Issued:: 2021-03-02
Updated:: 2021-03-02

RHSA-2021:0693 - Security Advisory

Overview
Updated Packages

Synopsis

Important: bind security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for bind is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

Security Fix(es):

bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation (CVE-2020-8625)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, the BIND daemon (named) will be restarted automatically.

Affected Products

Red Hat Enterprise Linux Server - AUS 7.3 x86_64

Fixes

BZ - 1928486 - CVE-2020-8625 bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation

CVEs

CVE-2020-8625

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 7.3

SRPM
bind-9.9.4-50.el7_3.5.src.rpm	SHA-256: 4de715fe41b3be770e06a87e84be1d151bae429c4f6289b76556b6ab2b646be3
x86_64
bind-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 41fae011638826da20d3d5e01d79183ed7626f0de0d2803ece5276dae017af04
bind-chroot-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 76d434f57be74484c1ed4626e5f53bb0aee12249446638dca8c86a15ca48ce0d
bind-debuginfo-9.9.4-50.el7_3.5.i686.rpm	SHA-256: 4cf29e247b2aefbea68a0db65bb2788afcfb7d715e38edc6591376f56f9668d5
bind-debuginfo-9.9.4-50.el7_3.5.i686.rpm	SHA-256: 4cf29e247b2aefbea68a0db65bb2788afcfb7d715e38edc6591376f56f9668d5
bind-debuginfo-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 24cbbe72d4e68273f572ded9fc164a125a3dce68274daf9d86aa9db6b673d0dd
bind-debuginfo-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 24cbbe72d4e68273f572ded9fc164a125a3dce68274daf9d86aa9db6b673d0dd
bind-devel-9.9.4-50.el7_3.5.i686.rpm	SHA-256: 36ab8e8d88f4ef00ea99c1fd840e2dafcdb7b13c889fe8c19d8a4fd5550b4839
bind-devel-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 40a3259c155e9badc679be8dce391d91bb574821c17be2181e204b46882b3d1f
bind-libs-9.9.4-50.el7_3.5.i686.rpm	SHA-256: a20fcbdb6386ee6de44e6d58df1bec33f79b69577da88b691c47be6ef60aad87
bind-libs-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 47005980df0e8a0705fdf53f80cf037ba9d97f5b9391295db08c32b0fc573862
bind-libs-lite-9.9.4-50.el7_3.5.i686.rpm	SHA-256: 1d5f6ab49d05003ea4576affd4d7d4edbe77d846ff0744f5a8fe01003cc839d8
bind-libs-lite-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 6d49c9743a5fd1e95d313ccabf7b6cb4543c00dfce42174546ab22019a409fb6
bind-license-9.9.4-50.el7_3.5.noarch.rpm	SHA-256: 507c6b90a047c2d15f1c5849f17480c57a31012187296a87358609161c46d0c4
bind-lite-devel-9.9.4-50.el7_3.5.i686.rpm	SHA-256: e00aec0f35dff53df902fe86411ee569fd9c9a1fa6e64b2febe9fa4ad8a63b07
bind-lite-devel-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 2d80bee36b94ad9119fd1a17ec558c76e51800cbebecccd223806d2cfe2311ee
bind-pkcs11-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: fff1288104f355ba4c363c1f522d7978f9769b8aefe8cc2e0356afea5f45309e
bind-pkcs11-devel-9.9.4-50.el7_3.5.i686.rpm	SHA-256: f491cbee8c83cf83aee458134e912dad408c0426eef463f69bca1e34e92a1a3b
bind-pkcs11-devel-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 3ab9294ddb91413727c0f31c8111448cb1563ce2c2ee57b069bfbdb611d1a932
bind-pkcs11-libs-9.9.4-50.el7_3.5.i686.rpm	SHA-256: fa3dc43e9ef2f3dfa09dbe922e06c642790573cacb592ea72181a2bd384b27b8
bind-pkcs11-libs-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 93d2fe33002ad38678874ab0ac6d10faf32bf3fca90a614fefff8d44676a097e
bind-pkcs11-utils-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 0e52faaf1d7a9817806843ed923ca29f73a1998645bb747f3b36bb3171466b46
bind-sdb-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 32cefb2fd6dd1e66215947d1b61c03073a156a7989498d062211b966c486919f
bind-sdb-chroot-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: 1475cfad3d6cec17acc7d6915581272b2d6bfa3e3db63eb15f4b824ca8b19286
bind-utils-9.9.4-50.el7_3.5.x86_64.rpm	SHA-256: f74bf0610374aeb555aac05ee514dcbb22787999152a077ae04a92874a68b78c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation