CLSA-2026-1780406874

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1780406874

Upstream

CVE-2026-3039

CVE-2026-5946

Published

2026-06-02T17:33:41Z

Modified

2026-06-04T09:47:09.512732979Z

Summary

Fix CVE(s): CVE-2026-3039, CVE-2026-5946

Details

SECURITY UPDATE: Multiple assertion failures in named when handling DNS messages with non-IN class (CHAOS, HESIOD) or meta-classes (ANY, NONE) in UPDATE, NOTIFY, and recursion paths
- debian/patches/CVE-2026-5946.patch: disable recursion for non-IN views, reject UPDATE and NOTIFY for non-IN classes, validate DNS message CLASS early in request processing, reject NONE/ANY meta-classes in UPDATE and NOTIFY questions, and skip deny-answer-address for non-IN addresses in bin/named/server.c, lib/bind9/check.c, lib/dns/adb.c, lib/dns/message.c, lib/dns/resolver.c, lib/ns/client.c, lib/ns/update.c
- CVE-2026-5946

References

Affected packages

TuxCare:Ubuntu:20.04

bind9

Package

Name: bind9
Purl: pkg:deb/tuxcare/bind9?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"

bind9-dnsutils

Package

Name: bind9-dnsutils
Purl: pkg:deb/tuxcare/bind9-dnsutils?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"

bind9-doc

Package

Name: bind9-doc
Purl: pkg:deb/tuxcare/bind9-doc?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"

bind9-host

Package

Name: bind9-host
Purl: pkg:deb/tuxcare/bind9-host?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"

bind9-libs

Package

Name: bind9-libs
Purl: pkg:deb/tuxcare/bind9-libs?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"

bind9-utils

Package

Name: bind9-utils
Purl: pkg:deb/tuxcare/bind9-utils?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"

bind9utils

Package

Name: bind9utils
Purl: pkg:deb/tuxcare/bind9utils?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"

dnsutils

Package

Name: dnsutils
Purl: pkg:deb/tuxcare/dnsutils?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:9.18.30-0ubuntu0.20.04.2+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1780406874.json"