Issued:: 2021-03-02
Updated:: 2021-03-02

RHSA-2021:0694 - Security Advisory

Overview
Updated Packages

Synopsis

Important: bind security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for bind is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

Security Fix(es):

bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation (CVE-2020-8625)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, the BIND daemon (named) will be restarted automatically.

Affected Products

Red Hat Enterprise Linux Server - AUS 7.2 x86_64

Fixes

BZ - 1928486 - CVE-2020-8625 bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation

CVEs

CVE-2020-8625

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 7.2

SRPM
bind-9.9.4-29.el7_2.10.src.rpm	SHA-256: fb27aab9df301bc282c42659aa7640592232d92a09d98c627f7426914c79edca
x86_64
bind-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 7149d4d4b3dc0f1cee3973d962fa2b1e50cdb00e181377966ea268857ef5088e
bind-chroot-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 4539ca6a7325dab14f177ad744bdd276bcfdf79f9c3d6ebf915749ad7b48b858
bind-debuginfo-9.9.4-29.el7_2.10.i686.rpm	SHA-256: c29602297c73a9496040f2ea2be90d9aa38d777509d80d7fe863d5a7f2660f94
bind-debuginfo-9.9.4-29.el7_2.10.i686.rpm	SHA-256: c29602297c73a9496040f2ea2be90d9aa38d777509d80d7fe863d5a7f2660f94
bind-debuginfo-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 9e0c786a2848bd74f700b5f7a1669eaa5bdba05007f0041f9aacb7e4b0ebd1a9
bind-debuginfo-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 9e0c786a2848bd74f700b5f7a1669eaa5bdba05007f0041f9aacb7e4b0ebd1a9
bind-devel-9.9.4-29.el7_2.10.i686.rpm	SHA-256: 4d45ec2bb483f9df272b5338993a638a8873c6166a165fb3573219894ad54761
bind-devel-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: b6fc0fbecaec6924200ba5f14006fa546f6547986063deb5838cb5f3100b16a9
bind-libs-9.9.4-29.el7_2.10.i686.rpm	SHA-256: 935a67a808974c04a7d33e3f82a574a79e288ce52870a32291f552aef4ae2ad9
bind-libs-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 7ab88e54b1f539504e06829013976e301657563108ad8383cfb2aa54a8940eab
bind-libs-lite-9.9.4-29.el7_2.10.i686.rpm	SHA-256: 2e6e5b8d66cfcc170f020548f3cee6eb44e1adb8fbff4fa275b1dbfc19e42c79
bind-libs-lite-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 83154f216c2417b8e41ef2a74ec21b9f75585f333736ffe5c14429b4009a6991
bind-license-9.9.4-29.el7_2.10.noarch.rpm	SHA-256: 8d6fb96aa900bd9a0a03d49ffc46d68c31d472bcb83f833d5a129ec9e9e2524f
bind-lite-devel-9.9.4-29.el7_2.10.i686.rpm	SHA-256: d3117b05f9d4c79f98e9e5447da6aec3b983c28c30836eb655f076469d59c61c
bind-lite-devel-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: f67c37a27d7025a763e5dd7d6f35fc7b0e95d09e67f98f31f7883623c1a099bf
bind-pkcs11-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 126b4265ee761285b29353ac9ec875200fcc992a1342637fa9f86e7bc36b6e95
bind-pkcs11-devel-9.9.4-29.el7_2.10.i686.rpm	SHA-256: 10952cc3272e17e7bc3e67b3deab2dff41efb3b50029615cc568af527198369c
bind-pkcs11-devel-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: dadccd75384dba426c2a6f85f666b339ffbdb1f8189a2493654501cc20910286
bind-pkcs11-libs-9.9.4-29.el7_2.10.i686.rpm	SHA-256: 7728cc7571f85e6379816a2b585766428bf747f422112afc735f8af25431d333
bind-pkcs11-libs-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 5d887e43359474fe7293816e63f88fa3039e70809379b592d8b4cd9ea99192d1
bind-pkcs11-utils-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: ab4309818e3281848ad1edbe86f0f24403580f82978542282aced9f7c6ca3d80
bind-sdb-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 9fbef33454f9e0139353864fe6ecfed8818ee1039669f00a87c48361550cb271
bind-sdb-chroot-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: 833ef0a9070a0768fa8815b8e2610d474670182e39ad0e7aaf4721670e86c6b5
bind-utils-9.9.4-29.el7_2.10.x86_64.rpm	SHA-256: b6b4edcda5459de25210476ea4735192632f98d69d2afeb501e3ff111b939a17

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation