oss-security - ISC has issued new patch releases of BIND

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [thread-next>] [day] [month] [year] [list]

Message-ID: <266a9bf2-2733-054b-6ce8-bc3eb5721a8d@isc.org>
Date: Wed, 19 Sep 2018 15:16:25 -0800
From: Michael McNally <mcnally@....org>
To: oss-security@...ts.openwall.com
Subject: ISC has issued new patch releases of BIND

To the packagers and redistributors of BIND:

Today ISC announced one CVE (which does not come with a code fix)
and two operational notifications for issues in BIND (which do.)

The new releases for BIND 9.11.4-P2 and BIND 9.12.2-P2 can be found
at http://www.isc.org/downloads

Details on the security vulnerability and the two operational
notifications can be found via the following links:

   https://kb.isc.org/docs/cve-2018-5741


https://kb.isc.org/docs/change-4892-exposed-multiple-problems-affecting-dnssec-inline-signing

https://kb.isc.org/docs/some-releases-of-bind-9-12-are-too-strict-when-handling-referrals-with-non-empty-answer-sections


Michael McNally
ISC Security Officer

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.