UbuntuUpdates.org

Package "bind9"

Name: bind9

Description:

Internet Domain Name Server
Latest version: 1:9.20.4-3ubuntu1.2
Release: plucky (25.04)
Level: security
Repository: main
Homepage: https://www.isc.org/downloads/bind/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "bind9"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "bind9" in Plucky

Repository Area Version
base main 1:9.20.4-3ubuntu1
base universe 1:9.20.4-3ubuntu1
security universe 1:9.20.4-3ubuntu1.2
updates main 1:9.20.4-3ubuntu1.2
updates universe 1:9.20.4-3ubuntu1.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1:9.20.4-3ubuntu1.2 2025-07-16 20:07:33 UTC

  bind9 (1:9.20.4-3ubuntu1.2) plucky-security; urgency=medium

  * SECURITY UPDATE: possible assertion failure when
    'stale-answer-client-timeout' is set to '0'
    - debian/patches/CVE-2025-40777.patch: fix logic in lib/ns/query.c.
    - CVE-2025-40777

 -- Marc Deslauriers <email address hidden> Tue, 15 Jul 2025 07:25:25 -0400
Source diff to previous version
CVE-2025-40777 If a `named` caching resolver is configured with `serve-stale-enable` ...

Version: 1:9.20.4-3ubuntu1.1 2025-05-21 17:07:27 UTC

  bind9 (1:9.20.4-3ubuntu1.1) plucky-security; urgency=medium

  * SECURITY UPDATE: message with invalid TSIG causes an assertion failure
    - debian/patches/CVE-2025-40775.patch: properly validate messages in
      lib/dns/include/dns/message.h, lib/dns/include/dns/tsig.h,
      lib/dns/message.c, lib/dns/tsig.c, tests/dns/tsig_test.c.
    - CVE-2025-40775

 -- Marc Deslauriers <email address hidden> Tue, 20 May 2025 07:25:11 -0400


About   -   Send Feedback to @ubuntu_updates