Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5105-1] bind9 security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5105-1] bind9 security update


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5105-1] bind9 security update
  • Date: Fri, 18 Mar 2022 19:03:00 +0000
  • List-archive: https://lists.debian.org/msgid-search/20220318190300.GB24602 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=/XDByYZmXsOtpZkHsy/w942kHm9t3GLkY7CiZ9FKTGs=; b=gP eVYxOI1mygtjgam+FHFq5DV8ykl4hRRS8OfVdKS5hRa1G+rk7GDKoNFmEy+ITvrxOr/kj0WmidGH+ h6RF244dHrfP7AdOMph0n1hf9hu19WbxhAfnmNT5p2ObJ3FnRiAU00szQc5xYiYATIOQf4d1UAS1N q79E9MnHe2UPbjZJJmuotR8bD1zJhacXfgdqBig3t48nnb0Nm0JAgAP8ly5O33ilkKgVVB0PBgjCN 4gZ3YhrRdl4x2E2Z1RuUmAO+kM0Her+ZfyncIIMS0olHCCQt54QvvGeR0mWL/C1zto6/oAxtDnvOy F2Wyyv9PPZ46+ZcyIxQ6gjnYTkxSvf/w==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Fri, 18 Mar 2022 19:03:20 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <xbf7cOqX1JM.A.7rH.4dNNiB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5105-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
March 18, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : bind9
CVE ID : CVE-2021-25220 CVE-2022-0396

Two vulnerabilities were found in the BIND DNS server, which could
result in denial of service or cache poisoning.

For the oldstable distribution (buster), this problem has been fixed
in version 1:9.11.5.P4+dfsg-5.1+deb10u7.

For the stable distribution (bullseye), this problem has been fixed in
version 1:9.16.27-1~deb11u1.

We recommend that you upgrade your bind9 packages.

For the detailed security status of bind9 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/bind9

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=6st2
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5105-1] bind9 security update, Moritz Muehlenhoff, 18.03.2022

Archiv bereitgestellt durch MHonArc 2.6.24.

Seitenanfang