Lucene search
RedHatRHSA-2023:5526HistoryOct 09, 2023 - 9:35 a.m.
(RHSA-2023:5526) Important: bind security update
2023-10-0909:35:07
access.redhat.com
16
berkeley internet name domain
bind
dns protocols
security update
stack exhaustion
dos
cve-2023-3341
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
51.9%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
- bind: stack exhaustion in control channel code may lead to DoS (CVE-2023-3341)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | ppc64le | bind-libs-lite | < 9.11.4-26.P2.el8_1.8 | bind-libs-lite-9.11.4-26.P2.el8_1.8.ppc64le.rpm |
| RedHat | 8 | x86_64 | bind-chroot | < 9.11.4-26.P2.el8_1.8 | bind-chroot-9.11.4-26.P2.el8_1.8.x86_64.rpm |
| RedHat | 8 | noarch | bind-license | < 9.11.4-26.P2.el8_1.8 | bind-license-9.11.4-26.P2.el8_1.8.noarch.rpm |
| RedHat | 8 | ppc64le | bind-sdb-debuginfo | < 9.11.4-26.P2.el8_1.8 | bind-sdb-debuginfo-9.11.4-26.P2.el8_1.8.ppc64le.rpm |
| RedHat | 8 | ppc64le | bind-libs | < 9.11.4-26.P2.el8_1.8 | bind-libs-9.11.4-26.P2.el8_1.8.ppc64le.rpm |
| RedHat | 8 | ppc64le | bind-utils-debuginfo | < 9.11.4-26.P2.el8_1.8 | bind-utils-debuginfo-9.11.4-26.P2.el8_1.8.ppc64le.rpm |
| RedHat | 8 | x86_64 | bind-pkcs11-libs | < 9.11.4-26.P2.el8_1.8 | bind-pkcs11-libs-9.11.4-26.P2.el8_1.8.x86_64.rpm |
| RedHat | 8 | i686 | bind-debugsource | < 9.11.4-26.P2.el8_1.8 | bind-debugsource-9.11.4-26.P2.el8_1.8.i686.rpm |
| RedHat | 8 | i686 | bind-export-devel | < 9.11.4-26.P2.el8_1.8 | bind-export-devel-9.11.4-26.P2.el8_1.8.i686.rpm |
| RedHat | 8 | x86_64 | bind | < 9.11.4-26.P2.el8_1.8 | bind-9.11.4-26.P2.el8_1.8.x86_64.rpm |
Related
nessus
nessus
AlmaLinux 8 : bind (ALSA-2023:5474)
2023-10-06 00:00:00
Amazon Linux AMI : bind (ALAS-2023-1845)
2023-10-06 00:00:00
rocky
rocky
bind security update
2023-10-14 02:08:30
openvas
openvas
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1395)
2024-03-21 00:00:00
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1673)
2024-05-17 00:00:00
openSUSE: Security Advisory for bind (SUSE-SU-2023:3821-1)
2024-03-04 00:00:00
almalinux
almalinux
Important: bind security update
2023-10-12 00:00:00
Important: bind security update
2023-10-05 00:00:00
Important: bind9.16 security update
2023-10-05 00:00:00
aix
aix
AIX is vulnerable to denial of service due to ISC BIND
2023-12-18 09:19:46
centos
centos
bind security update
2024-01-12 19:23:37
cvelist
cvelist
osv
osv
Important: bind security update
2023-10-14 02:08:30
bind9 vulnerability
2023-10-09 11:15:15
CVE-2023-3341
2023-09-20 13:15:11
redhatcve
redhatcve
CVE-2023-3341
2023-09-20 15:56:02
alpinelinux
alpinelinux
CVE-2023-3341
2023-09-20 13:15:11
veracode
veracode
Denial Of Service (DoS)
2023-10-02 16:07:04
ibm
ibm
redhat
redhat
(RHSA-2023:5689) Important: bind security update
2023-10-12 14:32:23
(RHSA-2023:5691) Important: bind security update
2023-10-12 14:33:55
(RHSA-2023:5771) Important: bind9.16 security update
2023-10-17 08:54:52
oraclelinux
oraclelinux
bind security update
2023-10-13 00:00:00
bind9.16 security update
2023-10-06 00:00:00
bind security update
2023-10-13 00:00:00
debiancve
debiancve
CVE-2023-3341
2023-09-20 13:15:11
amazon
amazon
Important: bind
2023-09-27 22:15:00
Important: bind
2023-09-27 22:48:00
ubuntu
ubuntu
Bind vulnerability
2023-10-09 00:00:00
Bind vulnerabilities
2023-09-20 00:00:00
debian
debian
[SECURITY] [DLA 3726-1] bind9 security update
2024-01-30 21:43:57
[SECURITY] [DSA 5504-1] bind9 security update
2023-09-22 20:15:19
nvd
nvd
CVE-2023-3341
2023-09-20 13:15:11
ubuntucve
ubuntucve
CVE-2023-3341
2023-09-20 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-3341 affecting package bind for versions less than 9.16.44-1
2024-07-05 21:08:40
prion
prion
Code injection
2023-09-20 13:15:00
cloudfoundry
cloudfoundry
USN-6421-1: Bind vulnerability | Cloud Foundry
2023-12-04 00:00:00
USN-6390-1: Bind vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
f5
f5
K000137582 : BIND vulnerability CVE-2023-3341
2023-11-15 00:00:00
cloudlinux
cloudlinux
bind: Fix of CVE-2023-3341
2023-10-12 18:43:57
slackware
slackware
[slackware-security] bind
2023-09-21 19:42:39
cve
cve
CVE-2023-3341
2023-09-20 13:15:11
fedora
fedora
[SECURITY] Fedora 39 Update: bind-dyndb-ldap-11.10-21.fc39
2023-11-03 18:51:08
[SECURITY] Fedora 37 Update: bind-9.18.19-1.fc37
2023-10-11 01:34:00
[SECURITY] Fedora 37 Update: bind-dyndb-ldap-11.10-17.fc37
2023-10-11 01:34:01
redos
redos
ROS-20240611-12
2024-06-11 00:00:00
mageia
mageia
Updated bind packages fix security vulnerabilities
2023-10-28 00:49:40
rosalinux
rosalinux
Advisory ROSA-SA-2023-2279
2023-10-24 13:59:56
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0481
2023-09-29 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0661
2023-10-05 00:00:00
thn
thn
High-Severity Flaws Uncovered in Atlassian Products and ISC BIND Server
2023-09-22 08:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
51.9%
Related for RHSA-2023:5526