Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 519
Alerts This Week
Warning Icon 1 519

Fedora 27: 2019-7888456023 High: OpenSSL Memory Corruption Repair

fedora
Calendar Grey January 30, 2018
Dist Fedora Esm H88
BIND 9.11.2-P2 security patch for Fedora addresses CVE-2021-3005 and enhances robustness. Update today.
Update to BIND 9.11.2-P1, fixing CVE-2017-3145

Summary

BIND (Berkeley Internet Name Domain) is an implementation of the DNS

(Domain Name System) protocols. BIND includes a DNS server (named),

which resolves host names to IP addresses; a resolver library

(routines for applications to use when interfacing with DNS); and

tools for verifying that the DNS server is operating properly.

Update to BIND 9.11.2-P1, fixing CVE-2017-3145. Also with rebase to current

supported minor version.

[ 1 ] Bug #1535307 - CVE-2017-3145 bind: Improper sequencing during cleanup can lead to use-after-free error, causinga crash in named [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1535307

su -c 'dnf upgrade bind' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Change Log

References

Update Instructions

Severity
important
Lowest
Low
Medium
High
Critical

Product: Fedora 26
Version: 9.11.2
Release: 1.P1.fc26
URL: Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.