Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Ubuntu 22.10 LTS: USN-5827-1 Moderate: Bind9 Denial of Service Threat

ubuntu
Calendar Grey January 25, 2023
Dist Ubuntu Esm H88
Enhance your bind9 security on Ubuntu 22.10 against DoS threats by updating packages, configuring rate limiting, enabling DNSSEC, and more
Several security issues were fixed in Bind.

Summary

Several security issues were fixed in Bind.

Software Description:

- bind9: Internet Domain Name Server

Details:

Rob Schulhof discovered that Bind incorrectly handled a large number of

UPDATE messages. A remote attacker could possibly use this issue to cause

Bind to consume resources, resulting in a denial of service.

(CVE-2022-3094)

Borja Marcos discovered that Bind incorrectly handled certain RRSIG

queries. A remote attacker could possibly use this issue to cause Bind to

crash, resulting in a denial of service. This issue only affected Ubuntu

22.04 LTS and Ubuntu 22.10. (CVE-2022-3736)

Maksym Odinintsev discovered that Bind incorrectly handled certain answers

from stale cache. A remote attacker could possibly use this issue to cause

Bind to crash, resulting in a denial of service. This issue only affected

Ubuntu 22.04 LTS and Ubuntu 22.10. (CVE-2022-3924)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.10:
   bind9                           1:9.18.4-2ubuntu2.1

Ubuntu 22.04 LTS:
   bind9                           1:9.18.1-1ubuntu1.3

Ubuntu 20.04 LTS:
   bind9                           1:9.16.1-0ubuntu2.12

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5827-1

CVE-2022-3094, CVE-2022-3736, CVE-2022-3924

January 25, 2023

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here