Lucene search
AlmaLinuxALSA-2023:4102HistoryJul 17, 2023 - 12:00 a.m.
Important: bind security update
2023-07-1700:00:00
errata.almalinux.org
21
bind
dns protocols
security fix
dns server
resolver library
cache size limit
cve-2023-2828
cvss score
unix
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
47.8%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
- bind: named’s configured cache size limit can be significantly exceeded (CVE-2023-2828)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 8 | i686 | bind-export-devel | < 9.11.36-8.el8_8.1 | bind-export-devel-9.11.36-8.el8_8.1.i686.rpm |
| almalinux | 8 | i686 | bind-export-libs | < 9.11.36-8.el8_8.1 | bind-export-libs-9.11.36-8.el8_8.1.i686.rpm |
| almalinux | 8 | i686 | bind-libs-lite | < 9.11.36-8.el8_8.1 | bind-libs-lite-9.11.36-8.el8_8.1.i686.rpm |
| almalinux | 8 | i686 | bind-pkcs11-devel | < 9.11.36-8.el8_8.1 | bind-pkcs11-devel-9.11.36-8.el8_8.1.i686.rpm |
| almalinux | 8 | noarch | python3-bind | < 9.11.36-8.el8_8.1 | python3-bind-9.11.36-8.el8_8.1.noarch.rpm |
| almalinux | 8 | i686 | bind-devel | < 9.11.36-8.el8_8.1 | bind-devel-9.11.36-8.el8_8.1.i686.rpm |
| almalinux | 8 | i686 | bind-pkcs11-libs | < 9.11.36-8.el8_8.1 | bind-pkcs11-libs-9.11.36-8.el8_8.1.i686.rpm |
| almalinux | 8 | noarch | bind-license | < 9.11.36-8.el8_8.1 | bind-license-9.11.36-8.el8_8.1.noarch.rpm |
| almalinux | 8 | i686 | bind-libs | < 9.11.36-8.el8_8.1 | bind-libs-9.11.36-8.el8_8.1.i686.rpm |
| almalinux | 8 | i686 | bind-lite-devel | < 9.11.36-8.el8_8.1 | bind-lite-devel-9.11.36-8.el8_8.1.i686.rpm |
Related
osv
osv
Important: bind9.16 security update
2023-07-17 00:00:00
bind9 - security update
2023-07-18 00:00:00
Important: bind security update
2023-07-17 00:00:00
nessus
nessus
Debian DLA-3498-1 : bind9 - LTS security update
2023-07-19 00:00:00
AlmaLinux 9 : bind (ALSA-2023:4099)
2023-07-18 00:00:00
CentOS 7 : bind (RHSA-2023:4152)
2023-08-03 00:00:00
almalinux
almalinux
Important: bind security update
2023-07-17 00:00:00
Important: bind9.16 security update
2023-07-17 00:00:00
redhatcve
redhatcve
CVE-2023-2828
2023-06-21 22:47:00
veracode
veracode
Denial Of Service (DoS)
2023-06-27 16:12:43
oraclelinux
oraclelinux
bind security update
2023-07-19 00:00:00
bind9.16 security update
2023-07-20 00:00:00
bind security update
2023-07-20 00:00:00
rocky
rocky
bind9.16 security update
2023-08-08 12:34:07
bind security update
2023-08-08 12:33:57
bind security update
2023-08-08 12:34:57
openvas
openvas
Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2023-3204)
2023-11-10 00:00:00
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2023-2602)
2023-08-08 00:00:00
Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2023-3295)
2023-12-12 00:00:00
amazon
amazon
Important: bind
2023-07-05 22:01:00
Important: bind
2023-07-19 22:14:00
cbl_mariner
cbl_mariner
CVE-2023-2828 affecting package bind 9.16.37-1
2023-08-15 16:37:27
CVE-2023-2828 affecting package dhcp for versions less than 4.4.2-5
2024-06-06 19:53:22
CVE-2023-2828 affecting package bind for versions less than 9.16.33-2
2023-08-10 16:37:57
nvd
nvd
CVE-2023-2828
2023-06-21 17:15:47
cvelist
cvelist
redhat
redhat
(RHSA-2023:4037) Important: bind9.16 security update
2023-07-12 07:52:23
(RHSA-2023:4153) Important: bind security update
2023-07-18 07:40:11
(RHSA-2023:4102) Important: bind security update
2023-07-17 08:08:17
ibm
ibm
cve
cve
CVE-2023-2828
2023-06-21 17:15:47
aix
aix
AIX is vulnerable to denial of service due to ISC BIND
2023-09-07 13:08:07
ubuntucve
ubuntucve
CVE-2023-2828
2023-06-21 00:00:00
centos
centos
bind security update
2023-08-03 14:24:41
debian
debian
[SECURITY] [DLA 3498-1] bind9 security update
2023-07-19 09:38:19
[SECURITY] [DSA 5439-1] bind9 security update
2023-06-25 20:12:23
debiancve
debiancve
CVE-2023-2828
2023-06-21 17:15:47
f5
f5
K000135312 : BIND vulnerability CVE-2023-2828
2023-06-30 00:00:00
prion
prion
Design/Logic Flaw
2023-06-21 17:15:00
fedora
fedora
[SECURITY] Fedora 38 Update: bind-dyndb-ldap-11.10-17.fc38
2023-06-25 00:52:52
[SECURITY] Fedora 37 Update: bind-9.18.16-1.fc37
2023-06-30 01:35:42
[SECURITY] Fedora 37 Update: bind-dyndb-ldap-11.10-15.fc37
2023-06-30 01:35:42
cloudfoundry
cloudfoundry
USN-6183-1: Bind vulnerabilities | Cloud Foundry
2023-08-04 00:00:00
redos
redos
ROS-20230907-03
2023-09-07 00:00:00
ubuntu
ubuntu
Bind vulnerabilities
2023-06-21 00:00:00
Bind vulnerability
2023-07-18 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2279
2023-10-24 13:59:56
Advisory ROSA-SA-2023-2245
2023-10-17 12:03:14
thn
thn
High-Severity Flaws Uncovered in Atlassian Products and ISC BIND Server
2023-09-22 08:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0037
2023-06-23 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0417
2023-06-30 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0603
2023-06-26 00:00:00
hp
hp
HP ThinPro 8.0 SP 7 Security Updates
2024-01-26 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
47.8%
Related for ALSA-2023:4102