Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H800
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorymoderatesecurity fix

Scientific Linux 7: SLSA-2021-3325-1 Moderate: Bind IXFR Termination Issue

bind: Broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly (CVE-2021-25214) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE --- SL7 x86_64 bind-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-chroot-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-debuginfo-9.11.4-26.P2.el7_9.7.i68 [More...]. Synopsis: Moderate: bind security update Advisory ID: SLSA-2021:3325-1 Issue Date: 2021-08-31 CVE Numbers: CVE-2021-25214 -- Security Fix(es): * bind: Broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly (CVE-2021-25214) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to theCVE --- SL7 x86_64 bind-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-chroot-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-debuginfo-9.11.4-26.P2.el7_9.7.i686.rpm bind-debuginfo-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-devel-9.11.4-26.P2.el7_9.7.i686.rpm bind-devel-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-export-devel-9.11.4-26.P2.el7_9.7.i686.rpm bind-export-devel-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-export-libs-9.11.4-26.P2.el7_9.7.i686.rpm bind-export-libs-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-libs-9.11.4-26.P2.el7_9.7.i686.rpm bind-libs-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-libs-lite-9.11.4-26.P2.el7_9.7.i686.rpm bind-libs-lite-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-lite-devel-9.11.4-26.P2.el7_9.7.i686.rpm bind-lite-devel-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-pkcs11-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-pkcs11-devel-9.11.4-26.P2.el7_9.7.i686.rpm bind-pkcs11-devel-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-pkcs11-libs-9.11.4-26.P2.el7_9.7.i686.rpm bind-pkcs11-libs-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-pkcs11-utils-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-sdb-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-sdb-chroot-9.11.4-26.P2.el7_9.7.x86_64.rpm bind-utils-9.11.4-26.P2.el7_9.7.x86_64.rpm noarch bind-license-9.11.4-26.P2.el7_9.7.noarch.rpm -- - Scientific Linux Development Team . A security alert about BIND on Scientific Linux points to potential crashes due to zone modification issues, urging system admins to apply patches to address these vulnerabilities. Bind Security Advisory, Scientific Linux Update, IXFR Issues, Zone Update Problems. . LinuxSecurity.com Team

Calendar 2 Aug 31, 2021 Scientific Linux
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity updatebind issue

SUSE: 2017:1027-1 Critical Update: Bind Security Patch for SUSE Servers

An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available.. SUSE Security Update: Security update for bind ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:1027-1 Rating: important References: #1034162 Cross-References: CVE-2017-3137 Affected Products: SUSE OpenStack Cloud 5 SUSE Manager Proxy 2.1 SUSE Manager 2.1 SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Server 11-SP3-LTSS SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for bind fixes the following issues: - A regression in the fix for CVE-2017-3137 caused an assert in name.c (bsc#1034162) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 5: zypper in -t patch sleclo50sp3-bind-13063=1 - SUSE Manager Proxy 2.1: zypper in -t patch slemap21-bind-13063=1 - SUSE Manager 2.1: zypper in -t patch sleman21-bind-13063=1 - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-bind-13063=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-bind-13063=1 - SUSE Linux Enterprise Server 11-SP3-LTSS: zypper in -t patch slessp3-bind-13063=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-bind-13063=1 - SUSE LinuxEnterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-bind-13063=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-bind-13063=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 5 (x86_64): bind-9.9.6P1-0.47.1 bind-chrootenv-9.9.6P1-0.47.1 bind-devel-9.9.6P1-0.47.1 bind-doc-9.9.6P1-0.47.1 bind-libs-32bit-9.9.6P1-0.47.1 bind-libs-9.9.6P1-0.47.1 bind-utils-9.9.6P1-0.47.1 - SUSE Manager Proxy 2.1 (x86_64): bind-9.9.6P1-0.47.1 bind-chrootenv-9.9.6P1-0.47.1 bind-devel-9.9.6P1-0.47.1 bind-doc-9.9.6P1-0.47.1 bind-libs-32bit-9.9.6P1-0.47.1 bind-libs-9.9.6P1-0.47.1 bind-utils-9.9.6P1-0.47.1 - SUSE Manager 2.1 (s390x x86_64): bind-9.9.6P1-0.47.1 bind-chrootenv-9.9.6P1-0.47.1 bind-devel-9.9.6P1-0.47.1 bind-doc-9.9.6P1-0.47.1 bind-libs-32bit-9.9.6P1-0.47.1 bind-libs-9.9.6P1-0.47.1 bind-utils-9.9.6P1-0.47.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-devel-9.9.6P1-0.47.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (ppc64): bind-devel-32bit-9.9.6P1-0.47.1 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-9.9.6P1-0.47.1 bind-chrootenv-9.9.6P1-0.47.1 bind-doc-9.9.6P1-0.47.1 bind-libs-9.9.6P1-0.47.1 bind-utils-9.9.6P1-0.47.1 - SUSE Linux Enterprise Server 11-SP4 (ppc64 s390x x86_64): bind-libs-32bit-9.9.6P1-0.47.1 - SUSE Linux Enterprise Server 11-SP4 (ia64): bind-libs-x86-9.9.6P1-0.47.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 s390x x86_64): bind-9.9.6P1-0.47.1 bind-chrootenv-9.9.6P1-0.47.1 bind-devel-9.9.6P1-0.47.1 bind-doc-9.9.6P1-0.47.1 bind-libs-9.9.6P1-0.47.1 bind-utils-9.9.6P1-0.47.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (s390x x86_64): bind-libs-32bit-9.9.6P1-0.47.1 -SUSE Linux Enterprise Point of Sale 11-SP3 (i586): bind-9.9.6P1-0.47.1 bind-chrootenv-9.9.6P1-0.47.1 bind-devel-9.9.6P1-0.47.1 bind-doc-9.9.6P1-0.47.1 bind-libs-9.9.6P1-0.47.1 bind-utils-9.9.6P1-0.47.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-debuginfo-9.9.6P1-0.47.1 bind-debugsource-9.9.6P1-0.47.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): bind-debuginfo-9.9.6P1-0.47.1 bind-debugsource-9.9.6P1-0.47.1 References: https://www.suse.com/security/cve/CVE-2017-3137.html https://bugzilla.suse.com/1034162 . Critical update for bind on SUSE addresses important security issues to enhance system reliability and security.. SUSE Update,Binding Fix,System Security Updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 18, 2017 Important SuSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorycritical updatebind issue

SUSE: 2016:2405-1 Critical: Bind Remote Denial of Service

An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available.. SUSE Security Update: Security update for bind ______________________________________________________________________________ Announcement ID: SUSE-SU-2016:2405-1 Rating: critical References: #1000362 Cross-References: CVE-2016-2776 Affected Products: SUSE OpenStack Cloud 5 SUSE Manager Proxy 2.1 SUSE Manager 2.1 SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Server 11-SP3-LTSS SUSE Linux Enterprise Server 11-SP2-LTSS SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The nameserver bind was updated to fix a remote denial of service vulnerability, where a crafted packet could cause the nameserver to abort. (CVE-2016-2776, bsc#1000362) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 5: zypper in -t patch sleclo50sp3-bind-12763=1 - SUSE Manager Proxy 2.1: zypper in -t patch slemap21-bind-12763=1 - SUSE Manager 2.1: zypper in -t patch sleman21-bind-12763=1 - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-bind-12763=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-bind-12763=1 - SUSE Linux Enterprise Server 11-SP3-LTSS: zypper in -t patch slessp3-bind-12763=1 - SUSE Linux Enterprise Server 11-SP2-LTSS: zypper in -t patch slessp2-bind-12763=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-bind-12763=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-bind-12763=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-bind-12763=1 - SUSE Linux Enterprise Debuginfo 11-SP2: zypper in -t patch dbgsp2-bind-12763=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 5 (x86_64): bind-9.9.6P1-0.30.1 bind-chrootenv-9.9.6P1-0.30.1 bind-doc-9.9.6P1-0.30.1 bind-libs-32bit-9.9.6P1-0.30.1 bind-libs-9.9.6P1-0.30.1 bind-utils-9.9.6P1-0.30.1 - SUSE Manager Proxy 2.1 (x86_64): bind-9.9.6P1-0.30.1 bind-chrootenv-9.9.6P1-0.30.1 bind-doc-9.9.6P1-0.30.1 bind-libs-32bit-9.9.6P1-0.30.1 bind-libs-9.9.6P1-0.30.1 bind-utils-9.9.6P1-0.30.1 - SUSE Manager 2.1 (s390x x86_64): bind-9.9.6P1-0.30.1 bind-chrootenv-9.9.6P1-0.30.1 bind-doc-9.9.6P1-0.30.1 bind-libs-32bit-9.9.6P1-0.30.1 bind-libs-9.9.6P1-0.30.1 bind-utils-9.9.6P1-0.30.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-devel-9.9.6P1-0.30.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (ppc64): bind-devel-32bit-9.9.6P1-0.30.1 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-9.9.6P1-0.30.1 bind-chrootenv-9.9.6P1-0.30.1 bind-doc-9.9.6P1-0.30.1 bind-libs-9.9.6P1-0.30.1 bind-utils-9.9.6P1-0.30.1 - SUSE Linux Enterprise Server 11-SP4 (ppc64 s390x x86_64): bind-libs-32bit-9.9.6P1-0.30.1 - SUSE Linux Enterprise Server 11-SP4 (ia64): bind-libs-x86-9.9.6P1-0.30.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 s390x x86_64): bind-9.9.6P1-0.30.1 bind-chrootenv-9.9.6P1-0.30.1 bind-doc-9.9.6P1-0.30.1 bind-libs-9.9.6P1-0.30.1 bind-utils-9.9.6P1-0.30.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (s390x x86_64): bind-libs-32bit-9.9.6P1-0.30.1 - SUSE Linux Enterprise Server 11-SP2-LTSS (i586 s390x x86_64): bind-9.9.6P1-0.30.1 bind-chrootenv-9.9.6P1-0.30.1 bind-devel-9.9.6P1-0.30.1 bind-doc-9.9.6P1-0.30.1 bind-libs-9.9.6P1-0.30.1 bind-utils-9.9.6P1-0.30.1 - SUSE Linux Enterprise Server 11-SP2-LTSS (s390x x86_64): bind-libs-32bit-9.9.6P1-0.30.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (i586): bind-9.9.6P1-0.30.1 bind-chrootenv-9.9.6P1-0.30.1 bind-doc-9.9.6P1-0.30.1 bind-libs-9.9.6P1-0.30.1 bind-utils-9.9.6P1-0.30.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-debuginfo-9.9.6P1-0.30.1 bind-debugsource-9.9.6P1-0.30.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): bind-debuginfo-9.9.6P1-0.30.1 bind-debugsource-9.9.6P1-0.30.1 - SUSE Linux Enterprise Debuginfo 11-SP2 (i586 s390x x86_64): bind-debuginfo-9.9.6P1-0.30.1 bind-debugsource-9.9.6P1-0.30.1 References: https://www.suse.com/security/cve/CVE-2016-2776.html https://bugzilla.suse.com/1000362 . Important SUSE Security Patch for bind, addressing a remote denial of service vulnerability. It is imperative to apply this update to your system without delay.. SUSE Update,Bind Issue,Security Patch,Critical Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 27, 2016 Critical SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorysecurity updateremote execution

openSUSE 12.3: 2013:1353-1 Important: Bind Remote Execution Risk

An update that fixes one vulnerability is now available.. openSUSE Security Update: bind: 9.9.3P2 security and bugfix update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2013:1353-1 Rating: important References: #831899 Cross-References: CVE-2013-4854 Affected Products: openSUSE 12.3 openSUSE 12.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The BIND nameserver was updated to 9.9.3P2 to fix a security issue where incorrect bounds checking on private type 'keydata' could lead to a remotely triggerable REQUIRE failure. (CVE-2013-4854, bnc#831899) Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.3: zypper in -t patch openSUSE-2013-654 - openSUSE 12.2: zypper in -t patch openSUSE-2013-654 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 12.3 (i586 x86_64): bind-9.9.3P2-2.7.1 bind-chrootenv-9.9.3P2-2.7.1 bind-debuginfo-9.9.3P2-2.7.1 bind-debugsource-9.9.3P2-2.7.1 bind-devel-9.9.3P2-2.7.1 bind-libs-9.9.3P2-2.7.1 bind-libs-debuginfo-9.9.3P2-2.7.1 bind-lwresd-9.9.3P2-2.7.1 bind-lwresd-debuginfo-9.9.3P2-2.7.1 bind-utils-9.9.3P2-2.7.1 bind-utils-debuginfo-9.9.3P2-2.7.1 - openSUSE 12.3 (x86_64): bind-libs-32bit-9.9.3P2-2.7.1 bind-libs-debuginfo-32bit-9.9.3P2-2.7.1 - openSUSE 12.3 (noarch): bind-doc-9.9.3P2-2.7.1 - openSUSE 12.2 (i586 x86_64): bind-9.9.2P2-1.19.1 bind-chrootenv-9.9.2P2-1.19.1 bind-debuginfo-9.9.2P2-1.19.1 bind-debugsource-9.9.2P2-1.19.1 bind-devel-9.9.2P2-1.19.1 bind-libs-9.9.2P2-1.19.1 bind-libs-debuginfo-9.9.2P2-1.19.1 bind-lwresd-9.9.2P2-1.19.1 bind-lwresd-debuginfo-9.9.2P2-1.19.1 bind-utils-9.9.2P2-1.19.1 bind-utils-debuginfo-9.9.2P2-1.19.1 - openSUSE 12.2 (x86_64): bind-libs-32bit-9.9.2P2-1.19.1 bind-libs-debuginfo-32bit-9.9.2P2-1.19.1 - openSUSE 12.2 (noarch): bind-doc-9.9.2P2-1.19.1 References: https://www.suse.com/security/cve/CVE-2013-4854.html -- . openSUSE Security Update: bind: 9.9.3P2 security and bugfix update _________________________________. update, fixes, vulnerability, opensuse, security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 19, 2013 Important OpenSUSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity updateupdate

SUSE Linux 10 SP2 Security Update: Important Bind Lockup Fix

An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available.. SUSE Security Update: Security update for bind ______________________________________________________________________________ Announcement ID: SUSE-SU-2012:1390-2 Rating: important References: #784602 Cross-References: CVE-2012-5166 Affected Products: SUSE Linux Enterprise Server 10 SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The following issue has been fixed: * Specially crafted RDATA could have caused bind to lockup. This was a different flaw than CVE-2012-4244. Security Issue reference: * CVE-2012-5166 Package List: - SUSE Linux Enterprise Server 10 SP2 (i586 s390x x86_64): bind-9.3.4-1.31.33.1 bind-chrootenv-9.3.4-1.31.33.1 bind-devel-9.3.4-1.31.33.1 bind-doc-9.3.4-1.31.33.1 bind-libs-9.3.4-1.31.33.1 bind-utils-9.3.4-1.31.33.1 - SUSE Linux Enterprise Server 10 SP2 (s390x x86_64): bind-libs-32bit-9.3.4-1.31.33.1 References: https://www.suse.com/security/cve/CVE-2012-5166.html https://login.microfocus.com/nidp/app/login?sid=0 https://login.microfocus.com/nidp/app/login?sid=0 . SUSE Security Patch for postfix uncovers and resolves a critical vulnerability. Announcement ID: SUSE-SU-2012:1490-3.. SUSE Linux, bind update, security patch, risk management, issue resolution. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 24, 2012 Important SuSE
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryDoSRed Hat Enterprise Linux

Red Hat Enterprise Linux 5 and 6 RHSA-2011:0845-01 Important: Bind DoS

Updated bind and bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Important: bind security update Advisory ID: RHSA-2011:0845-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:0845.html Issue date: 2011-05-31 CVE Names: CVE-2011-1910 ==================================================================== 1. Summary: Updated bind and bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. An off-by-one flaw was found in the way BINDprocessed negative responses with large resource record sets (RRSets). An attacker able to send recursive queries to a BIND server that is configured as a caching resolver could use this flaw to cause named to exit with an assertion failure. (CVE-2011-1910) All BIND users are advised to upgrade to these updated packages, which resolve this issue. After installing the update, the BIND daemon (named) will be restarted automatically. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 708301 - CVE-2011-1910 bind: Large RRSIG RRsets and Negative Caching can crash named 6. Package List: RHEL Desktop Workstation (v. 5 client): Source: i386: bind97-9.7.0-6.P2.el5_6.2.i386.rpm bind97-chroot-9.7.0-6.P2.el5_6.2.i386.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.i386.rpm bind97-devel-9.7.0-6.P2.el5_6.2.i386.rpm bind97-libs-9.7.0-6.P2.el5_6.2.i386.rpm bind97-utils-9.7.0-6.P2.el5_6.2.i386.rpm x86_64: bind97-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-chroot-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.i386.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-devel-9.7.0-6.P2.el5_6.2.i386.rpm bind97-devel-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-libs-9.7.0-6.P2.el5_6.2.i386.rpm bind97-libs-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-utils-9.7.0-6.P2.el5_6.2.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: i386: bind97-9.7.0-6.P2.el5_6.2.i386.rpm bind97-chroot-9.7.0-6.P2.el5_6.2.i386.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.i386.rpm bind97-devel-9.7.0-6.P2.el5_6.2.i386.rpm bind97-libs-9.7.0-6.P2.el5_6.2.i386.rpm bind97-utils-9.7.0-6.P2.el5_6.2.i386.rpm ia64: bind97-9.7.0-6.P2.el5_6.2.ia64.rpm bind97-chroot-9.7.0-6.P2.el5_6.2.ia64.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.ia64.rpm bind97-devel-9.7.0-6.P2.el5_6.2.ia64.rpm bind97-libs-9.7.0-6.P2.el5_6.2.ia64.rpm bind97-utils-9.7.0-6.P2.el5_6.2.ia64.rpm ppc: bind97-9.7.0-6.P2.el5_6.2.ppc.rpm bind97-chroot-9.7.0-6.P2.el5_6.2.ppc.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.ppc.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.ppc64.rpm bind97-devel-9.7.0-6.P2.el5_6.2.ppc.rpm bind97-devel-9.7.0-6.P2.el5_6.2.ppc64.rpm bind97-libs-9.7.0-6.P2.el5_6.2.ppc.rpm bind97-libs-9.7.0-6.P2.el5_6.2.ppc64.rpm bind97-utils-9.7.0-6.P2.el5_6.2.ppc.rpm s390x: bind97-9.7.0-6.P2.el5_6.2.s390x.rpm bind97-chroot-9.7.0-6.P2.el5_6.2.s390x.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.s390.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.s390x.rpm bind97-devel-9.7.0-6.P2.el5_6.2.s390.rpm bind97-devel-9.7.0-6.P2.el5_6.2.s390x.rpm bind97-libs-9.7.0-6.P2.el5_6.2.s390.rpm bind97-libs-9.7.0-6.P2.el5_6.2.s390x.rpm bind97-utils-9.7.0-6.P2.el5_6.2.s390x.rpm x86_64: bind97-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-chroot-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.i386.rpm bind97-debuginfo-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-devel-9.7.0-6.P2.el5_6.2.i386.rpm bind97-devel-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-libs-9.7.0-6.P2.el5_6.2.i386.rpm bind97-libs-9.7.0-6.P2.el5_6.2.x86_64.rpm bind97-utils-9.7.0-6.P2.el5_6.2.x86_64.rpm Red Hat Enterprise Linux Desktop (v.6): Source: i386: bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-libs-9.7.3-2.el6_1.P1.1.i686.rpm bind-utils-9.7.3-2.el6_1.P1.1.i686.rpm x86_64: bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-libs-9.7.3-2.el6_1.P1.1.i686.rpm bind-libs-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-utils-9.7.3-2.el6_1.P1.1.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: i386: bind-9.7.3-2.el6_1.P1.1.i686.rpm bind-chroot-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-devel-9.7.3-2.el6_1.P1.1.i686.rpm bind-sdb-9.7.3-2.el6_1.P1.1.i686.rpm x86_64: bind-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-chroot-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-devel-9.7.3-2.el6_1.P1.1.i686.rpm bind-devel-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-sdb-9.7.3-2.el6_1.P1.1.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: x86_64: bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-libs-9.7.3-2.el6_1.P1.1.i686.rpm bind-libs-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-utils-9.7.3-2.el6_1.P1.1.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: x86_64: bind-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-chroot-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-devel-9.7.3-2.el6_1.P1.1.i686.rpm bind-devel-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-sdb-9.7.3-2.el6_1.P1.1.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: i386: bind-9.7.3-2.el6_1.P1.1.i686.rpm bind-chroot-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-libs-9.7.3-2.el6_1.P1.1.i686.rpm bind-utils-9.7.3-2.el6_1.P1.1.i686.rpm ppc64: bind-9.7.3-2.el6_1.P1.1.ppc64.rpm bind-chroot-9.7.3-2.el6_1.P1.1.ppc64.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.ppc.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.ppc64.rpm bind-libs-9.7.3-2.el6_1.P1.1.ppc.rpm bind-libs-9.7.3-2.el6_1.P1.1.ppc64.rpm bind-utils-9.7.3-2.el6_1.P1.1.ppc64.rpm s390x: bind-9.7.3-2.el6_1.P1.1.s390x.rpm bind-chroot-9.7.3-2.el6_1.P1.1.s390x.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.s390.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.s390x.rpm bind-libs-9.7.3-2.el6_1.P1.1.s390.rpm bind-libs-9.7.3-2.el6_1.P1.1.s390x.rpm bind-utils-9.7.3-2.el6_1.P1.1.s390x.rpm x86_64: bind-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-chroot-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-libs-9.7.3-2.el6_1.P1.1.i686.rpm bind-libs-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-utils-9.7.3-2.el6_1.P1.1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): Source: i386: bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-devel-9.7.3-2.el6_1.P1.1.i686.rpm bind-sdb-9.7.3-2.el6_1.P1.1.i686.rpm ppc64: bind-debuginfo-9.7.3-2.el6_1.P1.1.ppc.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.ppc64.rpm bind-devel-9.7.3-2.el6_1.P1.1.ppc.rpm bind-devel-9.7.3-2.el6_1.P1.1.ppc64.rpm bind-sdb-9.7.3-2.el6_1.P1.1.ppc64.rpm s390x: bind-debuginfo-9.7.3-2.el6_1.P1.1.s390.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.s390x.rpm bind-devel-9.7.3-2.el6_1.P1.1.s390.rpm bind-devel-9.7.3-2.el6_1.P1.1.s390x.rpm bind-sdb-9.7.3-2.el6_1.P1.1.s390x.rpm x86_64: bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-devel-9.7.3-2.el6_1.P1.1.i686.rpm bind-devel-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-sdb-9.7.3-2.el6_1.P1.1.x86_64.rpm Red Hat Enterprise Linux Workstation (v.6): Source: i386: bind-9.7.3-2.el6_1.P1.1.i686.rpm bind-chroot-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-libs-9.7.3-2.el6_1.P1.1.i686.rpm bind-utils-9.7.3-2.el6_1.P1.1.i686.rpm x86_64: bind-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-chroot-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-libs-9.7.3-2.el6_1.P1.1.i686.rpm bind-libs-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-utils-9.7.3-2.el6_1.P1.1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: i386: bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-devel-9.7.3-2.el6_1.P1.1.i686.rpm bind-sdb-9.7.3-2.el6_1.P1.1.i686.rpm x86_64: bind-debuginfo-9.7.3-2.el6_1.P1.1.i686.rpm bind-debuginfo-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-devel-9.7.3-2.el6_1.P1.1.i686.rpm bind-devel-9.7.3-2.el6_1.P1.1.x86_64.rpm bind-sdb-9.7.3-2.el6_1.P1.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2011-1910 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2011 Red Hat, Inc. . A crucial patch from Red Hat targets a bind vulnerability that could affect systems responsible for caching DNS requests.. Red Hat Advisory, Bind Issue, Security Update, DNS Risk, Security Impact. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 31, 2011 Important Red Hat
Banner 1 1028x280 1708121660 1771599717
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorybuffer overflowsoftware update

Scientific Linux: CVE-2007-6283 Moderate Bind Security Update

Moderate: bind security, bug fix, and enhancement update. Date: Wed, 21 May 2008 13:13:45 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for bind on SL5.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." Synopsis: Moderate: bind security, bug fix, and enhancement update Issue date: 2008-05-21 CVE Names: CVE-2007-6283 CVE-2008-0122 It was discovered that the bind packages created the "rndc.key" file with insecure file permissions. This allowed any local user to read the content of this file. A local user could use this flaw to control some aspects of the named daemon by using the rndc utility, for example, stopping the named daemon. This problem did not affect systems with the bind-chroot package installed. (CVE-2007-6283) A buffer overflow flaw was discovered in the "inet_network()" function, as implemented by libbind. An attacker could use this flaw to crash an application calling this function, with an argument provided from an untrusted source. (CVE-2008-0122) As well, these updated packages fix the following bugs: * when using an LDAP backend, missing function declarations caused segmentation faults, due to stripped pointers on machines where pointersare longer than integers. * starting named may have resulted in named crashing, due to a race condition during D-BUS connection initialization. This has been resolved in these updated packages. * the named init script returned incorrect error codes, causing the "status" command to return an incorrect status. In these updated packages, the named init script is Linux Standard Base (LSB) compliant. * in these updated packages, the "rndc [command] [zone]" command, where [command] is an rndc command, and [zone] is the specified zone, will find the [zone] if the zone is unique to all views. * the default named log rotation script did not work correctly when using the bind-chroot package. In these updated packages, installing bind-chroot creates the symbolic link"/var/log/named.log", which points to "/var/named/chroot/var/log/named.log", which resolves this issue. * a previous bind update incorrectly changed the permissions on the "/etc/openldap/schema/dnszone.schema" file to mode 640, instead of mode 644, which resulted in OpenLDAP not being able to start. In these updated packages, the permissions are correctly set to mode 644. * the "checkconfig" parameter was missing in the named usage report. For example, running the "service named" command did not return "checkconfig" in the list of available options. * due to a bug in the named init script not handling the rndc return value correctly, the "service named stop" and "service named restart" commands failed on certain systems. * the bind-chroot spec file printed errors when running the "%pre" and "%post" sections. Errors such as the following occurred: Locating //etc/named.conf failed: [FAILED] This has been resolved in these updated packages. * installing the bind-chroot package creates a "/dev/random" file in the chroot environment; however, the "/dev/random" file had an incorrect SELinux label. Starting named resulted in an 'avc: denied { getattr } for pid=[pid] comm="named" path="/dev/random"' error being logged. The "/dev/random" file has the correct SELinux label in these updated packages. * in certain situations, running the "bind +trace" command resulted in random segmentation faults. As well, these updated packages add the following enhancements: * support has been added for GSS-TSIG (RFC 3645). * the "named.root" file has been updated to reflect the new address for L.ROOT-SERVERS.NET. * updates BIND to the latest 9.3 maintenance release. SL 5.x SRPMS: bind-9.3.4-6.P1.el5.src.rpm i386: bind-9.3.4-6.P1.el5.i386.rpm bind-chroot-9.3.4-6.P1.el5.i386.rpm bind-devel-9.3.4-6.P1.el5.i386.rpm bind-libbind-devel-9.3.4-6.P1.el5.i386.rpm bind-libs-9.3.4-6.P1.el5.i386.rpm bind-sdb-9.3.4-6.P1.el5.i386.rpm bind-utils-9.3.4-6.P1.el5.i386.rpm caching-nameserver-9.3.4-6.P1.el5.i386.rpm x86_64: bind-9.3.4-6.P1.el5.x86_64.rpm bind-chroot-9.3.4-6.P1.el5.x86_64.rpm bind-devel-9.3.4-6.P1.el5.i386.rpm bind-devel-9.3.4-6.P1.el5.x86_64.rpm bind-libbind-devel-9.3.4-6.P1.el5.i386.rpm bind-libbind-devel-9.3.4-6.P1.el5.x86_64.rpm bind-libs-9.3.4-6.P1.el5.i386.rpm bind-libs-9.3.4-6.P1.el5.x86_64.rpm bind-sdb-9.3.4-6.P1.el5.x86_64.rpm bind-utils-9.3.4-6.P1.el5.x86_64.rpm caching-nameserver-9.3.4-6.P1.el5.x86_64.rpm -Connie Sieh -Troy Dawson . Patch release addressing access controls on bind address configurations and memory overflow susceptibilities, contributing to improved system robustness.. bind security update, Scientific Linux, enhancement patch, local exploit. . LinuxSecurity.com Team

Calendar 2 May 21, 2008 Scientific Linux
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here