bind-9.16.23-34.el9_7.1

エラータID: AXSA:2025-11501:12

リリース日: 
2025/12/09 Tuesday - 19:46
題名: 
bind-9.16.23-34.el9_7.1
影響のあるチャネル: 
MIRACLE LINUX 9 for x86_64
Severity: 
High
Description: 

以下項目について対処しました。

[Security Fix]
- BIND には、応答内のリソースレコードの受け入れが過度に許容
される問題があるため、リモートの攻撃者により、データ破壊を可能
とする脆弱性が存在します。(CVE-2025-40778)

- BIND には、乱数の生成に用いるアルゴリズムの信頼性に問題がある
ため、リモートの攻撃者により、キャッシュポイズニングを可能とする
脆弱性が存在します。(CVE-2025-40780)

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2025-40778
Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
CVE-2025-40780
In specific circumstances, due to a weakness in the Pseudo Random Number Generator (PRNG) that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.16.8-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. bind-9.16.23-34.el9_7.1.src.rpm
    MD5: d31e4126a3d448414fc7371157b543bd
    SHA-256: 01b0ed2dd5d405ee323519470f355d331cdbcc5128139b79b89285a1f9093512
    Size: 5.11 MB

Asianux Server 9 for x86_64
  1. bind-9.16.23-34.el9_7.1.x86_64.rpm
    MD5: f390cf9f111146a59d73b9be732ccdf3
    SHA-256: 6e7ee7836b21b7d0012324b470d05c6dac5aa29926f1433dc95f16093f5d6e18
    Size: 499.51 kB
  2. bind-chroot-9.16.23-34.el9_7.1.x86_64.rpm
    MD5: b573bcf226051fadfd1c455a652f3ee3
    SHA-256: 240160430b56899e35b4b0d5553dfd65905a67ecf7891c3c077d77daa68b3424
    Size: 16.45 kB
  3. bind-devel-9.16.23-34.el9_7.1.i686.rpm
    MD5: 48d270ab46187d41279842c99beac809
    SHA-256: 4c3b18ea2c458d332c34abfc057fb558432240286e22fbbbef7d08e7223bfbd4
    Size: 359.94 kB
  4. bind-devel-9.16.23-34.el9_7.1.x86_64.rpm
    MD5: c8a1c52ca9252f92df84024e9c1c7480
    SHA-256: 5eb9699fdf93cc55c6d5bc45d351ea6cb5b18ec4e8e720def1464eba8d170604
    Size: 359.94 kB
  5. bind-dnssec-doc-9.16.23-34.el9_7.1.noarch.rpm
    MD5: 826851d037f669768076a5027bd6c6d5
    SHA-256: 5cad5e6e58963b4f103a7b7667ea177a2dc9058eefe01c9504a652388fc308a0
    Size: 45.03 kB
  6. bind-dnssec-utils-9.16.23-34.el9_7.1.x86_64.rpm
    MD5: 65fef43dcf38bd7db7882791207fe9c3
    SHA-256: 9f26006dde64427ec71ab742b8f6d0cb1eb5b0bd9111d675457be271e92a8e3e
    Size: 112.48 kB
  7. bind-doc-9.16.23-34.el9_7.1.noarch.rpm
    MD5: c8bcd7634f0c5b944e0ab4ed14956ef5
    SHA-256: 4b758cc20565b847c57f8b3eb7fb7c0e58dd01a7f8e44dbac3c3bcda342c801c
    Size: 2.09 MB
  8. bind-libs-9.16.23-34.el9_7.1.i686.rpm
    MD5: ce8910c6b2ad8b62e8b953616b62045d
    SHA-256: a5bb26db7a4eccfa2ae9a6299992aad3693828425f9e54560f018a6bd2045cec
    Size: 1.33 MB
  9. bind-libs-9.16.23-34.el9_7.1.x86_64.rpm
    MD5: 493a30076152d07badd64036f022f3f0
    SHA-256: 71a80411ffb08e3375b033dbb9b4e326987ba5369720de6fe3aaee0e7ef236f2
    Size: 1.24 MB
  10. bind-license-9.16.23-34.el9_7.1.noarch.rpm
    MD5: bf326d2dda857e80c702593691f1982e
    SHA-256: 66c71ef1882536a25cb6b615dd538ca7e14df490cdde71fe2f948a6605ca819d
    Size: 12.56 kB
  11. bind-utils-9.16.23-34.el9_7.1.x86_64.rpm
    MD5: 9e7276cc7680dcac3c4a9ad62311d0ef
    SHA-256: 0cef7814fbc90ee616bbf94cf6a15d042b30b78db995cc7ce95c5c80733ebc27
    Size: 205.16 kB
  12. python3-bind-9.16.23-34.el9_7.1.noarch.rpm
    MD5: 9917fedf0569fddb2a34c66357f2cd2f
    SHA-256: 504f0bf0145534866d25a726d878d291843aa5a91a8a04b49b2013fa47dc917a
    Size: 71.26 kB