ALT Linux Team

Branch sisyphus_e2k update on 2024-09-11

2024-09-11

ALT-BU-2024-12511-1

Branch sisyphus_e2k update bulletin.

ALT-PU-2024-12506-1

Package bind updated to version 9.18.29-alt1 for branch sisyphus_e2k.

Closed vulnerabilities

Published: 2024-07-10

BDU:2024-05771

Уязвимость DNS-сервера BIND, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2024-07-10

BDU:2024-05964

Уязвимость DNS-сервера BIND, связанная с неограниченным распределением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2024-04-23

BDU:2024-06134

Уязвимость DNS-сервера BIND, связанная с использованием функции assert() или похожего оператора, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2024-07-23

BDU:2024-06188

Уязвимость DNS-сервера BIND, связанная с распределением ресурсов без ограничений и регулирования, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2024-07-23
Modified: 2024-11-21

CVE-2024-0760

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.

References:
Published: 2024-07-23
Modified: 2024-11-21

CVE-2024-1737

Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name. This issue affects BIND 9 versions 9.11.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.4-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.

References:
Published: 2024-07-23
Modified: 2024-11-21

CVE-2024-1975

If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a "KEY" Resource Record from a DNSSEC-signed domain in cache, a client can exhaust resolver CPU resources by sending a stream of SIG(0) signed requests. This issue affects BIND 9 versions 9.0.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.49-S1, and 9.18.11-S1 through 9.18.27-S1.

References:
Published: 2024-07-23
Modified: 2024-11-21

CVE-2024-4076

Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure. This issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1 through 9.11.37-S1, 9.16.13-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.

References:

ALT-PU-2024-12508-1

Package php8.3 updated to version 8.3.10-alt1 for branch sisyphus_e2k.

Closed bugs

Bug #51216

Отсутствие плагина auth_plugin_caching_sha2_password в драйвере mysqlnd для php8.1

ALT-PU-2024-12509-1

Package php8.3-xhprof updated to version 2.3.10-alt2.10 for branch sisyphus_e2k.

Closed bugs

Bug #50919

Непрописанный файловый конфликт с пакетом php8.1-xhprof

ALT-PU-2024-12510-1

Package RHVoice updated to version 1.14.0-alt2 for branch sisyphus_e2k.

Closed bugs

Bug #50789

Обновить или добавить пакет(ы) RHVoice

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top