SUSE-SU-2024:1982-1 -- SLES bind, libisc1606, libdns1605, libisccfg1600, libbind9-1600, libirs1601, libirs-devel, libns1604, libisccc1600, python3-bind| ID: oval:org.secpod.oval:def:89051958 | Date: (C)2024-06-18 (M)2024-06-24 |
| Class: PATCH | Family: unix |
This update for bind fixes the following issues: * CVE-2023-4408: Fixed denial of service during DNS message parsing with different names * CVE-2023-50387: Fixed denial of service during DNS messages validation with DNSSEC signatures * CVE-2023-50868: Fixed denial of service during NSEC3 closest encloser proof preparation * CVE-2023-5517: Fixed denial of service caused by specific queries with nxdomain-redirect enabled * CVE-2023-6516: Fixed denial of service caused by specific queries that continuously triggered cache database maintenance
| Platform: |
| SUSE Linux Enterprise Server 15 SP3 |
| Product: |
| bind |
| libisc1606 |
| libdns1605 |
| libisccfg1600 |
| libbind9-1600 |
| libirs1601 |
| libirs-devel |
| libns1604 |
| libisccc1600 |
| python3-bind |
