Read Time:31 Second

FEDORA-2023-687525fcca

Packages in this update:

bind-9.18.19-1.fc40
bind-dyndb-ldap-11.10-21.fc40

Update description:

BIND 9.18.19

Security Fixes

Previously, sending a specially crafted message over the control channel could cause the packet-parsing code to run out of available stack memory, causing named to terminate unexpectedly. This has been fixed. (CVE-2023-3341)
A flaw in the networking code handling DNS-over-TLS queries could cause named to terminate unexpectedly due to an assertion failure under significant DNS-over-TLS query load. This has been fixed. (CVE-2023-4236)
Upstream release notes

Read More