ALSA-2022:6763
- Source
- https://errata.almalinux.org/9/ALSA-2022-6763.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2022:6763.json
- Related
- Published
- 2022-10-03T00:00:00Z
- Modified
- 2022-10-14T16:04:27Z
- Details
-
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
- bind: BIND 9 resolvers configured to answer from cache with zero stale-answer-timeout may terminate unexpectedly (CVE-2022-3080)
- bind: memory leak in ECDSA DNSSEC verification code (CVE-2022-38177)
- bind: memory leaks in EdDSA DNSSEC verification code (CVE-2022-38178)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
-
- https://access.redhat.com/errata/RHSA-2022:6763
- https://access.redhat.com/security/cve/CVE-2022-3080
- https://access.redhat.com/security/cve/CVE-2022-38177
- https://access.redhat.com/security/cve/CVE-2022-38178
- https://bugzilla.redhat.com/2128600
- https://bugzilla.redhat.com/2128601
- https://bugzilla.redhat.com/2128602
- https://errata.almalinux.org/9/ALSA-2022-6763.html
Affected packages
AlmaLinux:9 / bind
Package
- Name
- bind
AlmaLinux:9 / bind-chroot
Package
- Name
- bind-chroot
AlmaLinux:9 / bind-devel
Package
- Name
- bind-devel
AlmaLinux:9 / bind-dnssec-doc
Package
- Name
- bind-dnssec-doc
AlmaLinux:9 / bind-dnssec-utils
Package
- Name
- bind-dnssec-utils
AlmaLinux:9 / bind-libs
Package
- Name
- bind-libs
AlmaLinux:9 / bind-license
Package
- Name
- bind-license
AlmaLinux:9 / bind-utils
Package
- Name
- bind-utils