Lucene search
RedHatRHSA-2023:5690HistoryOct 12, 2023 - 2:32 p.m.
(RHSA-2023:5690) Important: bind security update
2023-10-1214:32:59
access.redhat.com
12
bind
security
update
stack exhaustion
control channel
dos
cve-2023-3341
dns
protocols
server
resolver
library
tools
cvss score
acknowledgments
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
58.9%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
- bind: stack exhaustion in control channel code may lead to DoS (CVE-2023-3341)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | x86_64 | bind-chroot | < 9.16.23-1.el9_0.3 | bind-chroot-9.16.23-1.el9_0.3.x86_64.rpm |
| RedHat | 9 | ppc64le | bind-dnssec-utils-debuginfo | < 9.16.23-1.el9_0.3 | bind-dnssec-utils-debuginfo-9.16.23-1.el9_0.3.ppc64le.rpm |
| RedHat | 9 | ppc64le | bind-devel | < 9.16.23-1.el9_0.3 | bind-devel-9.16.23-1.el9_0.3.ppc64le.rpm |
| RedHat | 9 | ppc64le | bind-dnssec-utils | < 9.16.23-1.el9_0.3 | bind-dnssec-utils-9.16.23-1.el9_0.3.ppc64le.rpm |
| RedHat | 9 | ppc64le | bind-debugsource | < 9.16.23-1.el9_0.3 | bind-debugsource-9.16.23-1.el9_0.3.ppc64le.rpm |
| RedHat | 9 | aarch64 | bind | < 9.16.23-1.el9_0.3 | bind-9.16.23-1.el9_0.3.aarch64.rpm |
| RedHat | 9 | s390x | bind-debugsource | < 9.16.23-1.el9_0.3 | bind-debugsource-9.16.23-1.el9_0.3.s390x.rpm |
| RedHat | 9 | noarch | bind-dnssec-doc | < 9.16.23-1.el9_0.3 | bind-dnssec-doc-9.16.23-1.el9_0.3.noarch.rpm |
| RedHat | 9 | ppc64le | bind | < 9.16.23-1.el9_0.3 | bind-9.16.23-1.el9_0.3.ppc64le.rpm |
| RedHat | 9 | s390x | bind-utils | < 9.16.23-1.el9_0.3 | bind-utils-9.16.23-1.el9_0.3.s390x.rpm |
Related
nessus
nessus
Slackware Linux 15.0 / current bind Vulnerability (SSA:2023-264-01)
2023-09-21 00:00:00
RHEL 8 : bind (RHSA-2023:5473)
2023-10-05 00:00:00
RHEL 8 : bind (RHSA-2023:5474)
2023-10-05 00:00:00
almalinux
almalinux
Important: bind security update
2023-10-05 00:00:00
Important: bind9.16 security update
2023-10-05 00:00:00
Important: bind security update
2023-10-12 00:00:00
redhat
redhat
(RHSA-2023:5526) Important: bind security update
2023-10-09 09:35:07
(RHSA-2023:5474) Important: bind security update
2023-10-05 13:48:49
(RHSA-2023:5771) Important: bind9.16 security update
2023-10-17 08:54:52
oraclelinux
oraclelinux
bind security update
2023-10-13 00:00:00
bind9.16 security update
2023-10-06 00:00:00
bind security update
2023-10-13 00:00:00
ibm
ibm
osv
osv
Important: bind9.16 security update
2023-10-05 00:00:00
Important: bind security update
2023-10-12 00:00:00
Important: bind security update
2023-10-05 00:00:00
openvas
openvas
openSUSE: Security Advisory for bind (SUSE-SU-2023:3805-1)
2024-03-04 00:00:00
ISC BIND DoS Vulnerability (CVE-2023-3341) - Linux
2023-09-20 00:00:00
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2023-3164)
2023-11-10 00:00:00
cve
cve
CVE-2023-3341
2023-09-20 13:15:11
slackware
slackware
[slackware-security] bind
2023-09-21 19:42:39
prion
prion
Code injection
2023-09-20 13:15:00
amazon
amazon
Important: bind
2023-09-27 22:48:00
Important: bind
2023-09-27 22:15:00
cloudlinux
cloudlinux
bind: Fix of CVE-2023-3341
2023-10-12 18:43:57
cloudfoundry
cloudfoundry
USN-6421-1: Bind vulnerability | Cloud Foundry
2023-12-04 00:00:00
USN-6390-1: Bind vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
f5
f5
K000137582 : BIND vulnerability CVE-2023-3341
2023-11-15 00:00:00
ubuntucve
ubuntucve
CVE-2023-3341
2023-09-20 00:00:00
nvd
nvd
CVE-2023-3341
2023-09-20 13:15:11
cbl_mariner
cbl_mariner
CVE-2023-3341 affecting package bind for versions less than 9.16.44-1
2024-09-27 09:12:43
debiancve
debiancve
CVE-2023-3341
2023-09-20 13:15:11
ubuntu
ubuntu
Bind vulnerability
2023-10-09 00:00:00
Bind vulnerabilities
2023-09-20 00:00:00
debian
debian
[SECURITY] [DLA 3726-1] bind9 security update
2024-01-30 21:43:57
[SECURITY] [DSA 5504-1] bind9 security update
2023-09-22 20:15:19
redhatcve
redhatcve
CVE-2023-3341
2023-09-20 15:56:02
veracode
veracode
Denial Of Service (DoS)
2023-10-02 16:07:04
rocky
rocky
bind security update
2023-10-14 02:08:30
alpinelinux
alpinelinux
CVE-2023-3341
2023-09-20 13:15:11
centos
centos
bind security update
2024-01-12 19:23:37
cvelist
cvelist
aix
aix
AIX is vulnerable to denial of service due to ISC BIND
2023-12-18 09:19:46
fedora
fedora
[SECURITY] Fedora 39 Update: bind-dyndb-ldap-11.10-21.fc39
2023-11-03 18:51:08
[SECURITY] Fedora 37 Update: bind-dyndb-ldap-11.10-17.fc37
2023-10-11 01:34:01
[SECURITY] Fedora 37 Update: bind-9.18.19-1.fc37
2023-10-11 01:34:00
redos
redos
ROS-20240611-12
2024-06-11 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2279
2023-10-24 13:59:56
mageia
mageia
Updated bind packages fix security vulnerabilities
2023-10-28 00:49:40
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0481
2023-09-29 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0661
2023-10-05 00:00:00
thn
thn
High-Severity Flaws Uncovered in Atlassian Products and ISC BIND Server
2023-09-22 08:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
58.9%
Related for RHSA-2023:5690