Red Hat Product Errata RHSA-2025:1679 - Security Advisory
Issued:
2025-02-19
Updated:
2025-02-19

RHSA-2025:1679 - Security Advisory

Synopsis

Important: bind9.16 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for bind9.16 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

Security Fix(es):

  • bind: bind9: Many records in the additional section cause CPU exhaustion (CVE-2024-11187)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - AUS 8.6 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.6 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Fixes

  • BZ - 2342879 - CVE-2024-11187 bind: bind9: Many records in the additional section cause CPU exhaustion

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
bind9.16-9.16.23-0.7.el8_6.8.src.rpm SHA-256: 8deba3446879b6820ad0ad57f93c7386b00f53cf3411cfa4d6c4a3c6121836a1
x86_64
bind9.16-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: fb73a937150f03d18c9251bb8874ac915ed3b3e6bc130fb710af4cb140854007
bind9.16-chroot-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 6456cf1d8e37a39781c292f6be83576f7ce43bcd0287a03059ef3c464a418024
bind9.16-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 864761c21e38236481e3fc8a2ba94d11534fa65823fab9b18599dd3a43b183c3
bind9.16-debugsource-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: b5da077387bffbd8801e483fd0ccdea9648d4f7fc135d386245d56c1193272f2
bind9.16-dnssec-utils-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 29731897e53875f231cc97ffc945cab06203786bebbe9dd4c604157725271308
bind9.16-libs-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 8af7a67f12b398542d783b7c7aee0e468bf01da73e44595484ca902d3e993080
bind9.16-libs-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: f3a43c7c9f526b59972a973bb9e127aa8403fc2b06298f798198a84e8fd6f818
bind9.16-license-9.16.23-0.7.el8_6.8.noarch.rpm SHA-256: acd901568cdd671c4e49f56101fe3e7e48833c4ebc1349d33843a450dceee847
bind9.16-utils-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 9d3f529d534faf69f2101a1c6faae7e1cd4067ba8ada2a36149fda63f1159c5c
bind9.16-utils-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: e20f557da7ffec4da2a6ef9f6087144605984a4702a29d70ffea61fd6dcb8291

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
bind9.16-9.16.23-0.7.el8_6.8.src.rpm SHA-256: 8deba3446879b6820ad0ad57f93c7386b00f53cf3411cfa4d6c4a3c6121836a1
x86_64
bind9.16-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: fb73a937150f03d18c9251bb8874ac915ed3b3e6bc130fb710af4cb140854007
bind9.16-chroot-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 6456cf1d8e37a39781c292f6be83576f7ce43bcd0287a03059ef3c464a418024
bind9.16-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 864761c21e38236481e3fc8a2ba94d11534fa65823fab9b18599dd3a43b183c3
bind9.16-debugsource-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: b5da077387bffbd8801e483fd0ccdea9648d4f7fc135d386245d56c1193272f2
bind9.16-dnssec-utils-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 29731897e53875f231cc97ffc945cab06203786bebbe9dd4c604157725271308
bind9.16-libs-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 8af7a67f12b398542d783b7c7aee0e468bf01da73e44595484ca902d3e993080
bind9.16-libs-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: f3a43c7c9f526b59972a973bb9e127aa8403fc2b06298f798198a84e8fd6f818
bind9.16-license-9.16.23-0.7.el8_6.8.noarch.rpm SHA-256: acd901568cdd671c4e49f56101fe3e7e48833c4ebc1349d33843a450dceee847
bind9.16-utils-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 9d3f529d534faf69f2101a1c6faae7e1cd4067ba8ada2a36149fda63f1159c5c
bind9.16-utils-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: e20f557da7ffec4da2a6ef9f6087144605984a4702a29d70ffea61fd6dcb8291

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6

SRPM
bind9.16-9.16.23-0.7.el8_6.8.src.rpm SHA-256: 8deba3446879b6820ad0ad57f93c7386b00f53cf3411cfa4d6c4a3c6121836a1
ppc64le
bind9.16-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: 2c21fcc3e6e9877557ca9761d199e1dfad4008277cfcf3da2ab4201e42e41a05
bind9.16-chroot-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: 8deb41306662d0c6dc8cadb14bbcc4de0c0afae09818c9f76683b70ae73dd8b7
bind9.16-debuginfo-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: 52cb8318cb50b08c46f7cfdd8bd0fe2ebbab9bcdc2d3bcda257cebf237a1ef49
bind9.16-debugsource-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: 64e55d85fe44e0d1bff54259f51ce46f0d1802fc1f3937a7dcb6c78247635116
bind9.16-dnssec-utils-debuginfo-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: 21c7f9ae116da115fe8bf52b1a3760af4d62e5661adf949e42da1a684819d270
bind9.16-libs-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: bb5931d9052588ac859f926f3886b7f19712ccab020dc2932aaef6c6a94c724b
bind9.16-libs-debuginfo-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: 7cf74b7d2729f43f1a958b54c85c2aaf3d9ee2c28a3496c350c1e4d32752ba44
bind9.16-license-9.16.23-0.7.el8_6.8.noarch.rpm SHA-256: acd901568cdd671c4e49f56101fe3e7e48833c4ebc1349d33843a450dceee847
bind9.16-utils-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: fada474cde14cbfe3a1c9ad2b45016c9dcd8ee14b45d127d9811fe48d60676d8
bind9.16-utils-debuginfo-9.16.23-0.7.el8_6.8.ppc64le.rpm SHA-256: 0777b033cca2500db15ded9f5a7ca65547e38b08734532710eb4b1af4d4e4e74

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
bind9.16-9.16.23-0.7.el8_6.8.src.rpm SHA-256: 8deba3446879b6820ad0ad57f93c7386b00f53cf3411cfa4d6c4a3c6121836a1
x86_64
bind9.16-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: fb73a937150f03d18c9251bb8874ac915ed3b3e6bc130fb710af4cb140854007
bind9.16-chroot-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 6456cf1d8e37a39781c292f6be83576f7ce43bcd0287a03059ef3c464a418024
bind9.16-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 864761c21e38236481e3fc8a2ba94d11534fa65823fab9b18599dd3a43b183c3
bind9.16-debugsource-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: b5da077387bffbd8801e483fd0ccdea9648d4f7fc135d386245d56c1193272f2
bind9.16-dnssec-utils-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 29731897e53875f231cc97ffc945cab06203786bebbe9dd4c604157725271308
bind9.16-libs-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 8af7a67f12b398542d783b7c7aee0e468bf01da73e44595484ca902d3e993080
bind9.16-libs-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: f3a43c7c9f526b59972a973bb9e127aa8403fc2b06298f798198a84e8fd6f818
bind9.16-license-9.16.23-0.7.el8_6.8.noarch.rpm SHA-256: acd901568cdd671c4e49f56101fe3e7e48833c4ebc1349d33843a450dceee847
bind9.16-utils-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: 9d3f529d534faf69f2101a1c6faae7e1cd4067ba8ada2a36149fda63f1159c5c
bind9.16-utils-debuginfo-9.16.23-0.7.el8_6.8.x86_64.rpm SHA-256: e20f557da7ffec4da2a6ef9f6087144605984a4702a29d70ffea61fd6dcb8291

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.