-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3498-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb July 18, 2023 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : bind9 Version : 1:9.11.5.P4+dfsg-5.1+deb10u9 CVE ID : CVE-2023-2828 It was discovered that there was a potential denial of service (DoS) in bind9, the popular Domain Name Server (DNS) server. Shoham Danino, Anat Bremler-Barr, Yehuda Afek and Yuval Shavitt discovered that a flaw in the cache-cleaning algorithm used in named can cause that named's configured cache size limit can be significantly exceeded, potentially resulting in a denial of service attack. For Debian 10 buster, this problem has been fixed in version 1:9.11.5.P4+dfsg-5.1+deb10u9. We recommend that you upgrade your bind9 packages. For the detailed security status of bind9 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/bind9 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmS2vQEACgkQHpU+J9Qx HlizNw//UGqPQU7lZxoim/qmpbAGUt0zDcGU8XI2wVnRuTpOG9F5ETFkZfyuIGsB kWMpCKNfCW1AAj8gGrgR+2roQY20cvGb4oVn754+ei+6BeaCSCyM+mUY91LU7eu8 R4rR5HhcFiHiOBBqSjR8Rs+FfuDMT+0pIvdG14HIiChTKl03WaPvK4ZT73ePCMFA 4DzaEEb0TvV1OpNFZaI2z/EPKmf0ja7/xDMuoMtuwt9hm7G1oUf32Fzl9X6aVFol Pqi7kV/x4urGZi7egh9QgKxFToTDm3yMHkBDb2nbmzPPx6lUWlEnKIjm4oyrUIa9 OwPz2kaYMV9Xo60gTn4Kf6WeavZfomQ57n6uhjMXlzXbYRPVHZlvfBTYQfWf7Rme CkiGmoGOr5Je3aKZVjAikyIw4VQC/BqhbQ6Df9woB2jtnuWMm9PtPJNXd4x5bR+S G3wMv19/hW61+R6Fb9iC7dqTzoyFWZTp/RTHS7p6bShFNrVxXDmWftS/fdrGKvSB VkuPQdbHTKs7xd0KF3AXjxtwEGt3Xed3nmYpBvCOmL/2/CmJzRghM8KWo3JkO15h 1ajulHGyJVaZ+D3Cf/fIEIOKaDkHwcJTO86/QUGVWbfQaZQDSSWnbtnLl6k6xbjD jNFsgChLgpCVihVvTnygVC1nbFHvmXMNzl+xpFwi+bRXId9s7G8= =nruB -----END PGP SIGNATURE-----
