Read Time:31 Second
FEDORA-2023-87502c4a93
Packages in this update:
bind-9.18.19-1.fc37
bind-dyndb-ldap-11.10-17.fc37
Update description:
BIND 9.18.19
Security Fixes
Previously, sending a specially crafted message over the control channel could cause the packet-parsing code to run out of available stack memory, causing named to terminate unexpectedly. This has been fixed. (CVE-2023-3341)
A flaw in the networking code handling DNS-over-TLS queries could cause named to terminate unexpectedly due to an assertion failure under significant DNS-over-TLS query load. This has been fixed. (CVE-2023-4236)
Upstream release notes