Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-25411

Slew of CVEs in BIND just released

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Obsolete
    • Icon: Blocker Blocker
    • None
    • rhel-8.9.0
    • bind
    • None
    • Critical
    • rhel-sst-cs-net-perf-services
    • ssg_core_services
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • CentOS Stream, Red Hat Enterprise Linux
    • None
    • None
    • None
    • All
    • None

      The ISC just released a slew of CVEs against BIND9:

        * CVE-2023-50868 [ https://kb.isc.org/docs/cve-2023-50868 ]
        * CVE-2023-50387 [ https://kb.isc.org/docs/cve-2023-50387 ]
        * CVE-2023-6516 [ https://kb.isc.org/docs/cve-2023-6516 ]
        * CVE-2023-5680 [ https://kb.isc.org/docs/cve-2023-5680 ]
        * CVE-2023-5679 [ https://kb.isc.org/docs/cve-2023-5679 ]
        * CVE-2023-5517 [ https://kb.isc.org/docs/cve-2023-5517 ]
        * CVE-2023-4408 [ https://kb.isc.org/docs/cve-2023-4408 ] 

       

      At least some are remotely exploitable with high priority.

       

      Is RHEL 8.9 affected by these CVEs?

              pemensik@redhat.com Petr Mensik
              brian@interlinx.bc.ca Brian Murrell
              Petr Mensik Petr Mensik
              rhel-cs-infra-services-qe rhel-cs-infra-services-qe rhel-cs-infra-services-qe rhel-cs-infra-services-qe
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: