Описание
Security update for bind
This update for bind fixes the following issues:
Security issue fixed:
- CVE-2019-6471: Fixed a reachable assert in dispatch.c. (bsc#1138687)
Non-security issue fixed:
- bind will no longer rely on /etc/insserv.conf (bsc#1118367, bsc#1118368)
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.1
bind-9.11.2-lp151.11.6.1
bind-chrootenv-9.11.2-lp151.11.6.1
bind-devel-9.11.2-lp151.11.6.1
bind-devel-32bit-9.11.2-lp151.11.6.1
bind-doc-9.11.2-lp151.11.6.1
bind-lwresd-9.11.2-lp151.11.6.1
bind-utils-9.11.2-lp151.11.6.1
libbind9-160-9.11.2-lp151.11.6.1
libbind9-160-32bit-9.11.2-lp151.11.6.1
libdns169-9.11.2-lp151.11.6.1
libdns169-32bit-9.11.2-lp151.11.6.1
libirs-devel-9.11.2-lp151.11.6.1
libirs160-9.11.2-lp151.11.6.1
libirs160-32bit-9.11.2-lp151.11.6.1
libisc166-9.11.2-lp151.11.6.1
libisc166-32bit-9.11.2-lp151.11.6.1
libisccc160-9.11.2-lp151.11.6.1
libisccc160-32bit-9.11.2-lp151.11.6.1
libisccfg160-9.11.2-lp151.11.6.1
libisccfg160-32bit-9.11.2-lp151.11.6.1
liblwres160-9.11.2-lp151.11.6.1
liblwres160-32bit-9.11.2-lp151.11.6.1
python3-bind-9.11.2-lp151.11.6.1
Ссылки
- E-Mail link for openSUSE-SU-2019:2265-1
- SUSE Security Ratings
- SUSE Bug 1118367
- SUSE Bug 1118368
- SUSE Bug 1138687
- SUSE CVE CVE-2019-6471 page
Описание
A race condition which may occur when discarding malformed packets can result in BIND exiting due to a REQUIRE assertion failure in dispatch.c. Versions affected: BIND 9.11.0 -> 9.11.7, 9.12.0 -> 9.12.4-P1, 9.14.0 -> 9.14.2. Also all releases of the BIND 9.13 development branch and version 9.15.0 of the BIND 9.15 development branch and BIND Supported Preview Edition versions 9.11.3-S1 -> 9.11.7-S1.
Затронутые продукты
openSUSE Leap 15.1:bind-9.11.2-lp151.11.6.1
openSUSE Leap 15.1:bind-chrootenv-9.11.2-lp151.11.6.1
openSUSE Leap 15.1:bind-devel-32bit-9.11.2-lp151.11.6.1
openSUSE Leap 15.1:bind-devel-9.11.2-lp151.11.6.1
Ссылки
- CVE-2019-6471
- SUSE Bug 1138687