Red Hat Product Errata RHSA-2021:1479 - Security Advisory
Issued:
2021-05-03
Updated:
2021-05-03

RHSA-2021:1479 - Security Advisory

Synopsis

Important: bind security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for bind is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

Security Fix(es):

  • bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself (CVE-2021-25215)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, the BIND daemon (named) will be restarted automatically.

Affected Products

  • Red Hat Enterprise Linux Server - AUS 7.4 x86_64
  • Red Hat Enterprise Linux Server - TUS 7.4 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.4 x86_64

Fixes

  • BZ - 1953857 - CVE-2021-25215 bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself

Red Hat Enterprise Linux Server - AUS 7.4

SRPM
bind-9.9.4-51.el7_4.6.src.rpm SHA-256: eb5ae593f72890a86ee48455d65f0e64f40e4be4c4d459cbadd8ba85d9ce2fbc
x86_64
bind-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: da3bf29fe9d98f233e4d4df5566e592ea6a03bbad9fcfca1babce6dcbd34df7d
bind-chroot-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: adaba3a84d0044e4d89c088d7751a2ff762d6b2f9d2e035ea5597bd5213bf798
bind-debuginfo-9.9.4-51.el7_4.6.i686.rpm SHA-256: 964d3d17d97e2343fea6ef859dc92ac60d6012c78ed11edb343743127fd95eee
bind-debuginfo-9.9.4-51.el7_4.6.i686.rpm SHA-256: 964d3d17d97e2343fea6ef859dc92ac60d6012c78ed11edb343743127fd95eee
bind-debuginfo-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: c8408bf16596930ba12f69806c5254229f884a73b44e4eb3a4d53b5871f31e61
bind-debuginfo-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: c8408bf16596930ba12f69806c5254229f884a73b44e4eb3a4d53b5871f31e61
bind-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: 01b4907d19c15c60e4fbb63d5398561a7c08a5a5d6665cf9745773936b56aff2
bind-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 2328d8a515154d6137b101e1d10620261c36185767193ed7111f965fa7394aea
bind-libs-9.9.4-51.el7_4.6.i686.rpm SHA-256: 89fd45a3ea63418d6762b866e31862d66282898525e320f90d52cc2f5af7e021
bind-libs-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 9d83702dc46a17a31c56223ccd011f596649d50ff9b2db9a9008e35d302a47ec
bind-libs-lite-9.9.4-51.el7_4.6.i686.rpm SHA-256: 8b4e8f74e4f6bf4c3fd75a501f51dd0c70f9c35e8cb9ec9023b59e1aaecaa698
bind-libs-lite-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: d4dad4b0f1eb05ea1b19d95bccf60aa2ab52d952a57118a1fbe80a7150d39e4e
bind-license-9.9.4-51.el7_4.6.noarch.rpm SHA-256: d10e5c8351826d8570a4c77b159c3ca866028a9f235af363588d540e66148bc9
bind-lite-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: c349a75755c6742ae7e1bb00b0c946faed5bf05b0fa6681b39751abdfb4226c9
bind-lite-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 055638e5567f0d20f213df9e00d1547d231b01d207980b001a633f35d1602eb9
bind-pkcs11-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: aa0657b124119fe766ec25b1f577686085b6d6627fa18a6b18f3aeb473e28859
bind-pkcs11-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: a76de87ff68dc8fe3e177cbc39ee07be4916c36cd7acf1e7b2cf57cfd88f5617
bind-pkcs11-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 95482c3cd276c8233d1f0df0889964a60dbb021d8c8987b4a629d9d784d55c53
bind-pkcs11-libs-9.9.4-51.el7_4.6.i686.rpm SHA-256: 5415182d325b6034f8d8eb791a838eb66b638e327db534d2df31e77b7cc7d73a
bind-pkcs11-libs-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 09c7e09267af151d2e5748cff5e010587344a902d6b325223fb70512c31b5b35
bind-pkcs11-utils-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 73bbb911aaf44f067a2e083501fffd796b15c825c75621da1f35581b319b8cf0
bind-sdb-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 3c64b41b9bce3a7bd47afb9049fbc8f690e0e3f0b686ba59f393eff6e1b0dd3d
bind-sdb-chroot-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 0a1f0fd770c778eb35120d905ab09ab1e02f01ec05c9ef7f2c6457a1d19bb327
bind-utils-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: e01ae0339b935fc5f6d633f695a55e1e6c76e9ee62c67464b3c915c06408929c

Red Hat Enterprise Linux Server - TUS 7.4

SRPM
bind-9.9.4-51.el7_4.6.src.rpm SHA-256: eb5ae593f72890a86ee48455d65f0e64f40e4be4c4d459cbadd8ba85d9ce2fbc
x86_64
bind-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: da3bf29fe9d98f233e4d4df5566e592ea6a03bbad9fcfca1babce6dcbd34df7d
bind-chroot-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: adaba3a84d0044e4d89c088d7751a2ff762d6b2f9d2e035ea5597bd5213bf798
bind-debuginfo-9.9.4-51.el7_4.6.i686.rpm SHA-256: 964d3d17d97e2343fea6ef859dc92ac60d6012c78ed11edb343743127fd95eee
bind-debuginfo-9.9.4-51.el7_4.6.i686.rpm SHA-256: 964d3d17d97e2343fea6ef859dc92ac60d6012c78ed11edb343743127fd95eee
bind-debuginfo-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: c8408bf16596930ba12f69806c5254229f884a73b44e4eb3a4d53b5871f31e61
bind-debuginfo-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: c8408bf16596930ba12f69806c5254229f884a73b44e4eb3a4d53b5871f31e61
bind-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: 01b4907d19c15c60e4fbb63d5398561a7c08a5a5d6665cf9745773936b56aff2
bind-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 2328d8a515154d6137b101e1d10620261c36185767193ed7111f965fa7394aea
bind-libs-9.9.4-51.el7_4.6.i686.rpm SHA-256: 89fd45a3ea63418d6762b866e31862d66282898525e320f90d52cc2f5af7e021
bind-libs-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 9d83702dc46a17a31c56223ccd011f596649d50ff9b2db9a9008e35d302a47ec
bind-libs-lite-9.9.4-51.el7_4.6.i686.rpm SHA-256: 8b4e8f74e4f6bf4c3fd75a501f51dd0c70f9c35e8cb9ec9023b59e1aaecaa698
bind-libs-lite-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: d4dad4b0f1eb05ea1b19d95bccf60aa2ab52d952a57118a1fbe80a7150d39e4e
bind-license-9.9.4-51.el7_4.6.noarch.rpm SHA-256: d10e5c8351826d8570a4c77b159c3ca866028a9f235af363588d540e66148bc9
bind-lite-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: c349a75755c6742ae7e1bb00b0c946faed5bf05b0fa6681b39751abdfb4226c9
bind-lite-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 055638e5567f0d20f213df9e00d1547d231b01d207980b001a633f35d1602eb9
bind-pkcs11-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: aa0657b124119fe766ec25b1f577686085b6d6627fa18a6b18f3aeb473e28859
bind-pkcs11-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: a76de87ff68dc8fe3e177cbc39ee07be4916c36cd7acf1e7b2cf57cfd88f5617
bind-pkcs11-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 95482c3cd276c8233d1f0df0889964a60dbb021d8c8987b4a629d9d784d55c53
bind-pkcs11-libs-9.9.4-51.el7_4.6.i686.rpm SHA-256: 5415182d325b6034f8d8eb791a838eb66b638e327db534d2df31e77b7cc7d73a
bind-pkcs11-libs-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 09c7e09267af151d2e5748cff5e010587344a902d6b325223fb70512c31b5b35
bind-pkcs11-utils-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 73bbb911aaf44f067a2e083501fffd796b15c825c75621da1f35581b319b8cf0
bind-sdb-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 3c64b41b9bce3a7bd47afb9049fbc8f690e0e3f0b686ba59f393eff6e1b0dd3d
bind-sdb-chroot-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 0a1f0fd770c778eb35120d905ab09ab1e02f01ec05c9ef7f2c6457a1d19bb327
bind-utils-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: e01ae0339b935fc5f6d633f695a55e1e6c76e9ee62c67464b3c915c06408929c

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.4

SRPM
bind-9.9.4-51.el7_4.6.src.rpm SHA-256: eb5ae593f72890a86ee48455d65f0e64f40e4be4c4d459cbadd8ba85d9ce2fbc
ppc64le
bind-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 363f0395578b8aaf6c45200721580a52ce28bd91f8c19d2b7a273f291b7397f0
bind-chroot-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: a4875d77b17431ffa254948a59e6e8b817a5f4eff956b7492ed127e0a6ee1264
bind-debuginfo-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 6ec90147feafe8fe1c00c3407b443857859e3885c53ad0119a8a6667f6cf36a4
bind-debuginfo-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 6ec90147feafe8fe1c00c3407b443857859e3885c53ad0119a8a6667f6cf36a4
bind-devel-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 4f44c7baece73532a7fed362521c81534daa97a98d34d529fc44496b87256d61
bind-libs-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 60114dba7d771311c08fc97f4ef774a787735c276fd991bb42ca7df8b9dbe920
bind-libs-lite-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 95d89b8b28538eafa1421a07e12b1e01749b2062e35b4cb05ad7abd2fbfa34d2
bind-license-9.9.4-51.el7_4.6.noarch.rpm SHA-256: d10e5c8351826d8570a4c77b159c3ca866028a9f235af363588d540e66148bc9
bind-lite-devel-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: b3cc06fa3ab733447219882af3e51f2a177312ba7a3010e723fffb4267180a7b
bind-pkcs11-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 2d7c00382e585172b70358cc5c77a33d50b5cd305c77f1f25834460960f1b2e0
bind-pkcs11-devel-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 90de7181fd821981656f777ba29381dcec394177cf51c5c0735d6d2d45b9aff3
bind-pkcs11-libs-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: d9b9948da7de6fb957a8201242a662671e1cdb3427e51c106c5492d0fc23cf6b
bind-pkcs11-utils-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: c31a85011067140aeb1faafa0c3902631fa843a3cd7fcdbe88a53d79aca3d056
bind-sdb-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 08ef75eae6963de7e396a88b83ceb9ae4af2f649d2250e42e00aa34a92b56c8d
bind-sdb-chroot-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: b0d5d8f64b823159ba7c04f5dbd0e97ab917190b54d920452a6a2232fef73ae1
bind-utils-9.9.4-51.el7_4.6.ppc64le.rpm SHA-256: 49aa754703e714fc6bdf444f6a936622f37223bedc122eddf3928a1c525e0ba6

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.4

SRPM
bind-9.9.4-51.el7_4.6.src.rpm SHA-256: eb5ae593f72890a86ee48455d65f0e64f40e4be4c4d459cbadd8ba85d9ce2fbc
x86_64
bind-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: da3bf29fe9d98f233e4d4df5566e592ea6a03bbad9fcfca1babce6dcbd34df7d
bind-chroot-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: adaba3a84d0044e4d89c088d7751a2ff762d6b2f9d2e035ea5597bd5213bf798
bind-debuginfo-9.9.4-51.el7_4.6.i686.rpm SHA-256: 964d3d17d97e2343fea6ef859dc92ac60d6012c78ed11edb343743127fd95eee
bind-debuginfo-9.9.4-51.el7_4.6.i686.rpm SHA-256: 964d3d17d97e2343fea6ef859dc92ac60d6012c78ed11edb343743127fd95eee
bind-debuginfo-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: c8408bf16596930ba12f69806c5254229f884a73b44e4eb3a4d53b5871f31e61
bind-debuginfo-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: c8408bf16596930ba12f69806c5254229f884a73b44e4eb3a4d53b5871f31e61
bind-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: 01b4907d19c15c60e4fbb63d5398561a7c08a5a5d6665cf9745773936b56aff2
bind-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 2328d8a515154d6137b101e1d10620261c36185767193ed7111f965fa7394aea
bind-libs-9.9.4-51.el7_4.6.i686.rpm SHA-256: 89fd45a3ea63418d6762b866e31862d66282898525e320f90d52cc2f5af7e021
bind-libs-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 9d83702dc46a17a31c56223ccd011f596649d50ff9b2db9a9008e35d302a47ec
bind-libs-lite-9.9.4-51.el7_4.6.i686.rpm SHA-256: 8b4e8f74e4f6bf4c3fd75a501f51dd0c70f9c35e8cb9ec9023b59e1aaecaa698
bind-libs-lite-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: d4dad4b0f1eb05ea1b19d95bccf60aa2ab52d952a57118a1fbe80a7150d39e4e
bind-license-9.9.4-51.el7_4.6.noarch.rpm SHA-256: d10e5c8351826d8570a4c77b159c3ca866028a9f235af363588d540e66148bc9
bind-lite-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: c349a75755c6742ae7e1bb00b0c946faed5bf05b0fa6681b39751abdfb4226c9
bind-lite-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 055638e5567f0d20f213df9e00d1547d231b01d207980b001a633f35d1602eb9
bind-pkcs11-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: aa0657b124119fe766ec25b1f577686085b6d6627fa18a6b18f3aeb473e28859
bind-pkcs11-devel-9.9.4-51.el7_4.6.i686.rpm SHA-256: a76de87ff68dc8fe3e177cbc39ee07be4916c36cd7acf1e7b2cf57cfd88f5617
bind-pkcs11-devel-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 95482c3cd276c8233d1f0df0889964a60dbb021d8c8987b4a629d9d784d55c53
bind-pkcs11-libs-9.9.4-51.el7_4.6.i686.rpm SHA-256: 5415182d325b6034f8d8eb791a838eb66b638e327db534d2df31e77b7cc7d73a
bind-pkcs11-libs-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 09c7e09267af151d2e5748cff5e010587344a902d6b325223fb70512c31b5b35
bind-pkcs11-utils-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 73bbb911aaf44f067a2e083501fffd796b15c825c75621da1f35581b319b8cf0
bind-sdb-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 3c64b41b9bce3a7bd47afb9049fbc8f690e0e3f0b686ba59f393eff6e1b0dd3d
bind-sdb-chroot-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: 0a1f0fd770c778eb35120d905ab09ab1e02f01ec05c9ef7f2c6457a1d19bb327
bind-utils-9.9.4-51.el7_4.6.x86_64.rpm SHA-256: e01ae0339b935fc5f6d633f695a55e1e6c76e9ee62c67464b3c915c06408929c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.