bind9.16-9.16.23-0.14.el8.2.ML.1
エラータID: AXSA:2023-6494:03
リリース日:
2023/10/12 Thursday - 07:22
題名:
bind9.16-9.16.23-0.14.el8.2.ML.1
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- BIND には、再帰処理の深さが適切に制限されていない問題があるため、
リモートの攻撃者により、細工されたプロセスコントロールチャンネル
メッセージの送信を介して、サービス拒否攻撃 (スタック領域の枯渇) を
可能とする脆弱性が存在します。(CVE-2023-3341)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2023-3341
The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing `named` to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary. This issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.
The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing `named` to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary. This issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.
追加情報:
N/A
ダウンロード:
SRPMS
- bind9.16-9.16.23-0.14.el8.2.ML.1.src.rpm
MD5: 6e3d7096f9863ee3aa76f4d499887ebc
SHA-256: 6b4a093f104ee63fa665836b6de0c17a97eb4ea44d3e6e2498c4909b4f681012
Size: 5.06 MB
Asianux Server 8 for x86_64
- bind9.16-9.16.23-0.14.el8.2.ML.1.x86_64.rpm
MD5: 2cd384d5dabc46bb97f362c3b185f48d
SHA-256: 084902433dbed085e68a05477591f4a8bf74ce73c24c016bbfd992b2fe184f7c
Size: 602.88 kB - bind9.16-chroot-9.16.23-0.14.el8.2.ML.1.x86_64.rpm
MD5: 6116a13bc1b3a14fb220eac82b26dfba
SHA-256: f7295a97c780609b07f79e067dfa480d7e9c649ea91e8e21418568c38c214f1c
Size: 110.73 kB - bind9.16-devel-9.16.23-0.14.el8.2.ML.1.i686.rpm
MD5: 62b1943944fb5272ce63d87c3913203a
SHA-256: 1d9262261aa5ce1267078b4608dbcb0a18feffa24a4e6d74c251555bee7d98fb
Size: 426.30 kB - bind9.16-devel-9.16.23-0.14.el8.2.ML.1.x86_64.rpm
MD5: 2fe40ef8647ea863b7071ee873494bce
SHA-256: b13fed4989e4885ab525d628ced21c08664b55c27f234aca0863dae0806f3992
Size: 426.27 kB - bind9.16-dnssec-utils-9.16.23-0.14.el8.2.ML.1.x86_64.rpm
MD5: 61cfd5f090bc5fa8b5cd7cb8f325cff3
SHA-256: c919e1bf15da14d7dd265b5050bfae3f09dd76737bcdab33d3352b14edab1621
Size: 244.07 kB - bind9.16-doc-9.16.23-0.14.el8.2.ML.1.noarch.rpm
MD5: 3f0fd20fbac82d568917a4096689580e
SHA-256: 9b4f10d1dfb8c593c2b23571f337ba2acdf097eb03c70dd84f2ae9189a2226b9
Size: 3.67 MB - bind9.16-libs-9.16.23-0.14.el8.2.ML.1.i686.rpm
MD5: ce5b6868b8f7493ee6ab75788871e107
SHA-256: 97f81b1b88d2694902beb9ecc66b827be09e2b229fd62d3b65e9827ec386caf0
Size: 1.45 MB - bind9.16-libs-9.16.23-0.14.el8.2.ML.1.x86_64.rpm
MD5: 43f339850769a4fa5d561ab177a0956e
SHA-256: 66eb6f9f8ed732aa8c9c5a611d418b1d64ce9557d33249414e8df050f8bc34be
Size: 1.36 MB - bind9.16-license-9.16.23-0.14.el8.2.ML.1.noarch.rpm
MD5: ba19c7c0c6915bdbb92a9fa55581b455
SHA-256: 05d55a40fe5c8075abda22607c387fdffc8da922fef2b3d079d99c47268cc391
Size: 107.05 kB - bind9.16-utils-9.16.23-0.14.el8.2.ML.1.x86_64.rpm
MD5: 580ac0deca2945e5a7c9363083030896
SHA-256: c2a148a327219cc04c6cff7f0a10a21cb19d7abbaaf4dc320c9961dcc3ec4647
Size: 288.88 kB - python3-bind9.16-9.16.23-0.14.el8.2.ML.1.noarch.rpm
MD5: 9b883814ccf4885c7caf1b8bb3edb4d7
SHA-256: 3a95853156509520ef58a3b3cb5d86fb02e2beeba8a3dc6acb9890c5b5c6156c
Size: 155.35 kB
English