

bind-doc-9.16.6-150300.22.50.1

bind-utils-9.16.6-150300.22.50.1

libbind9-1600-9.16.6-150300.22.50.1

libdns1605-9.16.6-150300.22.50.1

libirs-devel-9.16.6-150300.22.50.1

libirs1601-9.16.6-150300.22.50.1

libisc1606-9.16.6-150300.22.50.1

libisccc1600-9.16.6-150300.22.50.1

libisccfg1600-9.16.6-150300.22.50.1

libns1604-9.16.6-150300.22.50.1

python3-bind-9.16.6-150300.22.50.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-20250427-1/
Link for SUSE-SU-2025:0427-1
https://lists.suse.com/pipermail/sle-security-updates/2025-February/020309.html
E-Mail link for SUSE-SU-2025:0427-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1236596
SUSE Bug 1236596
https://www.suse.com/security/cve/CVE-2024-11187/
SUSE CVE CVE-2024-11187 page

Описание

It is possible to construct a zone such that some queries to it will generate responses containing numerous records in the Additional section. An attacker sending many such queries can cause either the authoritative server itself or an independent resolver to use disproportionate resources processing the queries. Zones will usually need to have been deliberately crafted to attack this exposure. This issue affects BIND 9 versions 9.11.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.32, 9.20.0 through 9.20.4, 9.21.0 through 9.21.3, 9.11.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.32-S1.

Затронутые продукты

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:bind-utils-9.16.6-150300.22.50.1

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libbind9-1600-9.16.6-150300.22.50.1

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libdns1605-9.16.6-150300.22.50.1

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libirs1601-9.16.6-150300.22.50.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-11187.html
CVE-2024-11187
https://bugzilla.suse.com/1236596
SUSE Bug 1236596

SUSE-SU-2025:0427-1

Описание

Список пакетов

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Module for Basesystem 15 SP6

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP3

Ссылки

Уязвимость: CVE-2024-11187

Описание

Затронутые продукты

Ссылки