Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-25411

Slew of CVEs in BIND just released

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Blocker
    • None
    • rhel-8.9.0
    • bind
    • Critical
    • sst_cs_infra_services
    • ssg_core_services
    • False
    • Hide

      None

      Show
      None
    • CentOS Stream, Red Hat Enterprise Linux
    • All

    Description

      The ISC just released a slew of CVEs against BIND9:

        * CVE-2023-50868 [ https://kb.isc.org/docs/cve-2023-50868 ]
        * CVE-2023-50387 [ https://kb.isc.org/docs/cve-2023-50387 ]
        * CVE-2023-6516 [ https://kb.isc.org/docs/cve-2023-6516 ]
        * CVE-2023-5680 [ https://kb.isc.org/docs/cve-2023-5680 ]
        * CVE-2023-5679 [ https://kb.isc.org/docs/cve-2023-5679 ]
        * CVE-2023-5517 [ https://kb.isc.org/docs/cve-2023-5517 ]
        * CVE-2023-4408 [ https://kb.isc.org/docs/cve-2023-4408 ] 

       

      At least some are remotely exploitable with high priority.

       

      Is RHEL 8.9 affected by these CVEs?

      Attachments

        Activity

          People

            pemensik@redhat.com Petr Mensik
            brian@interlinx.bc.ca Brian Murrell
            Petr Mensik Petr Mensik
            rhel-cs-infra-services-qe rhel-cs-infra-services-qe rhel-cs-infra-services-qe rhel-cs-infra-services-qe
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated: