bind-9.11.4-26.P2.13.0.1.el7.AXS7
エラータID: AXSA:2023-4859:03
リリース日:
2023/01/26 Thursday - 00:52
題名:
bind-9.11.4-26.P2.13.0.1.el7.AXS7
影響のあるチャネル:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- BIND には、フォワーダーを利用した際に応答レコードの正当性を確認して
いない問題があるため、リモートの攻撃者により、キャッシュポイズニング
を可能とする脆弱性が存在します。(CVE-2021-25220)
- BIND には、リモートの攻撃者により、細工したクエリを用いたリゾルバー
サーバーのフラッディングを介して、リゾルバーの性能を大幅に低下させる
ことによるサービス拒否攻撃を可能とする脆弱性が存在します。
(CVE-2022-2795)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2021-25220
BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.
BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.
CVE-2022-2795
By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.
By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.
追加情報:
N/A
ダウンロード:
SRPMS
- bind-9.11.4-26.P2.13.0.1.el7.AXS7.src.rpm
MD5: 68773ab285d99a9aa89d338efbcec305
SHA-256: 4fd8d24be59b328fc96daf69114731ae99c8f899bf12f1a6337903e71fbe1ce0
Size: 9.38 MB
Asianux Server 7 for x86_64
- bind-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 63a48b9fc9bf709bcb9e7137fca2ec80
SHA-256: cd0a5af9fad450787caf9de8dbfc14802ea3ab79eea0a8b105fd3d6cc718500e
Size: 2.32 MB - bind-chroot-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: ff39b51befd97a2e6188cc9a1a3fd022
SHA-256: fd7d46f3ea67f9438417f47a3ac360c3f5966050d4baa67d0d3ca28c8ff49888
Size: 92.77 kB - bind-export-devel-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 9ccafb36796bc4df224a4ec7bc9ebb09
SHA-256: 87a5709aa1ae90204e0ea622e2baec0eb6296c75c8c76fb0b998409765049763
Size: 389.32 kB - bind-export-libs-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 56487e1c1ef619d5d4eab6770cd7a0d6
SHA-256: 4d9d4954f553980128a081cee5c53432059eabf96beb5209500b20ccdb1ea207
Size: 1.09 MB - bind-libs-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 34a530c1aac15eb6be78da40e84c0456
SHA-256: 932760481a233a49c93e8e3e846a1372317eaf3d91e077ed6c2b79031f9d4af6
Size: 157.27 kB - bind-libs-lite-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 355da515ab76bc9da377c8e752746268
SHA-256: ce2a1a0e71b97f42904e741ae0c1b393b6d16457d4b30ea511bba30cbba24a07
Size: 1.13 MB - bind-license-9.11.4-26.P2.13.0.1.el7.AXS7.noarch.rpm
MD5: eba9ec18081ad6be740e720e28de7a3f
SHA-256: 3ea2142acfb07f005bf83f4fc086e8f462ba585812d38c8cda71b96bbde67ecd
Size: 91.00 kB - bind-pkcs11-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 32d7626a90f98908ae824e024e8c7bb8
SHA-256: 3b3e7d2549b2dab088e84aca1cc89fb6d9d4e9b07fd4cbab7a3c1ab3fac12a55
Size: 362.10 kB - bind-pkcs11-libs-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: d3e2f24568d2709e451c4de9b6c9a54f
SHA-256: 05685ca856e31e21ccc1b00b7014a9f66560b8627cab8d5a2a395250264288cd
Size: 1.07 MB - bind-pkcs11-utils-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 60d933b93f40ed0faa4068da86199441
SHA-256: 7cb06adca0b4c0d1ced00bf7b667d303b65ec688cead3fad8077c1b4be21ee14
Size: 209.44 kB - bind-utils-9.11.4-26.P2.13.0.1.el7.AXS7.x86_64.rpm
MD5: 05b86bc44a8e5dd8d438bddf00710872
SHA-256: 0ef47419c871ba006551ce7d094c98842831314300f4d528a8683baf909f720d
Size: 260.84 kB - bind-export-libs-9.11.4-26.P2.13.0.1.el7.AXS7.i686.rpm
MD5: 359140683411a4c55f2b2ba7e8293e83
SHA-256: d2e8433ca9c6c887bddbc9ff68d5c658d2e4e2cc9809974790a38c35f6ac190d
Size: 1.08 MB - bind-libs-9.11.4-26.P2.13.0.1.el7.AXS7.i686.rpm
MD5: 61c7119a944b924a5d3f4f03e439b39c
SHA-256: 0cbbe7e8325960eb46e40111947de01cb508f1b392b8a6fe4be826783d95a6fc
Size: 156.49 kB - bind-libs-lite-9.11.4-26.P2.13.0.1.el7.AXS7.i686.rpm
MD5: 1d1e21567e26147056722d316799360a
SHA-256: 4eeca8d8839562fc89ae98cbe761a436912eb330dce67d1d64cd7ba4ff7a0fe4
Size: 1.11 MB - bind-pkcs11-libs-9.11.4-26.P2.13.0.1.el7.AXS7.i686.rpm
MD5: f63fea6aedf09430fce0cf8f12e95d8c
SHA-256: 66811baf9edcf4684297b7e18da0b12fe9959a8f2d9d13ff73156eb8dd3b5394
Size: 1.06 MB