Lucene search

DebianDEBIAN:DSA-3904-2:091C3

HistoryJul 23, 2017 - 7:07 p.m.

[SECURITY] [DSA 3904-2] bind9 regression update

2017-07-2319:07:02

lists.debian.org

Debian Security Advisory DSA-3904-2 [email protected]
https://www.debian.org/security/ Yves-Alexis Perez
July 23, 2017 https://www.debian.org/security/faq

Package : bind9
Debian Bug : 868952

The security update announced as DSA-3904-1 in bind9 introduced a regression.
The fix for CVE-2017-3142 broke verification of TSIG signed TCP message
sequences where not all the messages contain TSIG records. This is conform to
the spec and may be used in AXFR and IXFR response.

For the oldstable distribution (jessie), this problem has been fixed
in version 1:9.9.5.dfsg-9+deb8u13.

For the stable distribution (stretch), this problem has been fixed in
version 1:9.10.3.dfsg.P4-12.3+deb9u2.

For the testing distribution (buster), this problem has been fixed
in version 1:9.10.3.dfsg.P4-12.5.

For the unstable distribution (sid), this problem has been fixed in
version 1:9.10.3.dfsg.P4-12.5.

We recommend that you upgrade your bind9 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian9arm64libbind9-140-dbgsym< 1:9.10.3.dfsg.P4-12.3+deb9u2libbind9-140-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_arm64.deb
Debian9amd64bind9utils< 1:9.10.3.dfsg.P4-12.3+deb9u2bind9utils_1:9.10.3.dfsg.P4-12.3+deb9u2_amd64.deb
Debian9ppc64elliblwres141-dbgsym< 1:9.10.3.dfsg.P4-12.3+deb9u2liblwres141-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_ppc64el.deb
Debian8powerpclibirs-export91< 1:9.9.5.dfsg-9+deb8u13libirs-export91_1:9.9.5.dfsg-9+deb8u13_powerpc.deb
Debian8i386libisc-export95-udeb< 1:9.9.5.dfsg-9+deb8u13libisc-export95-udeb_1:9.9.5.dfsg-9+deb8u13_i386.deb
Debian8armhflibdns-export100-udeb< 1:9.9.5.dfsg-9+deb8u13libdns-export100-udeb_1:9.9.5.dfsg-9+deb8u13_armhf.deb
Debian8armeldnsutils< 1:9.9.5.dfsg-9+deb8u13dnsutils_1:9.9.5.dfsg-9+deb8u13_armel.deb
Debian9mipslibirs141-dbgsym< 1:9.10.3.dfsg.P4-12.3+deb9u2libirs141-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_mips.deb
Debian9mipsellibisccc140< 1:9.10.3.dfsg.P4-12.3+deb9u2libisccc140_1:9.10.3.dfsg.P4-12.3+deb9u2_mipsel.deb
Debian9s390xbind9utils-dbgsym< 1:9.10.3.dfsg.P4-12.3+deb9u2bind9utils-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_s390x.deb

OS	Version	Architecture	Package	Version	Filename
Debian	9	arm64	libbind9-140-dbgsym	< 1:9.10.3.dfsg.P4-12.3+deb9u2	libbind9-140-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_arm64.deb
Debian	9	amd64	bind9utils	< 1:9.10.3.dfsg.P4-12.3+deb9u2	bind9utils_1:9.10.3.dfsg.P4-12.3+deb9u2_amd64.deb
Debian	9	ppc64el	liblwres141-dbgsym	< 1:9.10.3.dfsg.P4-12.3+deb9u2	liblwres141-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_ppc64el.deb
Debian	8	powerpc	libirs-export91	< 1:9.9.5.dfsg-9+deb8u13	libirs-export91_1:9.9.5.dfsg-9+deb8u13_powerpc.deb
Debian	8	i386	libisc-export95-udeb	< 1:9.9.5.dfsg-9+deb8u13	libisc-export95-udeb_1:9.9.5.dfsg-9+deb8u13_i386.deb
Debian	8	armhf	libdns-export100-udeb	< 1:9.9.5.dfsg-9+deb8u13	libdns-export100-udeb_1:9.9.5.dfsg-9+deb8u13_armhf.deb
Debian	8	armel	dnsutils	< 1:9.9.5.dfsg-9+deb8u13	dnsutils_1:9.9.5.dfsg-9+deb8u13_armel.deb
Debian	9	mips	libirs141-dbgsym	< 1:9.10.3.dfsg.P4-12.3+deb9u2	libirs141-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_mips.deb
Debian	9	mipsel	libisccc140	< 1:9.10.3.dfsg.P4-12.3+deb9u2	libisccc140_1:9.10.3.dfsg.P4-12.3+deb9u2_mipsel.deb
Debian	9	s390x	bind9utils-dbgsym	< 1:9.10.3.dfsg.P4-12.3+deb9u2	bind9utils-dbgsym_1:9.10.3.dfsg.P4-12.3+deb9u2_s390x.deb

Rows per page:

1-10 of 6681

JSON

Related for DEBIAN:DSA-3904-2:091C3