FEDORA-2017-0a876b0ba5 — security update for bind

stable

bind-9.10.4-3.P8.fc24

FEDORA-2017-0a876b0ba5 created by pemensik 6 years ago for Fedora 24

Security fix for CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2017-0a876b0ba5

This update has been submitted for testing by pemensik.

6 years ago

pemensik edited this update.

6 years ago

hreindl commented & provided feedback 6 years ago

karma

works for me

This update has been pushed to testing.

6 years ago

filiperosset commented & provided feedback 6 years ago

karma

no regressions noted

samoht0 commented & provided feedback 6 years ago

karma

LGTM

This update has been submitted for stable by bodhi.

6 years ago

This update has been pushed to stable.

6 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Builds

bind-9.10.4-3.P8.fc24

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

6 years ago

in testing

6 years ago

in stable

6 years ago

modified

6 years ago

BZ#1441125 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;"

BZ#1441133 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver

BZ#1441137 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received

BZ#1441912 CVE-2017-3137 bind: Processing a response containing CNAME or DNAME with unusual order can crash resolver [fedora-all]

BZ#1441916 CVE-2017-3136 bind: Incorrect error handling causes assertion failure when using DNS64 with "break-dnssec yes;" [fedora-all]

BZ#1441925 CVE-2017-3138 bind: REQUIRE assertion failure when null command string on control channel is received [fedora-all]

bind-9.10.4-3.P8.fc24

Automated Test Results

None