Lucene search
OracleLinuxELSA-2024-3741HistoryJun 10, 2024 - 12:00 a.m.
bind, bind-dyndb-ldap, and dhcp security update
2024-06-1000:00:00
linux.oracle.com
dnssec
cpu consumption
design by contract
dns messages
keytrap
bug reporting
oracle linux support
abi
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7 High
AI Score
Confidence
Low
0.05 Low
EPSS
Percentile
92.9%
bind
[32:9.11.4-26.P2.16]
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
CVE-2023-50868) - Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
bind-dyndb-ldap
[11.1-7.1] - Rebuild required for BIND changes for KeyTrap change (CVE-2023-50387)
dhcp
[12:4.2.5-83.0.3.2] - Update bug reporting URL [Orabug: 35496820]
- Direct users to Oracle Linux support site.
[12:4.2.5-83.2] - Rebuild because of bind ABI changes related to CVE-2023-50387
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | bind | < 9.11.4-26.P2.el7_9.16 | bind-9.11.4-26.P2.el7_9.16.src.rpm |
| oracle linux | 7 | src | bind | < 9.11.4-26.P2.el7_9.16 | bind-9.11.4-26.P2.el7_9.16.src.rpm |
| oracle linux | 7 | src | bind | < 9.11.4-26.P2.el7_9.16 | bind-9.11.4-26.P2.el7_9.16.src.rpm |
| oracle linux | 7 | src | bind-dyndb-ldap | < 11.1-7.el7_9.1 | bind-dyndb-ldap-11.1-7.el7_9.1.src.rpm |
| oracle linux | 7 | src | bind-dyndb-ldap | < 11.1-7.el7_9.1 | bind-dyndb-ldap-11.1-7.el7_9.1.src.rpm |
| oracle linux | 7 | src | bind-dyndb-ldap | < 11.1-7.el7_9.1 | bind-dyndb-ldap-11.1-7.el7_9.1.src.rpm |
| oracle linux | 7 | src | dhcp | < 4.2.5-83.0.3.el7_9.2 | dhcp-4.2.5-83.0.3.el7_9.2.src.rpm |
| oracle linux | 7 | src | dhcp | < 4.2.5-83.0.3.el7_9.2 | dhcp-4.2.5-83.0.3.el7_9.2.src.rpm |
| oracle linux | 7 | src | dhcp | < 4.2.5-83.0.3.el7_9.2 | dhcp-4.2.5-83.0.3.el7_9.2.src.rpm |
| oracle linux | 7 | aarch64 | bind | < 9.11.4-26.P2.el7_9.16 | bind-9.11.4-26.P2.el7_9.16.aarch64.rpm |
Related
nessus
nessus
RHEL 8 : bind and dhcp (RHSA-2024:1782)
2024-04-28 00:00:00
RHEL 8 : bind and dhcp (RHSA-2024:2821)
2024-05-13 00:00:00
Rocky Linux 8 : bind and dhcp (RLSA-2024:3271)
2024-06-14 00:00:00
rocky
rocky
bind and dhcp security update
2024-05-06 13:04:07
bind and dhcp security update
2024-06-14 13:59:16
dnsmasq security update
2024-03-27 04:34:32
redhat
redhat
(RHSA-2024:2721) Important: bind and dhcp security update
2024-05-07 06:32:21
(RHSA-2024:2821) Important: bind and dhcp security update
2024-05-13 00:58:19
(RHSA-2024:3271) Important: bind and dhcp security update
2024-05-22 10:41:26
almalinux
almalinux
Important: bind and dhcp security update
2024-04-12 00:00:00
Important: bind and dhcp security update
2024-05-22 00:00:00
Important: dnsmasq security update
2024-03-14 00:00:00
osv
osv
Important: bind and dhcp security update
2024-04-12 00:00:00
Important: bind and dhcp security update
2024-05-22 00:00:00
Important: bind and dhcp security update
2024-05-06 13:04:07
oraclelinux
oraclelinux
bind and dhcp security update
2024-05-29 00:00:00
bind and dhcp security update
2024-04-11 00:00:00
unbound security update
2024-02-28 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:1894-1)
2024-06-03 00:00:00
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1561)
2024-05-10 00:00:00
Mageia: Security Advisory (MGASA-2024-0039)
2024-02-19 00:00:00
freebsd
freebsd
powerdns-recursor -- Multiple Vulnerabilities
2024-02-14 00:00:00
amazon
amazon
Important: unbound
2024-02-29 10:03:00
Important: bind
2024-04-24 22:15:00
akamaiblog
akamaiblog
ubuntu
ubuntu
Bind vulnerabilities
2024-04-09 00:00:00
Unbound vulnerabilities
2024-02-28 00:00:00
Bind vulnerabilities
2024-02-13 00:00:00
debian
debian
[SECURITY] [DSA 5620-1] unbound security update
2024-02-14 06:49:32
[SECURITY] [DLA 3816-1] bind9 security update
2024-05-17 18:05:06
[SECURITY] [DSA 5626-1] pdns-recursor security update
2024-02-18 16:35:24
redos
redos
ROS-20240410-09
2024-04-10 00:00:00
ROS-20240611-09
2024-06-11 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: unbound-1.19.1-2.fc39
2024-02-18 00:55:50
[SECURITY] Fedora 38 Update: pdns-recursor-4.8.6-1.fc38
2024-02-23 01:32:18
[SECURITY] Fedora 38 Update: bind9-next-9.19.21-1.fc38
2024-02-26 00:47:16
cloudlinux
cloudlinux
bind: Fix of 2 CVEs
2024-03-14 17:26:05
mageia
mageia
Updated bind packages fix security vulnerabilities
2024-02-15 21:36:07
Updated dnsmasq packages fix security vulnerabilities
2024-02-18 04:49:05
Updated unbound packages fix security vulnerabilities
2024-02-17 03:55:07
freebsd_advisory
freebsd_advisory
FreeBSD-SA-24:03.unbound
2024-03-28 00:00:00
slackware
slackware
[slackware-security] dnsmasq
2024-02-14 04:22:19
cloudfoundry
cloudfoundry
USN-6665-1: Unbound vulnerabilities | Cloud Foundry
2024-04-04 00:00:00
USN-6633-1: Bind vulnerabilities | Cloud Foundry
2024-02-29 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0205
2024-02-14 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7 High
AI Score
Confidence
Low
0.05 Low
EPSS
Percentile
92.9%
Related for ELSA-2024-3741