bind9.16-9.16.23-0.22.el8_10.4
エラータID: AXSA:2025-11061:02
リリース日:
2025/11/10 Monday - 18:10
題名:
bind9.16-9.16.23-0.22.el8_10.4
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- BIND には、応答内のリソースレコードの受け入れが過度に許容
される問題があるため、リモートの攻撃者により、データ破壊を可能と
する脆弱性が存在します。(CVE-2025-40778)
- BIND には、乱数の生成に用いるアルゴリズムの信頼性に問題がある
ため、リモートの攻撃者により、キャッシュポイズニングを可能とする
脆弱性が存在します。(CVE-2025-40780)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2025-40778
Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
CVE-2025-40780
In specific circumstances, due to a weakness in the Pseudo Random Number Generator (PRNG) that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.16.8-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
In specific circumstances, due to a weakness in the Pseudo Random Number Generator (PRNG) that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.16.8-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
追加情報:
N/A
ダウンロード:
SRPMS
- bind9.16-9.16.23-0.22.el8_10.4.src.rpm
MD5: 29ba07dc605a9987ebdd0364b4d81b09
SHA-256: 8668ba1a390b2204506fe79b3e7b13676a3965edb107fed9f495d29d0ba20f03
Size: 5.17 MB
Asianux Server 8 for x86_64
- bind9.16-9.16.23-0.22.el8_10.4.x86_64.rpm
MD5: 5dd642a54f647500673ed49abb0655df
SHA-256: c402a63d57c9ae2982fbdf08b79193fabcb031b15d24d01348d517c1b999d810
Size: 604.75 kB - bind9.16-chroot-9.16.23-0.22.el8_10.4.x86_64.rpm
MD5: 314f345a8c484d4633f736a2e5894888
SHA-256: 01641ab323fc0f79c23600b4cddead51cca6fe365a671dd01fb72db37e6d6ffd
Size: 112.57 kB - bind9.16-devel-9.16.23-0.22.el8_10.4.i686.rpm
MD5: f6275e825921a4d0daa05fd754d7a4e4
SHA-256: 84ccd4b1c6b48cdcc682da18c012da9bc1fc8a50db5fdaec379b42ee0d9f966b
Size: 428.71 kB - bind9.16-devel-9.16.23-0.22.el8_10.4.x86_64.rpm
MD5: e9531ed97c6a33f55e72c9c803d05f91
SHA-256: 866e5889a101dfc13f09417d36c4f70e77d7bdb582c997d49fb4c13213deea80
Size: 428.67 kB - bind9.16-dnssec-utils-9.16.23-0.22.el8_10.4.x86_64.rpm
MD5: 89cdddecfc01ec92403fe08ef8d37892
SHA-256: 62df611db248897b6a1857f710aad759b248bab913d1f043eb7cc774b9f8f59f
Size: 245.84 kB - bind9.16-doc-9.16.23-0.22.el8_10.4.noarch.rpm
MD5: 2a31056f95d29bf525f3b28d81a5c887
SHA-256: 7a3e528be2a17e6d4bded4c3b8a2999fc5b5b5a7cf55be507f2183ea61d9bf86
Size: 3.67 MB - bind9.16-libs-9.16.23-0.22.el8_10.4.i686.rpm
MD5: 980bd4a3864bed479835f955257ee4b9
SHA-256: e2755d04f343e24cd26c907920eaf11ee3a89f5aee01aed0f5c16c7ee368243a
Size: 1.46 MB - bind9.16-libs-9.16.23-0.22.el8_10.4.x86_64.rpm
MD5: c1ddff3675a279fdf3b14decc8967351
SHA-256: 0cff2f96587c9ff0e73cd7633a338c2ba84fe9fb4b45dbb77ab4d37193faae11
Size: 1.36 MB - bind9.16-license-9.16.23-0.22.el8_10.4.noarch.rpm
MD5: fbe71d55c8e984c4b62f5bb36f367d5a
SHA-256: 1714016de49b37ebcb5fa4ae5c394ebda5aa2b3462827aa911c6e1af4324478b
Size: 108.81 kB - bind9.16-utils-9.16.23-0.22.el8_10.4.x86_64.rpm
MD5: 6bfa5aa02e3b8e4bdb53307d261d6c73
SHA-256: 94b5b9280006e1977a3dc16ed1f7da6ed6f334d93cbc5f1713ffbb5dc73a7535
Size: 290.92 kB - python3-bind9.16-9.16.23-0.22.el8_10.4.noarch.rpm
MD5: 9d780120484c853ccb049db081e5a5aa
SHA-256: 0b860437ad5981f91c056ca212daf546b41f59825b27e3a56a414ed1cc4d96eb
Size: 157.11 kB
English