Package "bind9-utils"

Name:	bind9-utils
Description:	Utilities for BIND 9
Latest version:	1:9.20.0-2ubuntu3.2
Release:	oracular (24.10)
Level:	security
Repository:	main
Head package:	bind9
Homepage:	https://www.isc.org/downloads/bind/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "bind9-utils"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "bind9-utils" in Oracular

Repository	Area	Version
base	main	1:9.20.0-2ubuntu3
updates	main	1:9.20.0-2ubuntu3.2

Changelog

Version: 1:9.20.0-2ubuntu3.2 2025-05-21 17:07:25 UTC

Version: 1:9.20.0-2ubuntu3.2	2025-05-21 17:07:25 UTC
`bind9 (1:9.20.0-2ubuntu3.2) oracular-security; urgency=medium * SECURITY UPDATE: message with invalid TSIG causes an assertion failure - debian/patches/CVE-2025-40775.patch: properly validate messages in lib/dns/include/dns/message.h, lib/dns/include/dns/tsig.h, lib/dns/message.c, lib/dns/tsig.c, tests/dns/tsig_test.c. - CVE-2025-40775 -- Marc Deslauriers <email address hidden> Tue, 20 May 2025 07:30:37 -0400`
Source diff to previous version

bind9 (1:9.20.0-2ubuntu3.2) oracular-security; urgency=medium * SECURITY UPDATE: message with invalid TSIG causes an assertion failure - debian/patches/CVE-2025-40775.patch: properly validate messages in lib/dns/include/dns/message.h, lib/dns/include/dns/tsig.h, lib/dns/message.c, lib/dns/tsig.c, tests/dns/tsig_test.c. - CVE-2025-40775 -- Marc Deslauriers <email address hidden> Tue, 20 May 2025 07:30:37 -0400

Source diff to previous version

Version: 1:9.20.0-2ubuntu3.1 2025-01-29 20:07:04 UTC

bind9 (1:9.20.0-2ubuntu3.1) oracular-security; urgency=medium * SECURITY UPDATE: Many records in the additional section cause CPU exhaustion - debian/patches/CVE-2024-11187.patch: limit the additional processing for large RDATA sets in bin/tests/*, lib/dns/include/dns/rdataset.h, lib/dns/qpzone.c, lib/dns/rbt-zonedb.c, lib/dns/rdataset.c, lib/dns/resolver.c, lib/ns/query.c. - CVE-2024-11187 * SECURITY UPDATE: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load - debian/patches/CVE-2024-12705.patch: fix flooding issues in lib/isc/netmgr/http.c, lib/isc/netmgr/netmgr-int.h, lib/isc/netmgr/proxystream.c, lib/isc/netmgr/streamdns.c, lib/isc/netmgr/tcp.c, lib/isc/netmgr/tlsstream.c, - CVE-2024-12705 -- Marc Deslauriers <email address hidden> Tue, 28 Jan 2025 09:18:29 -0500

CVE-2024-11187	Many records in the additional section cause CPU exhaustion
CVE-2024-12705	DNS-over-HTTPS implementation suffers from multiple issues under heavy query load

About - Send Feedback to @ubuntu_updates

Package "bind9-utils"

Links

Download "bind9-utils"

Other versions of "bind9-utils" in Oracular

Changelog

Share this page

Bookmarks

Latest updates

updates

security

proposed

PPA updates