エラータID: AXSA:2022-4253:06

Release date: 
Wednesday, November 30, 2022 - 08:26
Affected Channels: 
Asianux Server 8 for x86_64

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

Security Fix(es):

* bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220)
* bind: DoS from specifically crafted TCP packets (CVE-2022-0396)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.
BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.


Update packages.

Additional Info: 



  1. bind9.16-9.16.23-0.9.el8.1.src.rpm
    MD5: f70f67cacf6a8fb3219c14eedfc2e588
    SHA-256: 9ca2773571a7d78019400c1983293bcf63c6198c3e3dc99050c8df9e3b1ef7d5
    Size: 5.04 MB

Asianux Server 8 for x86_64
  1. bind9.16-9.16.23-0.9.el8.1.x86_64.rpm
    MD5: 25cd14756bbd75e1d378aa19440096e3
    SHA-256: fe0f0e83164960ff78b8782c41f6ed10d6bbd3d9046d2235c8269889baba0a3c
    Size: 601.36 kB
  2. bind9.16-chroot-9.16.23-0.9.el8.1.x86_64.rpm
    MD5: acc5024efb7caff92926e04c54aa6cb8
    SHA-256: 4c8c2a39bdb05a245112db3015cb98f9cb984862918f5754d043849fac215ba2
    Size: 109.70 kB
  3. bind9.16-devel-9.16.23-0.9.el8.1.x86_64.rpm
    MD5: 3a773836bf5958200105c5018cdd7d2f
    SHA-256: 716dc7b45f977d08c1258160724aa1412ab614380b39815ae16eab3527409787
    Size: 425.20 kB
  4. bind9.16-dnssec-utils-9.16.23-0.9.el8.1.x86_64.rpm
    MD5: a89b4c6bf75cbb57e8a975a3a5c08f81
    SHA-256: fd2a410895df57d43766c483d7234f7030cf1c04b9d005932e0c995de6ac664e
    Size: 243.02 kB
  5. bind9.16-doc-9.16.23-0.9.el8.1.noarch.rpm
    MD5: 306fe1d6a6f019175193da4b214efc18
    SHA-256: 06cbc25b9802a7d2736dd444497cf27411ae515f2a760c214854f548ad9c0513
    Size: 3.67 MB
  6. bind9.16-libs-9.16.23-0.9.el8.1.x86_64.rpm
    MD5: 2e3383935489a0126a0451646fab3793
    SHA-256: 013f3010be1910f0d19f07e489d61b279b19140211254f1f939f01ea2b3e1aff
    Size: 1.36 MB
  7. bind9.16-license-9.16.23-0.9.el8.1.noarch.rpm
    MD5: a650ce8d72d2b40757201e4d3dbaa8f8
    SHA-256: b0002b54869eb05a8ebf3fe7649c07d856903ac33cb867b4dc4f0d6e3b30d742
    Size: 106.04 kB
  8. bind9.16-utils-9.16.23-0.9.el8.1.x86_64.rpm
    MD5: 6abbccb087364969717531a49a41b4c5
    SHA-256: 3f06cc5bc7eeed0c00c86e38a645db5c09f60ffebb641a7ea51153be73f471d9
    Size: 287.94 kB
  9. python3-bind9.16-9.16.23-0.9.el8.1.noarch.rpm
    MD5: bb1afd71b04e5e0427a62eba5f2acd71
    SHA-256: 6b2ffd55501b5f7f2828374a377d42dae02931ca0bb1fc49197632da3c3ba2be
    Size: 154.33 kB
  10. bind9.16-devel-9.16.23-0.9.el8.1.i686.rpm
    MD5: 4e291e8229c273004a8a1553cc1a01a7
    SHA-256: 3243775e3d12ced1e4d7330696ecb52f5d367699163c0766c50f1aeb7f2fdb46
    Size: 425.23 kB
  11. bind9.16-libs-9.16.23-0.9.el8.1.i686.rpm
    MD5: 89a3b2b1d8597fadd3d92caededd41cc
    SHA-256: 89ffb19b0def3983e49afb135cd882c40492a192b16136370c1ff22c03e318f2
    Size: 1.45 MB