bind-9.16.23-5.el9
エラータID: AXSA:2023-4746:01
リリース日:
2023/01/16 Monday - 07:31
題名:
bind-9.16.23-5.el9
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- BIND には、フォワーダーを利用した際に応答レコードの正当性を
確認していない問題があるため、リモートの攻撃者により、キャッシュ
ポイズニングを可能とする脆弱性が存在します。(CVE-2021-25220)
- BIND には、TCP コネクションが CLOSE_WAIT 状態で残り続けて
しまう問題があるため、リモートの攻撃者により、keep-response-order
を有効にするなどの巧妙な細工をした TCP ストリームの送信を介して、
リソース枯渇によるサービス拒否攻撃を可能とする脆弱性が存在します。
(CVE-2022-0396)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2021-25220
BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.
BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.
CVE-2022-0396
BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.
BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.
追加情報:
N/A
ダウンロード:
SRPMS
- bind-9.16.23-5.el9.src.rpm
MD5: 126099218eb35d8117a39d56a8f839d5
SHA-256: ea238c3a21fe20ab93bcf0134c45fb16a61e133458933d399553ce87b3538f95
Size: 4.95 MB
Asianux Server 9 for x86_64
- bind-9.16.23-5.el9.x86_64.rpm
MD5: 3d835c2486b68884f4ff55775691dfe4
SHA-256: f70f164323ed1af82fab97f38ed2b1917370120d1c872ac842becafa31d27517
Size: 488.51 kB - bind-chroot-9.16.23-5.el9.x86_64.rpm
MD5: 8ac39fe36d39474c140bf09618069377
SHA-256: 735551237bfd0ea62a9bd0f33448a4528bd862ff87a30a0d07743ac59ab357bb
Size: 17.32 kB - bind-devel-9.16.23-5.el9.x86_64.rpm
MD5: 17f3e8399a220c217e385019d27a90f2
SHA-256: 6485e0077eaeb8d8fe4b19bf7759b76112702f6afeb197b0e281c7677e5ba1bb
Size: 302.53 kB - bind-dnssec-doc-9.16.23-5.el9.noarch.rpm
MD5: 8acd69bb8f4ad94f818db909e72e6f06
SHA-256: 7e1c02b2d951037572756acc51b7acdc80e577e33532218f0884ee05c2001eb6
Size: 45.99 kB - bind-dnssec-utils-9.16.23-5.el9.x86_64.rpm
MD5: e0f0386520584afbbe899d2f53fb9525
SHA-256: 183ad762d806ba71f830c8c76d2de11e9b413c4dcab85bb604b6475a3344fdd3
Size: 113.68 kB - bind-libs-9.16.23-5.el9.x86_64.rpm
MD5: ef304538d02f90645351dafe4525536b
SHA-256: 3c06f4dd4cf65bd9ca4bdcb9813c0b2b490b21f3dc798a76c1f8cd54b22176f8
Size: 1.24 MB - bind-license-9.16.23-5.el9.noarch.rpm
MD5: 9c06838014ab64b04e503ca425a335de
SHA-256: 6c9e4e5279021d82fc5b6bd478a57a3bdd6160a40bb8f776e0239ce9623586f3
Size: 13.52 kB - bind-utils-9.16.23-5.el9.x86_64.rpm
MD5: 4443e62412a12b177d1a7767380fdc67
SHA-256: bb3ae361358158649d2706c0c1fa70802fbcbb4249fbc6d0ea19b75f071e485c
Size: 200.08 kB - python3-bind-9.16.23-5.el9.noarch.rpm
MD5: dca608b39d4a5d3c7fe606dbdad5a38f
SHA-256: c3f725ee2c54e7d9742245b428bde59b7a1bc1280b17a6d40d0ce0da96d9170c
Size: 61.54 kB - bind-devel-9.16.23-5.el9.i686.rpm
MD5: 4a167d2cac3e05d8c4c5459bcbfef22e
SHA-256: 8232d7a9a5a1c862063a639a8f9d4b8c253f7b6d47eb2dc2ecb3ef173210845c
Size: 302.57 kB - bind-libs-9.16.23-5.el9.i686.rpm
MD5: 2c63559e7eee35e5a76fb5bb87760f56
SHA-256: 3f4e516fdf56e76afa3e54de984c8e403f49c42fd2ba10f78077b7c08efeef38
Size: 1.33 MB