bind-9.8.2-0.68.3.rc1.AXS4
エラータID: AXSA:2019-3921:01
リリース日:
2019/07/02 Tuesday - 11:52
題名:
bind-9.8.2-0.68.3.rc1.AXS4
影響のあるチャネル:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- 現時点では CVE-2018-5743 の情報が公開されておりません。
CVE の情報が公開され次第情報をアップデートいたします。
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2018-5743
By design, BIND is intended to limit the number of TCP clients that can be connected at any given time. The number of allowed connections is a tunable parameter which, if unset, defaults to a conservative value for most servers. Unfortunately, the code which was intended to limit the number of simultaneous connections contained an error which could be exploited to grow the number of simultaneous connections beyond this limit. Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.6, 9.12.0 -> 9.12.4, 9.14.0. BIND 9 Supported Preview Edition versions 9.9.3-S1 -> 9.11.5-S3, and 9.11.5-S5. Versions 9.13.0 -> 9.13.7 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2018-5743.
By design, BIND is intended to limit the number of TCP clients that can be connected at any given time. The number of allowed connections is a tunable parameter which, if unset, defaults to a conservative value for most servers. Unfortunately, the code which was intended to limit the number of simultaneous connections contained an error which could be exploited to grow the number of simultaneous connections beyond this limit. Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.6, 9.12.0 -> 9.12.4, 9.14.0. BIND 9 Supported Preview Edition versions 9.9.3-S1 -> 9.11.5-S3, and 9.11.5-S5. Versions 9.13.0 -> 9.13.7 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2018-5743.
追加情報:
N/A
ダウンロード:
SRPMS
- bind-9.8.2-0.68.3.rc1.AXS4.src.rpm
MD5: 7de2e43b57587ae54c9da012575c0252
SHA-256: ea5d0937b3457de22f523e1674f84beec47fc7d79aeea27b0f82a5a3a34f1cc1
Size: 8.48 MB
Asianux Server 4 for x86
- bind-9.8.2-0.68.3.rc1.AXS4.i686.rpm
MD5: fdd3bbe429ba1c04f4a84a82cf521cef
SHA-256: 5ad510ab3201135aa10a26cd41976e94eab16ce012d8db7c109a6e26f0f054d3
Size: 4.00 MB - bind-chroot-9.8.2-0.68.3.rc1.AXS4.i686.rpm
MD5: 7473de31909b65a5429f8b7e214d96b2
SHA-256: 9fbc4bf8f92092930ba7bbc4821d6d68d7693d8195545740153de70408d45bc8
Size: 77.55 kB - bind-libs-9.8.2-0.68.3.rc1.AXS4.i686.rpm
MD5: eccb5555b574d74f4f873863e663f0f8
SHA-256: 4bb21a70048434022a7513ad36672a0e784993c5cac7409094d13543059c9889
Size: 902.33 kB - bind-utils-9.8.2-0.68.3.rc1.AXS4.i686.rpm
MD5: bd0f0002e9d821882fd746c4b3a0a9f7
SHA-256: 7aafa7707e4093098a28f6a4cdc2e3b5814c585e0da611af97390b9be4d58b15
Size: 187.90 kB
Asianux Server 4 for x86_64
- bind-9.8.2-0.68.3.rc1.AXS4.x86_64.rpm
MD5: e1a437ab537e65d012c0b37ef811db23
SHA-256: 2ccef936cb558095393d8f9a780e434781ef7c03a628a9cc4d44f5de9c6f914a
Size: 4.00 MB - bind-chroot-9.8.2-0.68.3.rc1.AXS4.x86_64.rpm
MD5: 1a7e4b7967a6b0be2561d198b456fcf6
SHA-256: 188f8e2075711e808d9470a9e038087e7896344c9baf62557586fa889ed4d56f
Size: 77.11 kB - bind-libs-9.8.2-0.68.3.rc1.AXS4.x86_64.rpm
MD5: c3e774172053b504c8774b4008642f0e
SHA-256: 470613afb20e4576ffc53f68a4e903e93436e55d9cdffa9dc1c4962be0966f10
Size: 891.64 kB - bind-utils-9.8.2-0.68.3.rc1.AXS4.x86_64.rpm
MD5: efa4c5a8fa906c0efb3be405fad9be91
SHA-256: f8202637100dd202b2c5742ca1e63382292f0c9dd93faf42fd344a916f5d8a3a
Size: 188.50 kB - bind-libs-9.8.2-0.68.3.rc1.AXS4.i686.rpm
MD5: eccb5555b574d74f4f873863e663f0f8
SHA-256: 4bb21a70048434022a7513ad36672a0e784993c5cac7409094d13543059c9889
Size: 902.33 kB
English