bind-9.16.23-11.el9.2
エラータID: AXSA:2023-6502:11
リリース日:
2023/10/13 Friday - 21:03
題名:
bind-9.16.23-11.el9.2
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- BIND には、再帰処理の深さが適切に制限されていない問題があるため、
リモートの攻撃者により、細工されたプロセスコントロールチャンネル
メッセージの送信を介して、サービス拒否攻撃 (スタック領域の枯渇) を
可能とする脆弱性が存在します。(CVE-2023-3341)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2023-3341
The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing `named` to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary. This issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.
The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing `named` to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary. This issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.
追加情報:
N/A
ダウンロード:
SRPMS
- bind-9.16.23-11.el9.2.src.rpm
MD5: e135da78bcfc867998fd4bc7e95135d1
SHA-256: d4b0d80008442ebeed63dd14ff28f4760563d1cae5019948c0b5d74cc3718c8a
Size: 4.97 MB
Asianux Server 9 for x86_64
- bind-9.16.23-11.el9.2.x86_64.rpm
MD5: 44d9ab98b1a55b4f0c53fee94c0f18e6
SHA-256: a525f0be6314e7922aff1193a44f2e377a1119e774680a262cb7accf29716cd5
Size: 486.96 kB - bind-chroot-9.16.23-11.el9.2.x86_64.rpm
MD5: 9d20410fb2a394b62b4d93e16c503297
SHA-256: cc009339134bac98c884d4ae58737b82edda91f054cc8c462bd7bdf8bdb3534a
Size: 15.69 kB - bind-devel-9.16.23-11.el9.2.i686.rpm
MD5: e202760aeff00a9d6911fdca573c5dbf
SHA-256: c5b75a1b54d235be4111c3d429b9cc49b89066498fe00a3c2ea7aedd3a76204b
Size: 300.92 kB - bind-devel-9.16.23-11.el9.2.x86_64.rpm
MD5: f6f292274dacc170ea97d2764584968b
SHA-256: 8105b1b1005b1f9dcc7f00082c93c37d63a3e7fe720e70a5213215aace5e6e02
Size: 300.90 kB - bind-dnssec-doc-9.16.23-11.el9.2.noarch.rpm
MD5: d1b63119c2b8b74f7e6945135f5d5d28
SHA-256: 1675aea04b16e43c132fa29aa5d5e9b51b0a3363683aaaf21007e528fe93b598
Size: 44.29 kB - bind-dnssec-utils-9.16.23-11.el9.2.x86_64.rpm
MD5: 37d0d7ad316cc6d307fffd81e55e7046
SHA-256: b9fd3cd8fc2a0a9c3ac96b6b450330aee80a9c94d7f0718b99cdbd320b2c2297
Size: 111.73 kB - bind-doc-9.16.23-11.el9.2.noarch.rpm
MD5: 15cdd3f7e3bc4913e8cd80e68036f7d5
SHA-256: 021ead303a3a61d1b28e5f80ce757705bc5c6c7dc1af0b3e559b2426aabbfe0b
Size: 2.07 MB - bind-libs-9.16.23-11.el9.2.i686.rpm
MD5: 92b4a1524f62134d80b8d28f086160c3
SHA-256: bb008a2c20b6a49215853168047e35f86c297bf65088aba4790b39e30ed9cd6f
Size: 1.33 MB - bind-libs-9.16.23-11.el9.2.x86_64.rpm
MD5: 63ff12d677ec7f745331d5f712e93be0
SHA-256: 5e4896f703562012e75b1c278cd389939cbe0614619e94f62a1115a2581c2589
Size: 1.24 MB - bind-license-9.16.23-11.el9.2.noarch.rpm
MD5: 0acef2708c3c9fe3eb487374b7d3227a
SHA-256: a0cf22ff8a017088e75fca3e994b3cc14d8563c02b19ca0704ad85bef12231a0
Size: 11.82 kB - bind-utils-9.16.23-11.el9.2.x86_64.rpm
MD5: b90896cca39040fcd27f01efe359fb1e
SHA-256: 880dbde48db3cf4dbfe40e3c61e74646b60ae649a0d619603ff7d5db694bab18
Size: 198.35 kB - python3-bind-9.16.23-11.el9.2.noarch.rpm
MD5: ffbe1faf698bc3eac51d48ea3c1a8b17
SHA-256: 570b859151c23b588c13262ad41ce0ad1ece88d0fe8710c69f9226b41539f479
Size: 59.82 kB