Package "bind9"

Name:	bind9
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: Transitional package for bind9-utils Transitional package for bind9-dnsutils
Latest version:	1:9.20.0-2ubuntu3.2
Release:	oracular (24.10)
Level:	security
Repository:	universe

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "bind9" in Oracular

Repository	Area	Version
base	universe	1:9.20.0-2ubuntu3
base	main	1:9.20.0-2ubuntu3
security	main	1:9.20.0-2ubuntu3.2
updates	main	1:9.20.0-2ubuntu3.2
updates	universe	1:9.20.0-2ubuntu3.2

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 1:9.20.0-2ubuntu3.2 2025-05-21 17:07:27 UTC

Version: 1:9.20.0-2ubuntu3.2	2025-05-21 17:07:27 UTC
`bind9 (1:9.20.0-2ubuntu3.2) oracular-security; urgency=medium * SECURITY UPDATE: message with invalid TSIG causes an assertion failure - debian/patches/CVE-2025-40775.patch: properly validate messages in lib/dns/include/dns/message.h, lib/dns/include/dns/tsig.h, lib/dns/message.c, lib/dns/tsig.c, tests/dns/tsig_test.c. - CVE-2025-40775 -- Marc Deslauriers <email address hidden> Tue, 20 May 2025 07:30:37 -0400`
Source diff to previous version

bind9 (1:9.20.0-2ubuntu3.2) oracular-security; urgency=medium * SECURITY UPDATE: message with invalid TSIG causes an assertion failure - debian/patches/CVE-2025-40775.patch: properly validate messages in lib/dns/include/dns/message.h, lib/dns/include/dns/tsig.h, lib/dns/message.c, lib/dns/tsig.c, tests/dns/tsig_test.c. - CVE-2025-40775 -- Marc Deslauriers <email address hidden> Tue, 20 May 2025 07:30:37 -0400

Source diff to previous version

Version: 1:9.20.0-2ubuntu3.1 2025-01-29 20:07:04 UTC

bind9 (1:9.20.0-2ubuntu3.1) oracular-security; urgency=medium * SECURITY UPDATE: Many records in the additional section cause CPU exhaustion - debian/patches/CVE-2024-11187.patch: limit the additional processing for large RDATA sets in bin/tests/*, lib/dns/include/dns/rdataset.h, lib/dns/qpzone.c, lib/dns/rbt-zonedb.c, lib/dns/rdataset.c, lib/dns/resolver.c, lib/ns/query.c. - CVE-2024-11187 * SECURITY UPDATE: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load - debian/patches/CVE-2024-12705.patch: fix flooding issues in lib/isc/netmgr/http.c, lib/isc/netmgr/netmgr-int.h, lib/isc/netmgr/proxystream.c, lib/isc/netmgr/streamdns.c, lib/isc/netmgr/tcp.c, lib/isc/netmgr/tlsstream.c, - CVE-2024-12705 -- Marc Deslauriers <email address hidden> Tue, 28 Jan 2025 09:18:29 -0500

CVE-2024-11187	Many records in the additional section cause CPU exhaustion
CVE-2024-12705	DNS-over-HTTPS implementation suffers from multiple issues under heavy query load

About - Send Feedback to @ubuntu_updates

Package "bind9"

Links

Other versions of "bind9" in Oracular

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

updates

security

proposed

PPA updates