Fedora 26: 2017-a354efc764 Critical: bind99 DoS and Assertion Problems

BIND (Berkeley Internet Name Domain) is an implementation of the DNS

(Domain Name System) protocols. This package set contains only export

version of BIND libraries, that are used for building ISC DHCP.

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138

[ 1 ] Bug #1441125 - CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;"

https://bugzilla.redhat.com/show_bug.cgi?id=1441125

[ 2 ] Bug #1441133 - CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver

https://bugzilla.redhat.com/show_bug.cgi?id=1441133

[ 3 ] Bug #1441137 - CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received

https://bugzilla.redhat.com/show_bug.cgi?id=1441137

su -c 'dnf upgrade bind99' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org