Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-0396
Vulnerability from cvelistv5
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-02T23:25:40.544Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_transferred" ], "url": "https://kb.isc.org/v1/docs/cve-2022-0396" }, { "name": "FEDORA-2022-14e36aac0c", "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY/" }, { "tags": [ "x_transferred" ], "url": "https://security.netapp.com/advisory/ntap-20220408-0001/" }, { "tags": [ "x_transferred" ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "name": "GLSA-202210-25", "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://security.gentoo.org/glsa/202210-25" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "BIND", "vendor": "ISC", "versions": [ { "status": "affected", "version": "Open Source Branch 9.16 9.16.11 through versions before 9.16.27" }, { "status": "affected", "version": "Development Branch 9.17 BIND 9.17 all versions" }, { "status": "affected", "version": "Open Source Branch 9.18 9.18.0" }, { "status": "affected", "version": "Supported Preview Branch 9.16-S 9.16.11-S through versions before 9.16.27-S" } ] } ], "datePublic": "2022-03-16T00:00:00", "descriptions": [ { "lang": "en", "value": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection." } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" } } ], "problemTypes": [ { "descriptions": [ { "description": "ISC recently discovered an issue in BIND that allows TCP connection slots to be consumed for an indefinite time frame via a specifically crafted TCP stream sent from a client. This issue is present in BIND. BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. 9.16.11 to 9.16.26 (including S editions), and 9.18.0. This issue can only be triggered on BIND servers which have keep-response-order enabled, which is not the default configuration. The keep-response-order option is an ACL block; any hosts which are specified within it will be able to trigger this issue on affected versions. BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition.", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2022-10-31T00:00:00", "orgId": "404fd4d2-a609-4245-b543-2c944a302a22", "shortName": "isc" }, "references": [ { "url": "https://kb.isc.org/v1/docs/cve-2022-0396" }, { "name": "FEDORA-2022-14e36aac0c", "tags": [ "vendor-advisory" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY/" }, { "url": "https://security.netapp.com/advisory/ntap-20220408-0001/" }, { "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "name": "GLSA-202210-25", "tags": [ "vendor-advisory" ], "url": "https://security.gentoo.org/glsa/202210-25" } ], "solutions": [ { "lang": "en", "value": "Upgrade to the patched release most closely related to your current version of BIND:\n 9.16.27\n 9.18.1\nBIND Supported Preview Edition is a special feature-preview branch of BIND provided to eligible ISC support customers.\n 9.16.27-S1" } ], "source": { "discovery": "INTERNAL" }, "title": "DoS from specifically crafted TCP packets", "workarounds": [ { "lang": "en", "value": "To mitigate this issue in all affected versions of BIND, use the default setting of keep-response-order { none; }.\nActive exploits: We are not aware of any active exploits." } ], "x_generator": { "engine": "Vulnogram 0.0.9" } } }, "cveMetadata": { "assignerOrgId": "404fd4d2-a609-4245-b543-2c944a302a22", "assignerShortName": "isc", "cveId": "CVE-2022-0396", "datePublished": "2022-03-23T10:45:13.589095Z", "dateReserved": "2022-01-27T00:00:00", "dateUpdated": "2024-09-16T19:05:24.544Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2022-0396\",\"sourceIdentifier\":\"security-officer@isc.org\",\"published\":\"2022-03-23T11:15:08.380\",\"lastModified\":\"2024-11-21T06:38:32.280\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.\"},{\"lang\":\"es\",\"value\":\"BIND versiones 9.16.11 posteriores a 9.16.26, versiones 9.17.0 posteriores a 9.18.0 y versiones 9.16.11-S1 posteriores a 9.16.26-S1 de BIND Supported Preview Edition. Los flujos TCP espec\u00edficamente dise\u00f1ados pueden causar que las conexiones a BIND permanezcan en estado CLOSE_WAIT durante un per\u00edodo de tiempo indefinido, incluso despu\u00e9s de que el cliente haya terminado la conexi\u00f3n\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-officer@isc.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-404\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"9.16.11\",\"versionEndExcluding\":\"9.16.27\",\"matchCriteriaId\":\"90B16201-A1E2-47D8-B410-92AE90B98867\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:supported_preview:*:*:*\",\"versionStartIncluding\":\"9.16.11\",\"versionEndExcluding\":\"9.16.27\",\"matchCriteriaId\":\"24C30F5B-53A9-4D41-9158-35250756E637\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.17.0\",\"versionEndIncluding\":\"9.18.0\",\"matchCriteriaId\":\"AC2500CA-5173-44CC-B35A-D645DA10BCE5\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6770B6C3-732E-4E22-BF1C-2D2FD610061C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F9C8C20-42EB-4AB5-BD97-212DEB070C43\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FFF7106-ED78-49BA-9EC5-B889E3685D53\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E63D8B0F-006E-4801-BF9D-1C001BBFB4F9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56409CEC-5A1E-4450-AA42-641E459CC2AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B06F4839-D16A-4A61-9BB5-55B13F41E47F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"108A2215-50FB-4074-94CF-C130FA14566D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7AFC73CE-ABB9-42D3-9A71-3F5BC5381E0E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32F0B6C0-F930-480D-962B-3F4EFDCC13C7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"803BC414-B250-4E3A-A478-A3881340D6B8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FEB3337-BFDE-462A-908B-176F92053CEC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"736AEAE9-782B-4F71-9893-DED53367E102\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0B4AD8A-F172-4558-AEC6-FF424BA2D912\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8497A4C9-8474-4A62-8331-3FE862ED4098\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"234DEFE0-5CE5-4B0A-96B8-5D227CB8ED31\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDDF61B7-EC5C-467C-B710-B89F502CD04F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.0\",\"matchCriteriaId\":\"C89891C1-DFD7-4E1F-80A9-7485D86A15B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:1.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"4664B195-AF14-4834-82B3-0B2C98020EB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:1.0:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"75BC588E-CDF0-404E-AD61-02093A1DF343\"}]}]}],\"references\":[{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://kb.isc.org/v1/docs/cve-2022-0396\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY/\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-25\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220408-0001/\",\"source\":\"security-officer@isc.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://kb.isc.org/v1/docs/cve-2022-0396\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-25\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220408-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}" } }
ghsa-wqqg-j8m9-9rcc
Vulnerability from github
BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.
{ "affected": [], "aliases": [ "CVE-2022-0396" ], "database_specific": { "cwe_ids": [ "CWE-404" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2022-03-23T11:15:00Z", "severity": "MODERATE" }, "details": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.", "id": "GHSA-wqqg-j8m9-9rcc", "modified": "2022-03-30T00:01:11Z", "published": "2022-03-24T00:00:22Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0396" }, { "type": "WEB", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "type": "WEB", "url": "https://kb.isc.org/v1/docs/cve-2022-0396" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY" }, { "type": "WEB", "url": "https://security.gentoo.org/glsa/202210-25" }, { "type": "WEB", "url": "https://security.netapp.com/advisory/ntap-20220408-0001" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "type": "CVSS_V3" } ] }
icsa-22-258-05
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Siemens", "summary": "reporting these vulnerabilities to CISA" } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en-US", "notes": [ { "category": "general", "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov", "title": "CISA Disclaimer" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "summary", "text": "Successful exploitation of these vulnerabilities could allow an attacker to cause a denial-of-service condition, disclose sensitive data, or violate the system integrity.", "title": "Risk evaluation" }, { "category": "other", "text": "Multiple", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Germany", "title": "Company headquarters location" }, { "category": "general", "text": "CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:", "title": "Recommended Practices" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage at cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" }, { "category": "general", "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "other", "text": "No known public exploits specifically target these vulnerabilities.", "title": "Exploitability" } ], "publisher": { "category": "coordinator", "contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "external", "summary": "SSA-637483 Third-Party Component Vulnerabilities in SINEC INS before V1.0 SP2 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-637483.json" }, { "category": "self", "summary": "ICS Advisory ICSA-22-258-05 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2022/icsa-22-258-05.json" }, { "category": "self", "summary": "ICS Advisory ICSA-22-258-05 Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-258-05" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-258-05" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "SSA-637483 Third-Party Component Vulnerabilities in SINEC INS before V1.0 SP2 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "category": "external", "summary": "SSA-637483 Third-Party Component Vulnerabilities in SINEC INS before V1.0 SP2 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-637483.txt" } ], "title": "Siemens SINEC INS", "tracking": { "current_release_date": "2022-09-15T00:00:00.000000Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1.0.0" } }, "id": "ICSA-22-258-05", "initial_release_date": "2022-09-15T00:00:00.000000Z", "revision_history": [ { "date": "2022-09-15T00:00:00.000000Z", "legacy_version": "Initial", "number": "1", "summary": "Publication Date" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003c V1.0 SP2", "product": { "name": "SINEC INS", "product_id": "CSAFPID-0001" } } ], "category": "product_name", "name": "SINEC INS" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-7793", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7793" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-7793" }, { "cve": "CVE-2020-12762", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-12762" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-12762" }, { "cve": "CVE-2020-28168", "cwe": { "id": "CWE-918", "name": "Server-Side Request Forgery (SSRF)" }, "notes": [ { "category": "summary", "text": "Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-28168" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-28168" }, { "cve": "CVE-2020-28500", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-28500" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-28500" }, { "cve": "CVE-2021-3749", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "axios is vulnerable to Inefficient Regular Expression Complexity", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3749" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-3749" }, { "cve": "CVE-2021-4160", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3 default curves. Impact was not analyzed in detail, because the pre-requisites for attack are considered unlikely and include reusing private keys. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH private key among multiple clients, which is no longer an option since CVE-2016-0701. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0.0. It was addressed in the releases of 1.1.1m and 3.0.1 on the 15th of December 2021. For the 1.0.2 release it is addressed in git commit 6fc1aaaf3 that is available to premium support customers only. It will be made available in 1.0.2zc when it is released. The issue only affects OpenSSL on MIPS platforms. Fixed in OpenSSL 3.0.1 (Affected 3.0.0). Fixed in OpenSSL 1.1.1m (Affected 1.1.1-1.1.1l). Fixed in OpenSSL 1.0.2zc-dev (Affected 1.0.2-1.0.2zb).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-4160" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-4160" }, { "cve": "CVE-2021-23337", "cwe": { "id": "CWE-77", "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)" }, "notes": [ { "category": "summary", "text": "Lodash versions prior to 4.17.21 are vulnerable to Command Injection via the template function.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23337" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-23337" }, { "cve": "CVE-2021-23839", "cwe": { "id": "CWE-326", "name": "Inadequate Encryption Strength" }, "notes": [ { "category": "summary", "text": "OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support both SSLv2 and more recent SSL and TLS versions then a check is made for a version rollback attack when unpadding an RSA signature. Clients that support SSL or TLS versions greater than SSLv2 are supposed to use a special form of padding. A server that supports greater than SSLv2 is supposed to reject connection attempts from a client where this special form of padding is present, because this indicates that a version rollback has occurred (i.e. both client and server support greater than SSLv2, and yet this is the version that is being requested). The implementation of this padding check inverted the logic so that the connection attempt is accepted if the padding is present, and rejected if it is absent. This means that such as server will accept a connection if a version rollback attack has occurred. Further the server will erroneously reject a connection if a normal SSLv2 connection attempt is made. Only OpenSSL 1.0.2 servers from version 1.0.2s to 1.0.2x are affected by this issue. In order to be vulnerable a 1.0.2 server must: 1) have configured SSLv2 support at compile time (this is off by default), 2) have configured SSLv2 support at runtime (this is off by default), 3) have configured SSLv2 ciphersuites (these are not in the default ciphersuite list) OpenSSL 1.1.1 does not have SSLv2 support and therefore is not vulnerable to this issue. The underlying error is in the implementation of the RSA_padding_check_SSLv23() function. This also affects the RSA_SSLV23_PADDING padding mode used by various other functions. Although 1.1.1 does not support SSLv2 the RSA_padding_check_SSLv23() function still exists, as does the RSA_SSLV23_PADDING padding mode. Applications that directly call that function or use that padding mode will encounter this issue. However since there is no support for the SSLv2 protocol in 1.1.1 this is considered a bug and not a security issue in that version. OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.0.2y (Affected 1.0.2s-1.0.2x).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23839" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 3.7, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-23839" }, { "cve": "CVE-2021-23841", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-23841" }, { "cve": "CVE-2021-25217", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "summary", "text": "The affected products contain the third party component, ISC DHCP, that possesses a vulnerability if used as a DHCP client or server. The vulnerability affects the DHCP package when storing and reading DHCP lease information containing particular option information.\r\n\r\nAn attacker could exploit this vulnerability to affect the availability of the DHCP client or server, or in the worst case affect the confidentiality or integrity of device through a buffer overflow or cause a remote-code execution.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-25217" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 8.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-25217" }, { "cve": "CVE-2021-25220", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "BIND 9.11.0 -\u003e 9.11.36 9.12.0 -\u003e 9.16.26 9.17.0 -\u003e 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -\u003e 9.11.36-S1 9.16.8-S1 -\u003e 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-25220" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 8.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-25220" }, { "cve": "CVE-2022-0155", "cwe": { "id": "CWE-359", "name": "Exposure of Private Personal Information to an Unauthorized Actor" }, "notes": [ { "category": "summary", "text": "follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0155" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-0155" }, { "cve": "CVE-2022-0235", "cwe": { "id": "CWE-601", "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)" }, "notes": [ { "category": "summary", "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0235" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-0235" }, { "cve": "CVE-2022-0396", "cwe": { "id": "CWE-404", "name": "Improper Resource Shutdown or Release" }, "notes": [ { "category": "summary", "text": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0396" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-0396" } ] }
ICSA-22-258-05
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Siemens", "summary": "reporting these vulnerabilities to CISA" } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en-US", "notes": [ { "category": "general", "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov", "title": "CISA Disclaimer" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "summary", "text": "Successful exploitation of these vulnerabilities could allow an attacker to cause a denial-of-service condition, disclose sensitive data, or violate the system integrity.", "title": "Risk evaluation" }, { "category": "other", "text": "Multiple", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Germany", "title": "Company headquarters location" }, { "category": "general", "text": "CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:", "title": "Recommended Practices" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage at cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" }, { "category": "general", "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "other", "text": "No known public exploits specifically target these vulnerabilities.", "title": "Exploitability" } ], "publisher": { "category": "coordinator", "contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "external", "summary": "SSA-637483 Third-Party Component Vulnerabilities in SINEC INS before V1.0 SP2 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-637483.json" }, { "category": "self", "summary": "ICS Advisory ICSA-22-258-05 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2022/icsa-22-258-05.json" }, { "category": "self", "summary": "ICS Advisory ICSA-22-258-05 Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-258-05" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-258-05" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "SSA-637483 Third-Party Component Vulnerabilities in SINEC INS before V1.0 SP2 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "category": "external", "summary": "SSA-637483 Third-Party Component Vulnerabilities in SINEC INS before V1.0 SP2 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-637483.txt" } ], "title": "Siemens SINEC INS", "tracking": { "current_release_date": "2022-09-15T00:00:00.000000Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1.0.0" } }, "id": "ICSA-22-258-05", "initial_release_date": "2022-09-15T00:00:00.000000Z", "revision_history": [ { "date": "2022-09-15T00:00:00.000000Z", "legacy_version": "Initial", "number": "1", "summary": "Publication Date" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003c V1.0 SP2", "product": { "name": "SINEC INS", "product_id": "CSAFPID-0001" } } ], "category": "product_name", "name": "SINEC INS" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-7793", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-7793" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-7793" }, { "cve": "CVE-2020-12762", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-12762" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-12762" }, { "cve": "CVE-2020-28168", "cwe": { "id": "CWE-918", "name": "Server-Side Request Forgery (SSRF)" }, "notes": [ { "category": "summary", "text": "Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-28168" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-28168" }, { "cve": "CVE-2020-28500", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-28500" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2020-28500" }, { "cve": "CVE-2021-3749", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "axios is vulnerable to Inefficient Regular Expression Complexity", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3749" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-3749" }, { "cve": "CVE-2021-4160", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3 default curves. Impact was not analyzed in detail, because the pre-requisites for attack are considered unlikely and include reusing private keys. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH private key among multiple clients, which is no longer an option since CVE-2016-0701. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0.0. It was addressed in the releases of 1.1.1m and 3.0.1 on the 15th of December 2021. For the 1.0.2 release it is addressed in git commit 6fc1aaaf3 that is available to premium support customers only. It will be made available in 1.0.2zc when it is released. The issue only affects OpenSSL on MIPS platforms. Fixed in OpenSSL 3.0.1 (Affected 3.0.0). Fixed in OpenSSL 1.1.1m (Affected 1.1.1-1.1.1l). Fixed in OpenSSL 1.0.2zc-dev (Affected 1.0.2-1.0.2zb).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-4160" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-4160" }, { "cve": "CVE-2021-23337", "cwe": { "id": "CWE-77", "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)" }, "notes": [ { "category": "summary", "text": "Lodash versions prior to 4.17.21 are vulnerable to Command Injection via the template function.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23337" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-23337" }, { "cve": "CVE-2021-23839", "cwe": { "id": "CWE-326", "name": "Inadequate Encryption Strength" }, "notes": [ { "category": "summary", "text": "OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support both SSLv2 and more recent SSL and TLS versions then a check is made for a version rollback attack when unpadding an RSA signature. Clients that support SSL or TLS versions greater than SSLv2 are supposed to use a special form of padding. A server that supports greater than SSLv2 is supposed to reject connection attempts from a client where this special form of padding is present, because this indicates that a version rollback has occurred (i.e. both client and server support greater than SSLv2, and yet this is the version that is being requested). The implementation of this padding check inverted the logic so that the connection attempt is accepted if the padding is present, and rejected if it is absent. This means that such as server will accept a connection if a version rollback attack has occurred. Further the server will erroneously reject a connection if a normal SSLv2 connection attempt is made. Only OpenSSL 1.0.2 servers from version 1.0.2s to 1.0.2x are affected by this issue. In order to be vulnerable a 1.0.2 server must: 1) have configured SSLv2 support at compile time (this is off by default), 2) have configured SSLv2 support at runtime (this is off by default), 3) have configured SSLv2 ciphersuites (these are not in the default ciphersuite list) OpenSSL 1.1.1 does not have SSLv2 support and therefore is not vulnerable to this issue. The underlying error is in the implementation of the RSA_padding_check_SSLv23() function. This also affects the RSA_SSLV23_PADDING padding mode used by various other functions. Although 1.1.1 does not support SSLv2 the RSA_padding_check_SSLv23() function still exists, as does the RSA_SSLV23_PADDING padding mode. Applications that directly call that function or use that padding mode will encounter this issue. However since there is no support for the SSLv2 protocol in 1.1.1 this is considered a bug and not a security issue in that version. OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.0.2y (Affected 1.0.2s-1.0.2x).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23839" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 3.7, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-23839" }, { "cve": "CVE-2021-23841", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-23841" }, { "cve": "CVE-2021-25217", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "summary", "text": "The affected products contain the third party component, ISC DHCP, that possesses a vulnerability if used as a DHCP client or server. The vulnerability affects the DHCP package when storing and reading DHCP lease information containing particular option information.\r\n\r\nAn attacker could exploit this vulnerability to affect the availability of the DHCP client or server, or in the worst case affect the confidentiality or integrity of device through a buffer overflow or cause a remote-code execution.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-25217" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 8.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-25217" }, { "cve": "CVE-2021-25220", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "BIND 9.11.0 -\u003e 9.11.36 9.12.0 -\u003e 9.16.26 9.17.0 -\u003e 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -\u003e 9.11.36-S1 9.16.8-S1 -\u003e 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-25220" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 8.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2021-25220" }, { "cve": "CVE-2022-0155", "cwe": { "id": "CWE-359", "name": "Exposure of Private Personal Information to an Unauthorized Actor" }, "notes": [ { "category": "summary", "text": "follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0155" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-0155" }, { "cve": "CVE-2022-0235", "cwe": { "id": "CWE-601", "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)" }, "notes": [ { "category": "summary", "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0235" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-0235" }, { "cve": "CVE-2022-0396", "cwe": { "id": "CWE-404", "name": "Improper Resource Shutdown or Release" }, "notes": [ { "category": "summary", "text": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0396" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "remediations": [ { "category": "vendor_fix", "details": "Update to V1.0 SP2 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109812610/" }, { "category": "mitigation", "details": "As a general security measure, Siemens strongly recommends to protect\nnetwork access to devices with appropriate mechanisms. In order to\noperate the devices in a protected IT environment, Siemens recommends\nto configure the environment according to Siemens\u0027 operational\nguidelines for Industrial Security (Download:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-\nsecurity), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found\nat: https://www.siemens.com/industrialsecurity", "product_ids": [ "CSAFPID-0001" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-0396" } ] }
rhsa-2022_7643
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for bind9.16 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nSecurity Fix(es):\n\n* bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220)\n\n* bind: DoS from specifically crafted TCP packets (CVE-2022-0396)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2022:7643", "url": "https://access.redhat.com/errata/RHSA-2022:7643" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index" }, { "category": "external", "summary": "2064512", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064512" }, { "category": "external", "summary": "2064513", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064513" }, { "category": "external", "summary": "2128601", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2128601" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7643.json" } ], "title": "Red Hat Security Advisory: bind9.16 security update", "tracking": { "current_release_date": "2024-11-22T19:14:00+00:00", "generator": { "date": "2024-11-22T19:14:00+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2022:7643", "initial_release_date": "2022-11-08T09:31:30+00:00", "revision_history": [ { "date": "2022-11-08T09:31:30+00:00", "number": "1", "summary": "Initial version" }, { "date": "2022-11-08T09:31:30+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T19:14:00+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder (v. 8)", "product": { "name": "Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-devel@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debugsource@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debuginfo@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils-debuginfo@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs-debuginfo@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils-debuginfo@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-chroot@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "product": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "product_id": "bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils@9.16.23-0.9.el8.1?arch=aarch64\u0026epoch=32" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-devel@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debugsource@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debuginfo@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils-debuginfo@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs-debuginfo@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils-debuginfo@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-chroot@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "product": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "product_id": "bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils@9.16.23-0.9.el8.1?arch=ppc64le\u0026epoch=32" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "product": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "product_id": "bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-devel@9.16.23-0.9.el8.1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "product": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "product_id": "bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs@9.16.23-0.9.el8.1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "product": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "product_id": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debugsource@9.16.23-0.9.el8.1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "product": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_id": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debuginfo@9.16.23-0.9.el8.1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "product": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_id": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils-debuginfo@9.16.23-0.9.el8.1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "product": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_id": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs-debuginfo@9.16.23-0.9.el8.1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "product": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_id": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils-debuginfo@9.16.23-0.9.el8.1?arch=i686\u0026epoch=32" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-devel@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debugsource@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debuginfo@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils-debuginfo@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs-debuginfo@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils-debuginfo@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-chroot@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "product": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "product_id": "bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils@9.16.23-0.9.el8.1?arch=x86_64\u0026epoch=32" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-devel@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debugsource@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-debuginfo@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-dnssec-utils-debuginfo@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs-debuginfo@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils-debuginfo@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-chroot@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-libs@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "product": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "product_id": "bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-utils@9.16.23-0.9.el8.1?arch=s390x\u0026epoch=32" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "product": { "name": "bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "product_id": "bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-doc@9.16.23-0.9.el8.1?arch=noarch\u0026epoch=32" } } }, { "category": "product_version", "name": "python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "product": { "name": "python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "product_id": "python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/python3-bind9.16@9.16.23-0.9.el8.1?arch=noarch\u0026epoch=32" } } }, { "category": "product_version", "name": "bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "product": { "name": "bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "product_id": "bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16-license@9.16.23-0.9.el8.1?arch=noarch\u0026epoch=32" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "bind9.16-32:9.16.23-0.9.el8.1.src", "product": { "name": "bind9.16-32:9.16.23-0.9.el8.1.src", "product_id": "bind9.16-32:9.16.23-0.9.el8.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind9.16@9.16.23-0.9.el8.1?arch=src\u0026epoch=32" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.src", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-doc-32:9.16.23-0.9.el8.1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch" }, "product_reference": "bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-license-32:9.16.23-0.9.el8.1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch" }, "product_reference": "bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "python3-bind9.16-32:9.16.23-0.9.el8.1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" }, "product_reference": "python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "relates_to_product_reference": "AppStream-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.src", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-doc-32:9.16.23-0.9.el8.1.noarch as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch" }, "product_reference": "bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-license-32:9.16.23-0.9.el8.1.noarch as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch" }, "product_reference": "bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64" }, "product_reference": "bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "relates_to_product_reference": "CRB-8.7.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "python3-bind9.16-32:9.16.23-0.9.el8.1.noarch as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" }, "product_reference": "python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "relates_to_product_reference": "CRB-8.7.0.GA" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Baojun Liu", "Chaoyi Lu", "Xiang Li" ], "organization": "Network and Information Security Lab, Tsinghua University", "summary": "Acknowledged by upstream." }, { "names": [ "Changgen Zou" ], "organization": "Qi An Xin Group Corp", "summary": "Acknowledged by upstream." } ], "cve": "CVE-2021-25220", "cwe": { "id": "CWE-444", "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)" }, "discovery_date": "2022-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2064512" } ], "notes": [ { "category": "description", "text": "A cache poisoning vulnerability was found in BIND when using forwarders. Bogus NS records supplied by the forwarders may be cached and used by name if it needs to recurse for any reason. This issue causes it to obtain and pass on potentially incorrect answers. This flaw allows a remote high privileged attacker to manipulate cache results with incorrect records, leading to queries made to the wrong servers, possibly resulting in false information received on the client\u0027s end.", "title": "Vulnerability description" }, { "category": "summary", "text": "bind: DNS forwarders - cache poisoning vulnerability", "title": "Vulnerability summary" }, { "category": "other", "text": "Versions of BIND shipped with Red Hat Enterprise Linux 8, 9 are affected, because vulnerable code is present in our code base.\n\nFor RHEL-9, DHCP uses the vulnerable BIND 9 libraries (bind-9.11.14) for some services. Hence, it is affected as well.\n\nAuthoritative - Only BIND 9 servers are not vulnerable to this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-25220" }, { "category": "external", "summary": "RHBZ#2064512", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064512" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-25220", "url": "https://www.cve.org/CVERecord?id=CVE-2021-25220" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-25220", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-25220" }, { "category": "external", "summary": "https://kb.isc.org/docs/CVE-2021-25220", "url": "https://kb.isc.org/docs/CVE-2021-25220" } ], "release_date": "2022-03-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-11-08T09:31:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:7643" }, { "category": "workaround", "details": "If applicable, modify your configuration to either remove all forwarding or all possibility of recursion. Depending on your use case, it may be possible to use other zone types to replace forward zones.", "product_ids": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N", "version": "3.1" }, "products": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "bind: DNS forwarders - cache poisoning vulnerability" }, { "cve": "CVE-2022-0396", "cwe": { "id": "CWE-459", "name": "Incomplete Cleanup" }, "discovery_date": "2022-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2064513" } ], "notes": [ { "category": "description", "text": "A flaw was found in Bind that incorrectly handles certain crafted TCP streams. The vulnerability allows TCP connection slots to be consumed for an indefinite time frame via a specifically crafted TCP stream sent from a client. This flaw allows a remote attacker to send specially crafted TCP streams with \u0027keep-response-order\u0027 enabled that could cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period, even after the client has terminated the connection. This issue results in BIND consuming resources, leading to a denial of service.", "title": "Vulnerability description" }, { "category": "summary", "text": "bind: DoS from specifically crafted TCP packets", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue can only be triggered on BIND servers that have the keep-response-order enabled, which is not the default configuration. The keep-response-order option is an ACL block; any hosts which are specified within it will be able to trigger this issue on affected versions. \n\nOnly the BIND9.16 package in RHEL-8 and the BIND package in RHEL-9 are affected, because of the presence of vulnerable code in our codebase.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-0396" }, { "category": "external", "summary": "RHBZ#2064513", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064513" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-0396", "url": "https://www.cve.org/CVERecord?id=CVE-2022-0396" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0396", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0396" }, { "category": "external", "summary": "https://kb.isc.org/docs/cve-2022-0396", "url": "https://kb.isc.org/docs/cve-2022-0396" } ], "release_date": "2022-03-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-11-08T09:31:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:7643" }, { "category": "workaround", "details": "To mitigate this issue in all affected versions of BIND, use the default setting of :\n~~~\n keep-response-order { none; }\n~~~", "product_ids": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" }, "products": [ "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "AppStream-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "AppStream-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "AppStream-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.src", "CRB-8.7.0.GA:bind9.16-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-chroot-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-debugsource-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-devel-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-dnssec-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-doc-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-libs-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-license-32:9.16.23-0.9.el8.1.noarch", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.aarch64", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.i686", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.ppc64le", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.s390x", "CRB-8.7.0.GA:bind9.16-utils-debuginfo-32:9.16.23-0.9.el8.1.x86_64", "CRB-8.7.0.GA:python3-bind9.16-32:9.16.23-0.9.el8.1.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "bind: DoS from specifically crafted TCP packets" } ] }
rhsa-2022_8068
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for bind is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.\n\nSecurity Fix(es):\n\n* bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220)\n\n* bind: DoS from specifically crafted TCP packets (CVE-2022-0396)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2022:8068", "url": "https://access.redhat.com/errata/RHSA-2022:8068" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.1_release_notes/index", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.1_release_notes/index" }, { "category": "external", "summary": "2064512", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064512" }, { "category": "external", "summary": "2064513", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064513" }, { "category": "external", "summary": "2104863", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2104863" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_8068.json" } ], "title": "Red Hat Security Advisory: bind security update", "tracking": { "current_release_date": "2024-11-22T19:14:16+00:00", "generator": { "date": "2024-11-22T19:14:16+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2022:8068", "initial_release_date": "2022-11-15T13:27:28+00:00", "revision_history": [ { "date": "2022-11-15T13:27:28+00:00", "number": "1", "summary": "Initial version" }, { "date": "2022-11-15T13:27:28+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T19:14:16+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder (v. 9)", "product": { "name": "Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "bind-32:9.16.23-5.el9_1.src", "product": { "name": "bind-32:9.16.23-5.el9_1.src", "product_id": "bind-32:9.16.23-5.el9_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind@9.16.23-5.el9_1?arch=src\u0026epoch=32" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "bind-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-chroot-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-chroot-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-chroot-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-chroot@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-libs-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-libs-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-utils-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-utils-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debugsource-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-debugsource-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-debugsource-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debugsource@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debuginfo@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils-debuginfo@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs-debuginfo@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils-debuginfo@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-devel-32:9.16.23-5.el9_1.aarch64", "product": { "name": "bind-devel-32:9.16.23-5.el9_1.aarch64", "product_id": "bind-devel-32:9.16.23-5.el9_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-devel@9.16.23-5.el9_1?arch=aarch64\u0026epoch=32" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "bind-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-chroot-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-chroot-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-chroot-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-chroot@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-libs-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-libs-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-utils-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-utils-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debugsource@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debuginfo@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils-debuginfo@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs-debuginfo@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils-debuginfo@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-devel-32:9.16.23-5.el9_1.ppc64le", "product": { "name": "bind-devel-32:9.16.23-5.el9_1.ppc64le", "product_id": "bind-devel-32:9.16.23-5.el9_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-devel@9.16.23-5.el9_1?arch=ppc64le\u0026epoch=32" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "bind-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-chroot-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-chroot-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-chroot-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-chroot@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-libs-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-libs-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-utils-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-utils-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debugsource-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-debugsource-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-debugsource-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debugsource@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debuginfo@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils-debuginfo@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs-debuginfo@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils-debuginfo@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-devel-32:9.16.23-5.el9_1.x86_64", "product": { "name": "bind-devel-32:9.16.23-5.el9_1.x86_64", "product_id": "bind-devel-32:9.16.23-5.el9_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-devel@9.16.23-5.el9_1?arch=x86_64\u0026epoch=32" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "bind-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-32:9.16.23-5.el9_1.s390x", "product_id": "bind-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-chroot-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-chroot-32:9.16.23-5.el9_1.s390x", "product_id": "bind-chroot-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-chroot@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "product_id": "bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-libs-32:9.16.23-5.el9_1.s390x", "product_id": "bind-libs-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-utils-32:9.16.23-5.el9_1.s390x", "product_id": "bind-utils-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debugsource-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-debugsource-32:9.16.23-5.el9_1.s390x", "product_id": "bind-debugsource-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debugsource@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debuginfo-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.s390x", "product_id": "bind-debuginfo-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debuginfo@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "product_id": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils-debuginfo@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "product_id": "bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs-debuginfo@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "product_id": "bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils-debuginfo@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-devel-32:9.16.23-5.el9_1.s390x", "product": { "name": "bind-devel-32:9.16.23-5.el9_1.s390x", "product_id": "bind-devel-32:9.16.23-5.el9_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-devel@9.16.23-5.el9_1?arch=s390x\u0026epoch=32" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "product": { "name": "bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "product_id": "bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-doc@9.16.23-5.el9_1?arch=noarch\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-license-32:9.16.23-5.el9_1.noarch", "product": { "name": "bind-license-32:9.16.23-5.el9_1.noarch", "product_id": "bind-license-32:9.16.23-5.el9_1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-license@9.16.23-5.el9_1?arch=noarch\u0026epoch=32" } } }, { "category": "product_version", "name": "python3-bind-32:9.16.23-5.el9_1.noarch", "product": { "name": "python3-bind-32:9.16.23-5.el9_1.noarch", "product_id": "python3-bind-32:9.16.23-5.el9_1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/python3-bind@9.16.23-5.el9_1?arch=noarch\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-doc-32:9.16.23-5.el9_1.noarch", "product": { "name": "bind-doc-32:9.16.23-5.el9_1.noarch", "product_id": "bind-doc-32:9.16.23-5.el9_1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-doc@9.16.23-5.el9_1?arch=noarch\u0026epoch=32" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "bind-devel-32:9.16.23-5.el9_1.i686", "product": { "name": "bind-devel-32:9.16.23-5.el9_1.i686", "product_id": "bind-devel-32:9.16.23-5.el9_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-devel@9.16.23-5.el9_1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-32:9.16.23-5.el9_1.i686", "product": { "name": "bind-libs-32:9.16.23-5.el9_1.i686", "product_id": "bind-libs-32:9.16.23-5.el9_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs@9.16.23-5.el9_1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debugsource-32:9.16.23-5.el9_1.i686", "product": { "name": "bind-debugsource-32:9.16.23-5.el9_1.i686", "product_id": "bind-debugsource-32:9.16.23-5.el9_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debugsource@9.16.23-5.el9_1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-debuginfo-32:9.16.23-5.el9_1.i686", "product": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.i686", "product_id": "bind-debuginfo-32:9.16.23-5.el9_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-debuginfo@9.16.23-5.el9_1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "product": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "product_id": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-dnssec-utils-debuginfo@9.16.23-5.el9_1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "product": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "product_id": "bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-libs-debuginfo@9.16.23-5.el9_1?arch=i686\u0026epoch=32" } } }, { "category": "product_version", "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "product": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "product_id": "bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/bind-utils-debuginfo@9.16.23-5.el9_1?arch=i686\u0026epoch=32" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src" }, "product_reference": "bind-32:9.16.23-5.el9_1.src", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-doc-32:9.16.23-5.el9_1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch" }, "product_reference": "bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-doc-32:9.16.23-5.el9_1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch" }, "product_reference": "bind-doc-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-license-32:9.16.23-5.el9_1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch" }, "product_reference": "bind-license-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "python3-bind-32:9.16.23-5.el9_1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" }, "product_reference": "python3-bind-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "AppStream-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.src as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src" }, "product_reference": "bind-32:9.16.23-5.el9_1.src", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-chroot-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-chroot-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-debugsource-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-debugsource-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-devel-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-devel-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-doc-32:9.16.23-5.el9_1.noarch as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch" }, "product_reference": "bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-doc-32:9.16.23-5.el9_1.noarch as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch" }, "product_reference": "bind-doc-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-libs-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-license-32:9.16.23-5.el9_1.noarch as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch" }, "product_reference": "bind-license-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-utils-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64" }, "product_reference": "bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "relates_to_product_reference": "CRB-9.1.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "python3-bind-32:9.16.23-5.el9_1.noarch as a component of Red Hat CodeReady Linux Builder (v. 9)", "product_id": "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" }, "product_reference": "python3-bind-32:9.16.23-5.el9_1.noarch", "relates_to_product_reference": "CRB-9.1.0.GA" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Baojun Liu", "Chaoyi Lu", "Xiang Li" ], "organization": "Network and Information Security Lab, Tsinghua University", "summary": "Acknowledged by upstream." }, { "names": [ "Changgen Zou" ], "organization": "Qi An Xin Group Corp", "summary": "Acknowledged by upstream." } ], "cve": "CVE-2021-25220", "cwe": { "id": "CWE-444", "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)" }, "discovery_date": "2022-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2064512" } ], "notes": [ { "category": "description", "text": "A cache poisoning vulnerability was found in BIND when using forwarders. Bogus NS records supplied by the forwarders may be cached and used by name if it needs to recurse for any reason. This issue causes it to obtain and pass on potentially incorrect answers. This flaw allows a remote high privileged attacker to manipulate cache results with incorrect records, leading to queries made to the wrong servers, possibly resulting in false information received on the client\u0027s end.", "title": "Vulnerability description" }, { "category": "summary", "text": "bind: DNS forwarders - cache poisoning vulnerability", "title": "Vulnerability summary" }, { "category": "other", "text": "Versions of BIND shipped with Red Hat Enterprise Linux 8, 9 are affected, because vulnerable code is present in our code base.\n\nFor RHEL-9, DHCP uses the vulnerable BIND 9 libraries (bind-9.11.14) for some services. Hence, it is affected as well.\n\nAuthoritative - Only BIND 9 servers are not vulnerable to this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-25220" }, { "category": "external", "summary": "RHBZ#2064512", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064512" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-25220", "url": "https://www.cve.org/CVERecord?id=CVE-2021-25220" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-25220", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-25220" }, { "category": "external", "summary": "https://kb.isc.org/docs/CVE-2021-25220", "url": "https://kb.isc.org/docs/CVE-2021-25220" } ], "release_date": "2022-03-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-11-15T13:27:28+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, the BIND daemon (named) will be restarted automatically.", "product_ids": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:8068" }, { "category": "workaround", "details": "If applicable, modify your configuration to either remove all forwarding or all possibility of recursion. Depending on your use case, it may be possible to use other zone types to replace forward zones.", "product_ids": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N", "version": "3.1" }, "products": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "bind: DNS forwarders - cache poisoning vulnerability" }, { "cve": "CVE-2022-0396", "cwe": { "id": "CWE-459", "name": "Incomplete Cleanup" }, "discovery_date": "2022-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2064513" } ], "notes": [ { "category": "description", "text": "A flaw was found in Bind that incorrectly handles certain crafted TCP streams. The vulnerability allows TCP connection slots to be consumed for an indefinite time frame via a specifically crafted TCP stream sent from a client. This flaw allows a remote attacker to send specially crafted TCP streams with \u0027keep-response-order\u0027 enabled that could cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period, even after the client has terminated the connection. This issue results in BIND consuming resources, leading to a denial of service.", "title": "Vulnerability description" }, { "category": "summary", "text": "bind: DoS from specifically crafted TCP packets", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue can only be triggered on BIND servers that have the keep-response-order enabled, which is not the default configuration. The keep-response-order option is an ACL block; any hosts which are specified within it will be able to trigger this issue on affected versions. \n\nOnly the BIND9.16 package in RHEL-8 and the BIND package in RHEL-9 are affected, because of the presence of vulnerable code in our codebase.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-0396" }, { "category": "external", "summary": "RHBZ#2064513", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064513" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-0396", "url": "https://www.cve.org/CVERecord?id=CVE-2022-0396" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0396", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0396" }, { "category": "external", "summary": "https://kb.isc.org/docs/cve-2022-0396", "url": "https://kb.isc.org/docs/cve-2022-0396" } ], "release_date": "2022-03-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-11-15T13:27:28+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, the BIND daemon (named) will be restarted automatically.", "product_ids": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:8068" }, { "category": "workaround", "details": "To mitigate this issue in all affected versions of BIND, use the default setting of :\n~~~\n keep-response-order { none; }\n~~~", "product_ids": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" }, "products": [ "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "AppStream-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "AppStream-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "AppStream-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.src", "CRB-9.1.0.GA:bind-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-chroot-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-debugsource-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-devel-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-dnssec-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-doc-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-libs-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-license-32:9.16.23-5.el9_1.noarch", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.aarch64", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.i686", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.ppc64le", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.s390x", "CRB-9.1.0.GA:bind-utils-debuginfo-32:9.16.23-5.el9_1.x86_64", "CRB-9.1.0.GA:python3-bind-32:9.16.23-5.el9_1.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "bind: DoS from specifically crafted TCP packets" } ] }
var-202203-0665
Vulnerability from variot
BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection. BIND , even after the client closes the connection. Bogus NS records supplied by the forwarders may be cached and used by name if it needs to recurse for any reason. This issue causes it to obtain and pass on potentially incorrect answers. This flaw allows a remote malicious user to manipulate cache results with incorrect records, leading to queries made to the wrong servers, possibly resulting in false information received on the client's end. This issue results in BIND consuming resources, leading to a denial of service. (CVE-2022-0396). ========================================================================== Ubuntu Security Notice USN-5332-1 March 17, 2022
bind9 vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 21.10
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
Summary:
Several security issues were fixed in Bind.
Software Description: - bind9: Internet Domain Name Server
Details:
Xiang Li, Baojun Liu, Chaoyi Lu, and Changgen Zou discovered that Bind incorrectly handled certain bogus NS records when using forwarders. A remote attacker could possibly use this issue to manipulate cache results. This issue only affected Ubuntu 21.10. (CVE-2022-0396)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 21.10: bind9 1:9.16.15-1ubuntu1.2
Ubuntu 20.04 LTS: bind9 1:9.16.1-0ubuntu2.10
Ubuntu 18.04 LTS: bind9 1:9.11.3+dfsg-1ubuntu1.17
In general, a standard system update will make all the necessary changes.
For the oldstable distribution (buster), this problem has been fixed in version 1:9.11.5.P4+dfsg-5.1+deb10u7.
For the stable distribution (bullseye), this problem has been fixed in version 1:9.16.27-1~deb11u1.
We recommend that you upgrade your bind9 packages.
For the detailed security status of bind9 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/bind9
Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmI010UACgkQEMKTtsN8 Tjbp3xAAil38qfAIdNkaIxY2bauvTyZDWzr6KUjph0vzmLEoAFQ3bysVSGlCnZk9 IgdyfPRWQ+Bjau1/dlhNYaTlnQajbeyvCXfJcjRRgtUDCp7abZcOcb1WDu8jWLGW iRtKsvKKrTKkIou5LgDlyqZyf6OzjgRdwtm86GDPQiCaSEpmbRt+APj5tkIA9R1G ELWuZsjbIraBU0TsNfOalgNpAWtSBayxKtWB69J8rxUV69JI194A4AJ0wm9SPpFV G/TzlyHp1dUZJRLNmZOZU/dq4pPsXzh9I4QCg1kJWsVHe2ycAJKho6hr5iy43fNl MuokfI9YnU6/9SjHrQAWp1X/6MYCR8NieJ933W89/Zb8eTjTZC8EQGo6fkA287G8 glQOrJHMQyV+b97lT67+ioTHNzTEBXTih7ZDeC1TlLqypCNYhRF/ll0Hx/oeiJFU rbjh2Og9huhD5JH8z8YAvY2g81e7KdPxazuKJnQpxGutqddCuwBvyI9fovYrah9W bYD6rskLZM2x90RI2LszHisl6FV5k37PaczamlRqGgbbMb9YlnDFjJUbM8rZZgD4 +8u/AkHq2+11pTtZ40NYt1gpdidmIC/gzzha2TfZCHMs44KPMMdH+Fid1Kc6/Cq8 QygtL4M387J9HXUrlN7NDUOrDVuVqfBG+ve3i9GCZzYjwtajTAQ= =6st2 -----END PGP SIGNATURE----- . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202210-25
https://security.gentoo.org/
Severity: Low Title: ISC BIND: Multiple Vulnerabilities Date: October 31, 2022 Bugs: #820563, #835439, #872206 ID: 202210-25
Synopsis
Multiple vulnerabilities have been discovered in ISC BIND, the worst of which could result in denial of service.
Affected packages
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-dns/bind < 9.16.33 >= 9.16.33 2 net-dns/bind-tools < 9.16.33 >= 9.16.33
Description
Multiple vulnerabilities have been discovered in ISC BIND. Please review the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All ISC BIND users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/bind-9.16.33"
All ISC BIND-tools users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/bind-tools-9.16.33"
References
[ 1 ] CVE-2021-25219 https://nvd.nist.gov/vuln/detail/CVE-2021-25219 [ 2 ] CVE-2021-25220 https://nvd.nist.gov/vuln/detail/CVE-2021-25220 [ 3 ] CVE-2022-0396 https://nvd.nist.gov/vuln/detail/CVE-2022-0396 [ 4 ] CVE-2022-2795 https://nvd.nist.gov/vuln/detail/CVE-2022-2795 [ 5 ] CVE-2022-2881 https://nvd.nist.gov/vuln/detail/CVE-2022-2881 [ 6 ] CVE-2022-2906 https://nvd.nist.gov/vuln/detail/CVE-2022-2906 [ 7 ] CVE-2022-3080 https://nvd.nist.gov/vuln/detail/CVE-2022-3080 [ 8 ] CVE-2022-38177 https://nvd.nist.gov/vuln/detail/CVE-2022-38177 [ 9 ] CVE-2022-38178 https://nvd.nist.gov/vuln/detail/CVE-2022-38178
Availability
This GLSA and any updates to it are available for viewing at the Gentoo Security Website:
https://security.gentoo.org/glsa/202210-25
Concerns?
Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.
License
Copyright 2022 Gentoo Foundation, Inc; referenced text belongs to its owner(s).
The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.
https://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
====================================================================
Red Hat Security Advisory
Synopsis: Moderate: bind security update Advisory ID: RHSA-2022:8068-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:8068 Issue date: 2022-11-15 CVE Names: CVE-2021-25220 CVE-2022-0396 ==================================================================== 1. Summary:
An update for bind is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
- Relevant releases/architectures:
Red Hat CodeReady Linux Builder (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64 Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64
- Description:
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
-
bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220)
-
bind: DoS from specifically crafted TCP packets (CVE-2022-0396)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.
- Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing the update, the BIND daemon (named) will be restarted automatically.
- Bugs fixed (https://bugzilla.redhat.com/):
2064512 - CVE-2021-25220 bind: DNS forwarders - cache poisoning vulnerability 2064513 - CVE-2022-0396 bind: DoS from specifically crafted TCP packets 2104863 - bind-doc is not shipped to public
- Package List:
Red Hat Enterprise Linux AppStream (v. 9):
Source: bind-9.16.23-5.el9_1.src.rpm
aarch64: bind-9.16.23-5.el9_1.aarch64.rpm bind-chroot-9.16.23-5.el9_1.aarch64.rpm bind-debuginfo-9.16.23-5.el9_1.aarch64.rpm bind-debugsource-9.16.23-5.el9_1.aarch64.rpm bind-dnssec-utils-9.16.23-5.el9_1.aarch64.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm bind-libs-9.16.23-5.el9_1.aarch64.rpm bind-libs-debuginfo-9.16.23-5.el9_1.aarch64.rpm bind-utils-9.16.23-5.el9_1.aarch64.rpm bind-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm
noarch: bind-dnssec-doc-9.16.23-5.el9_1.noarch.rpm bind-license-9.16.23-5.el9_1.noarch.rpm python3-bind-9.16.23-5.el9_1.noarch.rpm
ppc64le: bind-9.16.23-5.el9_1.ppc64le.rpm bind-chroot-9.16.23-5.el9_1.ppc64le.rpm bind-debuginfo-9.16.23-5.el9_1.ppc64le.rpm bind-debugsource-9.16.23-5.el9_1.ppc64le.rpm bind-dnssec-utils-9.16.23-5.el9_1.ppc64le.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm bind-libs-9.16.23-5.el9_1.ppc64le.rpm bind-libs-debuginfo-9.16.23-5.el9_1.ppc64le.rpm bind-utils-9.16.23-5.el9_1.ppc64le.rpm bind-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm
s390x: bind-9.16.23-5.el9_1.s390x.rpm bind-chroot-9.16.23-5.el9_1.s390x.rpm bind-debuginfo-9.16.23-5.el9_1.s390x.rpm bind-debugsource-9.16.23-5.el9_1.s390x.rpm bind-dnssec-utils-9.16.23-5.el9_1.s390x.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm bind-libs-9.16.23-5.el9_1.s390x.rpm bind-libs-debuginfo-9.16.23-5.el9_1.s390x.rpm bind-utils-9.16.23-5.el9_1.s390x.rpm bind-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm
x86_64: bind-9.16.23-5.el9_1.x86_64.rpm bind-chroot-9.16.23-5.el9_1.x86_64.rpm bind-debuginfo-9.16.23-5.el9_1.x86_64.rpm bind-debugsource-9.16.23-5.el9_1.x86_64.rpm bind-dnssec-utils-9.16.23-5.el9_1.x86_64.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm bind-libs-9.16.23-5.el9_1.x86_64.rpm bind-libs-debuginfo-9.16.23-5.el9_1.x86_64.rpm bind-utils-9.16.23-5.el9_1.x86_64.rpm bind-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm
Red Hat CodeReady Linux Builder (v. 9):
aarch64: bind-debuginfo-9.16.23-5.el9_1.aarch64.rpm bind-debugsource-9.16.23-5.el9_1.aarch64.rpm bind-devel-9.16.23-5.el9_1.aarch64.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm bind-libs-debuginfo-9.16.23-5.el9_1.aarch64.rpm bind-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm
noarch: bind-doc-9.16.23-5.el9_1.noarch.rpm
ppc64le: bind-debuginfo-9.16.23-5.el9_1.ppc64le.rpm bind-debugsource-9.16.23-5.el9_1.ppc64le.rpm bind-devel-9.16.23-5.el9_1.ppc64le.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm bind-libs-debuginfo-9.16.23-5.el9_1.ppc64le.rpm bind-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm
s390x: bind-debuginfo-9.16.23-5.el9_1.s390x.rpm bind-debugsource-9.16.23-5.el9_1.s390x.rpm bind-devel-9.16.23-5.el9_1.s390x.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm bind-libs-debuginfo-9.16.23-5.el9_1.s390x.rpm bind-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm
x86_64: bind-debuginfo-9.16.23-5.el9_1.i686.rpm bind-debuginfo-9.16.23-5.el9_1.x86_64.rpm bind-debugsource-9.16.23-5.el9_1.i686.rpm bind-debugsource-9.16.23-5.el9_1.x86_64.rpm bind-devel-9.16.23-5.el9_1.i686.rpm bind-devel-9.16.23-5.el9_1.x86_64.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.i686.rpm bind-dnssec-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm bind-libs-9.16.23-5.el9_1.i686.rpm bind-libs-debuginfo-9.16.23-5.el9_1.i686.rpm bind-libs-debuginfo-9.16.23-5.el9_1.x86_64.rpm bind-utils-debuginfo-9.16.23-5.el9_1.i686.rpm bind-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/
- References:
https://access.redhat.com/security/cve/CVE-2021-25220 https://access.redhat.com/security/cve/CVE-2022-0396 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.1_release_notes/index
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQIVAwUBY3PhLdzjgjWX9erEAQhVSw/9HlIwMZZuRgTsbY2yARvJ+sRk08hViRo6 ++sV0vMtt3ym5eQES1al4uwAFbVH3B+EZLVuox02PnKVvIM35QnzVFxSa24HToTp l3tl+c9QnDwx3VGceX9og5o/ezSKqT8UeMQF/gamcB5kwGbbeb+Gp7cpSyXsmjB1 h418DMq/BBE1kLx2MAmIAn/r8x8ISsRbk3j96VEtLrQDtbSKCrE7jmQMaGRB4NhK 4pcgEdcVC6mpBIBRSoLqSVvY9cEdbWqB2LBKArSic/GS2RFfXiSTbPP+kHhd8WHF 0pHQpQa2CXqWuoyrk4cmlvyqmp+C1oCuwsjUWm3dIouIpLU3P1PH3Xua+DMcHfNl z3wW5E8hihVQ7taw/c6jKMlIrPVzdNM7zfdqV4PBoMQ6y6nPDP23wNGIBMIArjO/ n841K1Lzp1vrChLKgtYOK4H/s6Fbtb/+fe6Q5wOVPPEeksfoKzjJjZj/J7J+RymH Bd6n+f9iMQzOkj9zb6cgrvt2aLcr29XHfcCRH81i/CEPAEFGT86qOXqIZO0+qV/u qhHDKy3rLqYsOR4BlwhFhovUGCt8rBJ8LOiZlUTxzNG4PNze4F1hG1d0qzYQv0Iw zfOrgT8NGDmGCt2nwtmy813NDmzVegwrS7w0ayLzpcwcJMVOoO0nKi5kzX1slEyu rbPwX0ROLTo=0klO -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "configurations": { "@id": "https://www.variotdbs.pl/ref/configurations" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-202203-0665", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": "sinec ins", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "1.0" }, { "model": "h500s", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "h410c", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "bind", "scope": "gte", "trust": 1.0, "vendor": "isc", "version": "9.16.11" }, { "model": "fedora", "scope": "eq", "trust": 1.0, "vendor": "fedoraproject", "version": "34" }, { "model": "h500e", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "bind", "scope": "lt", "trust": 1.0, "vendor": "isc", "version": "9.16.27" }, { "model": "h700e", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "sinec ins", "scope": "eq", "trust": 1.0, "vendor": "siemens", "version": "1.0" }, { "model": "h300e", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "h700s", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "h300s", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "bind", "scope": "lte", "trust": 1.0, "vendor": "isc", "version": "9.18.0" }, { "model": "fedora", "scope": "eq", "trust": 1.0, "vendor": "fedoraproject", "version": "35" }, { "model": "h410s", "scope": "eq", "trust": 1.0, "vendor": "netapp", "version": null }, { "model": "bind", "scope": "gte", "trust": 1.0, "vendor": "isc", "version": "9.17.0" }, { "model": "fedora", "scope": "eq", "trust": 1.0, "vendor": "fedoraproject", "version": "36" }, { "model": "bind", "scope": null, "trust": 0.8, "vendor": "isc", "version": null }, { "model": "fedora", "scope": null, "trust": 0.8, "vendor": "fedora", "version": null }, { "model": "esmpro/serveragent", "scope": null, "trust": 0.8, "vendor": "\u65e5\u672c\u96fb\u6c17", "version": null } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "NVD", "id": "CVE-2022-0396" } ] }, "configurations": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", "children": { "@container": "@list" }, "cpe_match": { "@container": "@list" }, "data": { "@container": "@list" }, "nodes": { "@container": "@list" } }, "data": [ { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "9.18.0", "versionStartIncluding": "9.17.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:supported_preview:*:*:*", "cpe_name": [], "versionEndExcluding": "9.16.27", "versionStartIncluding": "9.16.11", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*", "cpe_name": [], "versionEndExcluding": "9.16.27", "versionStartIncluding": "9.16.11", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:siemens:sinec_ins:1.0:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:siemens:sinec_ins:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "1.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:siemens:sinec_ins:1.0:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] } ], "sources": [ { "db": "NVD", "id": "CVE-2022-0396" } ] }, "credits": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Siemens reported these vulnerabilities to CISA.", "sources": [ { "db": "CNNVD", "id": "CNNVD-202203-1543" } ], "trust": 0.6 }, "cve": "CVE-2022-0396", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [ { "acInsufInfo": false, "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "author": "NVD", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "exploitabilityScore": 8.6, "impactScore": 2.9, "integrityImpact": "NONE", "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "trust": 1.0, "userInteractionRequired": false, "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, { "acInsufInfo": null, "accessComplexity": "Medium", "accessVector": "Network", "authentication": "None", "author": "NVD", "availabilityImpact": "Partial", "baseScore": 4.3, "confidentialityImpact": "None", "exploitabilityScore": null, "id": "CVE-2022-0396", "impactScore": null, "integrityImpact": "None", "obtainAllPrivilege": null, "obtainOtherPrivilege": null, "obtainUserPrivilege": null, "severity": "Medium", "trust": 0.9, "userInteractionRequired": null, "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" } ], "cvssV3": [ { "attackComplexity": "LOW", "attackVector": "NETWORK", "author": "NVD", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "exploitabilityScore": 3.9, "impactScore": 1.4, "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "trust": 2.0, "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" }, { "attackComplexity": "Low", "attackVector": "Network", "author": "OTHER", "availabilityImpact": "Low", "baseScore": 5.3, "baseSeverity": "Medium", "confidentialityImpact": "None", "exploitabilityScore": null, "id": "JVNDB-2022-001799", "impactScore": null, "integrityImpact": "None", "privilegesRequired": "None", "scope": "Unchanged", "trust": 0.8, "userInteraction": "None", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" } ], "severity": [ { "author": "NVD", "id": "CVE-2022-0396", "trust": 1.8, "value": "MEDIUM" }, { "author": "security-officer@isc.org", "id": "CVE-2022-0396", "trust": 1.0, "value": "MEDIUM" }, { "author": "CNNVD", "id": "CNNVD-202203-1543", "trust": 0.6, "value": "MEDIUM" }, { "author": "VULMON", "id": "CVE-2022-0396", "trust": 0.1, "value": "MEDIUM" } ] } ], "sources": [ { "db": "VULMON", "id": "CVE-2022-0396" }, { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "CNNVD", "id": "CNNVD-202203-1543" }, { "db": "NVD", "id": "CVE-2022-0396" }, { "db": "NVD", "id": "CVE-2022-0396" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection. BIND , even after the client closes the connection. Bogus NS records supplied by the forwarders may be cached and used by name if it needs to recurse for any reason. This issue causes it to obtain and pass on potentially incorrect answers. This flaw allows a remote malicious user to manipulate cache results with incorrect records, leading to queries made to the wrong servers, possibly resulting in false information received on the client\u0027s end. This issue results in BIND consuming resources, leading to a denial of service. (CVE-2022-0396). ==========================================================================\nUbuntu Security Notice USN-5332-1\nMarch 17, 2022\n\nbind9 vulnerabilities\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 21.10\n- Ubuntu 20.04 LTS\n- Ubuntu 18.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in Bind. \n\nSoftware Description:\n- bind9: Internet Domain Name Server\n\nDetails:\n\nXiang Li, Baojun Liu, Chaoyi Lu, and Changgen Zou discovered that Bind\nincorrectly handled certain bogus NS records when using forwarders. A\nremote attacker could possibly use this issue to manipulate cache results. This issue only affected\nUbuntu 21.10. (CVE-2022-0396)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 21.10:\n bind9 1:9.16.15-1ubuntu1.2\n\nUbuntu 20.04 LTS:\n bind9 1:9.16.1-0ubuntu2.10\n\nUbuntu 18.04 LTS:\n bind9 1:9.11.3+dfsg-1ubuntu1.17\n\nIn general, a standard system update will make all the necessary changes. \n\nFor the oldstable distribution (buster), this problem has been fixed\nin version 1:9.11.5.P4+dfsg-5.1+deb10u7. \n\nFor the stable distribution (bullseye), this problem has been fixed in\nversion 1:9.16.27-1~deb11u1. \n\nWe recommend that you upgrade your bind9 packages. \n\nFor the detailed security status of bind9 please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/bind9\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\nQygtL4M387J9HXUrlN7NDUOrDVuVqfBG+ve3i9GCZzYjwtajTAQ=\n=6st2\n-----END PGP SIGNATURE-----\n. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory GLSA 202210-25\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: Low\n Title: ISC BIND: Multiple Vulnerabilities\n Date: October 31, 2022\n Bugs: #820563, #835439, #872206\n ID: 202210-25\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been discovered in ISC BIND, the worst of\nwhich could result in denial of service. \n\nAffected packages\n=================\n\n -------------------------------------------------------------------\n Package / Vulnerable / Unaffected\n -------------------------------------------------------------------\n 1 net-dns/bind \u003c 9.16.33 \u003e= 9.16.33\n 2 net-dns/bind-tools \u003c 9.16.33 \u003e= 9.16.33\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in ISC BIND. Please review\nthe CVE identifiers referenced below for details. \n\nImpact\n======\n\nPlease review the referenced CVE identifiers for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll ISC BIND users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose \"\u003e=net-dns/bind-9.16.33\"\n\nAll ISC BIND-tools users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose \"\u003e=net-dns/bind-tools-9.16.33\"\n\nReferences\n==========\n\n[ 1 ] CVE-2021-25219\n https://nvd.nist.gov/vuln/detail/CVE-2021-25219\n[ 2 ] CVE-2021-25220\n https://nvd.nist.gov/vuln/detail/CVE-2021-25220\n[ 3 ] CVE-2022-0396\n https://nvd.nist.gov/vuln/detail/CVE-2022-0396\n[ 4 ] CVE-2022-2795\n https://nvd.nist.gov/vuln/detail/CVE-2022-2795\n[ 5 ] CVE-2022-2881\n https://nvd.nist.gov/vuln/detail/CVE-2022-2881\n[ 6 ] CVE-2022-2906\n https://nvd.nist.gov/vuln/detail/CVE-2022-2906\n[ 7 ] CVE-2022-3080\n https://nvd.nist.gov/vuln/detail/CVE-2022-3080\n[ 8 ] CVE-2022-38177\n https://nvd.nist.gov/vuln/detail/CVE-2022-38177\n[ 9 ] CVE-2022-38178\n https://nvd.nist.gov/vuln/detail/CVE-2022-38178\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/202210-25\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2022 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttps://creativecommons.org/licenses/by-sa/2.5\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n==================================================================== \nRed Hat Security Advisory\n\nSynopsis: Moderate: bind security update\nAdvisory ID: RHSA-2022:8068-01\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://access.redhat.com/errata/RHSA-2022:8068\nIssue date: 2022-11-15\nCVE Names: CVE-2021-25220 CVE-2022-0396\n====================================================================\n1. Summary:\n\nAn update for bind is now available for Red Hat Enterprise Linux 9. \n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat CodeReady Linux Builder (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64\n\n3. Description:\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly. \n\nSecurity Fix(es):\n\n* bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220)\n\n* bind: DoS from specifically crafted TCP packets (CVE-2022-0396)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat\nEnterprise Linux 9.1 Release Notes linked from the References section. \n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, the BIND daemon (named) will be restarted\nautomatically. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n2064512 - CVE-2021-25220 bind: DNS forwarders - cache poisoning vulnerability\n2064513 - CVE-2022-0396 bind: DoS from specifically crafted TCP packets\n2104863 - bind-doc is not shipped to public\n\n6. Package List:\n\nRed Hat Enterprise Linux AppStream (v. 9):\n\nSource:\nbind-9.16.23-5.el9_1.src.rpm\n\naarch64:\nbind-9.16.23-5.el9_1.aarch64.rpm\nbind-chroot-9.16.23-5.el9_1.aarch64.rpm\nbind-debuginfo-9.16.23-5.el9_1.aarch64.rpm\nbind-debugsource-9.16.23-5.el9_1.aarch64.rpm\nbind-dnssec-utils-9.16.23-5.el9_1.aarch64.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm\nbind-libs-9.16.23-5.el9_1.aarch64.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.aarch64.rpm\nbind-utils-9.16.23-5.el9_1.aarch64.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm\n\nnoarch:\nbind-dnssec-doc-9.16.23-5.el9_1.noarch.rpm\nbind-license-9.16.23-5.el9_1.noarch.rpm\npython3-bind-9.16.23-5.el9_1.noarch.rpm\n\nppc64le:\nbind-9.16.23-5.el9_1.ppc64le.rpm\nbind-chroot-9.16.23-5.el9_1.ppc64le.rpm\nbind-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\nbind-debugsource-9.16.23-5.el9_1.ppc64le.rpm\nbind-dnssec-utils-9.16.23-5.el9_1.ppc64le.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\nbind-libs-9.16.23-5.el9_1.ppc64le.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\nbind-utils-9.16.23-5.el9_1.ppc64le.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\n\ns390x:\nbind-9.16.23-5.el9_1.s390x.rpm\nbind-chroot-9.16.23-5.el9_1.s390x.rpm\nbind-debuginfo-9.16.23-5.el9_1.s390x.rpm\nbind-debugsource-9.16.23-5.el9_1.s390x.rpm\nbind-dnssec-utils-9.16.23-5.el9_1.s390x.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm\nbind-libs-9.16.23-5.el9_1.s390x.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.s390x.rpm\nbind-utils-9.16.23-5.el9_1.s390x.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm\n\nx86_64:\nbind-9.16.23-5.el9_1.x86_64.rpm\nbind-chroot-9.16.23-5.el9_1.x86_64.rpm\nbind-debuginfo-9.16.23-5.el9_1.x86_64.rpm\nbind-debugsource-9.16.23-5.el9_1.x86_64.rpm\nbind-dnssec-utils-9.16.23-5.el9_1.x86_64.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm\nbind-libs-9.16.23-5.el9_1.x86_64.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.x86_64.rpm\nbind-utils-9.16.23-5.el9_1.x86_64.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm\n\nRed Hat CodeReady Linux Builder (v. 9):\n\naarch64:\nbind-debuginfo-9.16.23-5.el9_1.aarch64.rpm\nbind-debugsource-9.16.23-5.el9_1.aarch64.rpm\nbind-devel-9.16.23-5.el9_1.aarch64.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.aarch64.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.aarch64.rpm\n\nnoarch:\nbind-doc-9.16.23-5.el9_1.noarch.rpm\n\nppc64le:\nbind-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\nbind-debugsource-9.16.23-5.el9_1.ppc64le.rpm\nbind-devel-9.16.23-5.el9_1.ppc64le.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.ppc64le.rpm\n\ns390x:\nbind-debuginfo-9.16.23-5.el9_1.s390x.rpm\nbind-debugsource-9.16.23-5.el9_1.s390x.rpm\nbind-devel-9.16.23-5.el9_1.s390x.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.s390x.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.s390x.rpm\n\nx86_64:\nbind-debuginfo-9.16.23-5.el9_1.i686.rpm\nbind-debuginfo-9.16.23-5.el9_1.x86_64.rpm\nbind-debugsource-9.16.23-5.el9_1.i686.rpm\nbind-debugsource-9.16.23-5.el9_1.x86_64.rpm\nbind-devel-9.16.23-5.el9_1.i686.rpm\nbind-devel-9.16.23-5.el9_1.x86_64.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.i686.rpm\nbind-dnssec-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm\nbind-libs-9.16.23-5.el9_1.i686.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.i686.rpm\nbind-libs-debuginfo-9.16.23-5.el9_1.x86_64.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.i686.rpm\nbind-utils-debuginfo-9.16.23-5.el9_1.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2021-25220\nhttps://access.redhat.com/security/cve/CVE-2022-0396\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.1_release_notes/index\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2022 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nrbPwX0ROLTo=0klO\n-----END PGP SIGNATURE-----\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n", "sources": [ { "db": "NVD", "id": "CVE-2022-0396" }, { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "VULMON", "id": "CVE-2022-0396" }, { "db": "PACKETSTORM", "id": "166354" }, { "db": "PACKETSTORM", "id": "169261" }, { "db": "PACKETSTORM", "id": "169773" }, { "db": "PACKETSTORM", "id": "169587" }, { "db": "PACKETSTORM", "id": "169894" } ], "trust": 2.16 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2022-0396", "trust": 3.8 }, { "db": "SIEMENS", "id": "SSA-637483", "trust": 1.7 }, { "db": "ICS CERT", "id": "ICSA-22-258-05", "trust": 1.5 }, { "db": "JVN", "id": "JVNVU99475301", "trust": 0.8 }, { "db": "JVN", "id": "JVNVU98927070", "trust": 0.8 }, { "db": "JVNDB", "id": "JVNDB-2022-001799", "trust": 0.8 }, { "db": "PACKETSTORM", "id": "166354", "trust": 0.7 }, { "db": "PACKETSTORM", "id": "169773", "trust": 0.7 }, { "db": "PACKETSTORM", "id": "169587", "trust": 0.7 }, { "db": "PACKETSTORM", "id": "169894", "trust": 0.7 }, { "db": "CS-HELP", "id": "SB2022031701", "trust": 0.6 }, { "db": "CS-HELP", "id": "SB2022031728", "trust": 0.6 }, { "db": "CS-HELP", "id": "SB2022041925", "trust": 0.6 }, { "db": "CS-HELP", "id": "SB2022032124", "trust": 0.6 }, { "db": "AUSCERT", "id": "ESB-2022.4616", "trust": 0.6 }, { "db": "AUSCERT", "id": "ESB-2022.1149", "trust": 0.6 }, { "db": "AUSCERT", "id": "ESB-2022.1180", "trust": 0.6 }, { "db": "AUSCERT", "id": "ESB-2022.5750", "trust": 0.6 }, { "db": "AUSCERT", "id": "ESB-2022.1719", "trust": 0.6 }, { "db": "AUSCERT", "id": "ESB-2022.1160", "trust": 0.6 }, { "db": "CNNVD", "id": "CNNVD-202203-1543", "trust": 0.6 }, { "db": "VULMON", "id": "CVE-2022-0396", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "169261", "trust": 0.1 } ], "sources": [ { "db": "VULMON", "id": "CVE-2022-0396" }, { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "PACKETSTORM", "id": "166354" }, { "db": "PACKETSTORM", "id": "169261" }, { "db": "PACKETSTORM", "id": "169773" }, { "db": "PACKETSTORM", "id": "169587" }, { "db": "PACKETSTORM", "id": "169894" }, { "db": "CNNVD", "id": "CNNVD-202203-1543" }, { "db": "NVD", "id": "CVE-2022-0396" } ] }, "id": "VAR-202203-0665", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "VARIoT devices database", "id": null } ], "trust": 0.20766129 }, "last_update_date": "2024-01-21T20:07:11.050000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "DoS\u00a0from\u00a0specifically\u00a0crafted\u00a0TCP\u00a0packets NEC NEC Product security information", "trust": 0.8, "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/nyd7us4hzrfugaj66zthfbyvp5n3oqby/" }, { "title": "ISC BIND Remediation of resource management error vulnerabilities", "trust": 0.6, "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=186055" }, { "title": "Ubuntu Security Notice: USN-5332-1: Bind vulnerabilities", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-5332-1" }, { "title": "Red Hat: Moderate: bind security update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20228068 - security advisory" }, { "title": "Debian Security Advisories: DSA-5105-1 bind9 -- security update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=16d84b908a424f50b3236db9219500e3" }, { "title": "Arch Linux Advisories: [ASA-202204-5] bind: denial of service", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_advisories\u0026qid=asa-202204-5" }, { "title": "Arch Linux Issues: ", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=cve-2022-0396" }, { "title": "Amazon Linux 2022: ALAS2022-2022-166", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2022\u0026qid=alas2022-2022-166" }, { "title": "Amazon Linux 2022: ALAS2022-2022-138", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2022\u0026qid=alas2022-2022-138" } ], "sources": [ { "db": "VULMON", "id": "CVE-2022-0396" }, { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "CNNVD", "id": "CNNVD-202203-1543" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "CWE-404", "trust": 1.0 }, { "problemtype": "Improper shutdown and release of resources (CWE-404) [NVD evaluation ]", "trust": 0.8 } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "NVD", "id": "CVE-2022-0396" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 1.8, "url": "https://kb.isc.org/v1/docs/cve-2022-0396" }, { "trust": 1.8, "url": "https://security.gentoo.org/glsa/202210-25" }, { "trust": 1.7, "url": "https://security.netapp.com/advisory/ntap-20220408-0001/" }, { "trust": 1.7, "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "trust": 1.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0396" }, { "trust": 1.0, "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/nyd7us4hzrfugaj66zthfbyvp5n3oqby/" }, { "trust": 0.9, "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-258-05" }, { "trust": 0.8, "url": "http://jvn.jp/vu/jvnvu98927070/index.html" }, { "trust": 0.8, "url": "https://jvn.jp/vu/jvnvu99475301/" }, { "trust": 0.8, "url": "https://access.redhat.com/security/cve/cve-2022-0396" }, { "trust": 0.7, "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/nyd7us4hzrfugaj66zthfbyvp5n3oqby/" }, { "trust": 0.6, "url": "https://cxsecurity.com/cveshow/cve-2022-0396/" }, { "trust": 0.6, "url": "https://www.auscert.org.au/bulletins/esb-2022.4616" }, { "trust": 0.6, "url": "https://packetstormsecurity.com/files/166354/ubuntu-security-notice-usn-5332-1.html" }, { "trust": 0.6, "url": "https://packetstormsecurity.com/files/169894/red-hat-security-advisory-2022-8068-01.html" }, { "trust": 0.6, "url": "https://vigilance.fr/vulnerability/isc-bind-denial-of-service-via-keep-response-order-tcp-connection-slots-37817" }, { "trust": 0.6, "url": "https://www.cybersecurity-help.cz/vdb/sb2022031728" }, { "trust": 0.6, "url": "https://www.auscert.org.au/bulletins/esb-2022.1160" }, { "trust": 0.6, "url": "https://packetstormsecurity.com/files/169773/red-hat-security-advisory-2022-7643-01.html" }, { "trust": 0.6, "url": "https://www.auscert.org.au/bulletins/esb-2022.1180" }, { "trust": 0.6, "url": "https://packetstormsecurity.com/files/169587/gentoo-linux-security-advisory-202210-25.html" }, { "trust": 0.6, "url": "https://www.cybersecurity-help.cz/vdb/sb2022041925" }, { "trust": 0.6, "url": "https://www.auscert.org.au/bulletins/esb-2022.1719" }, { "trust": 0.6, "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-258-05" }, { "trust": 0.6, "url": "https://www.auscert.org.au/bulletins/esb-2022.5750" }, { "trust": 0.6, "url": "https://www.cybersecurity-help.cz/vdb/sb2022031701" }, { "trust": 0.6, "url": "https://www.cybersecurity-help.cz/vdb/sb2022032124" }, { "trust": 0.6, "url": "https://www.auscert.org.au/bulletins/esb-2022.1149" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25220" }, { "trust": 0.2, "url": "https://ubuntu.com/security/notices/usn-5332-1" }, { "trust": 0.2, "url": "https://access.redhat.com/security/cve/cve-2021-25220" }, { "trust": 0.2, "url": "https://access.redhat.com/security/team/contact/" }, { "trust": 0.2, "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce" }, { "trust": 0.2, "url": "https://access.redhat.com/security/team/key/" }, { "trust": 0.2, "url": "https://access.redhat.com/articles/11258" }, { "trust": 0.2, "url": "https://bugzilla.redhat.com/):" }, { "trust": 0.1, "url": "https://cwe.mitre.org/data/definitions/404.html" }, { "trust": 0.1, "url": "https://www.debian.org/security/2022/dsa-5105" }, { "trust": 0.1, "url": "https://nvd.nist.gov" }, { "trust": 0.1, "url": "https://alas.aws.amazon.com/al2022/alas-2022-166.html" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/bind9/1:9.16.1-0ubuntu2.10" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/bind9/1:9.16.15-1ubuntu1.2" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/bind9/1:9.11.3+dfsg-1ubuntu1.17" }, { "trust": 0.1, "url": "https://www.debian.org/security/faq" }, { "trust": 0.1, "url": "https://security-tracker.debian.org/tracker/bind9" }, { "trust": 0.1, "url": "https://www.debian.org/security/" }, { "trust": 0.1, "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index" }, { "trust": 0.1, "url": "https://access.redhat.com/errata/rhsa-2022:7643" }, { "trust": 0.1, "url": "https://access.redhat.com/security/updates/classification/#important" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-38178" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-2906" }, { "trust": 0.1, "url": "https://bugs.gentoo.org." }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-2881" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-2795" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25219" }, { "trust": 0.1, "url": "https://security.gentoo.org/" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-3080" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-38177" }, { "trust": 0.1, "url": "https://creativecommons.org/licenses/by-sa/2.5" }, { "trust": 0.1, "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "trust": 0.1, "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.1_release_notes/index" }, { "trust": 0.1, "url": "https://access.redhat.com/errata/rhsa-2022:8068" } ], "sources": [ { "db": "VULMON", "id": "CVE-2022-0396" }, { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "PACKETSTORM", "id": "166354" }, { "db": "PACKETSTORM", "id": "169261" }, { "db": "PACKETSTORM", "id": "169773" }, { "db": "PACKETSTORM", "id": "169587" }, { "db": "PACKETSTORM", "id": "169894" }, { "db": "CNNVD", "id": "CNNVD-202203-1543" }, { "db": "NVD", "id": "CVE-2022-0396" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "VULMON", "id": "CVE-2022-0396" }, { "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "db": "PACKETSTORM", "id": "166354" }, { "db": "PACKETSTORM", "id": "169261" }, { "db": "PACKETSTORM", "id": "169773" }, { "db": "PACKETSTORM", "id": "169587" }, { "db": "PACKETSTORM", "id": "169894" }, { "db": "CNNVD", "id": "CNNVD-202203-1543" }, { "db": "NVD", "id": "CVE-2022-0396" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2022-03-23T00:00:00", "db": "VULMON", "id": "CVE-2022-0396" }, { "date": "2022-05-12T00:00:00", "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "date": "2022-03-17T15:54:20", "db": "PACKETSTORM", "id": "166354" }, { "date": "2022-03-28T19:12:00", "db": "PACKETSTORM", "id": "169261" }, { "date": "2022-11-08T13:49:24", "db": "PACKETSTORM", "id": "169773" }, { "date": "2022-10-31T14:50:53", "db": "PACKETSTORM", "id": "169587" }, { "date": "2022-11-16T16:09:16", "db": "PACKETSTORM", "id": "169894" }, { "date": "2022-03-16T00:00:00", "db": "CNNVD", "id": "CNNVD-202203-1543" }, { "date": "2022-03-23T11:15:08.380000", "db": "NVD", "id": "CVE-2022-0396" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2022-11-16T00:00:00", "db": "VULMON", "id": "CVE-2022-0396" }, { "date": "2022-09-20T06:14:00", "db": "JVNDB", "id": "JVNDB-2022-001799" }, { "date": "2022-11-17T00:00:00", "db": "CNNVD", "id": "CNNVD-202203-1543" }, { "date": "2024-01-21T02:05:10.713000", "db": "NVD", "id": "CVE-2022-0396" } ] }, "threat_type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "remote", "sources": [ { "db": "PACKETSTORM", "id": "166354" }, { "db": "CNNVD", "id": "CNNVD-202203-1543" } ], "trust": 0.7 }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "BIND\u00a0 connection indefinitely \u00a0CLOSE_WAIT\u00a0 Vulnerabilities that remain in status", "sources": [ { "db": "JVNDB", "id": "JVNDB-2022-001799" } ], "trust": 0.8 }, "type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "resource management error", "sources": [ { "db": "CNNVD", "id": "CNNVD-202203-1543" } ], "trust": 0.6 } }
gsd-2022-0396
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2022-0396", "description": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.", "id": "GSD-2022-0396", "references": [ "https://security.archlinux.org/CVE-2022-0396", "https://www.debian.org/security/2022/dsa-5105", "https://www.suse.com/security/cve/CVE-2022-0396.html", "https://ubuntu.com/security/CVE-2022-0396", "https://access.redhat.com/errata/RHSA-2022:7643", "https://access.redhat.com/errata/RHSA-2022:8068" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2022-0396" ], "details": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection.", "id": "GSD-2022-0396", "modified": "2023-12-13T01:19:11.318183Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "security-officer@isc.org", "DATE_PUBLIC": "2022-03-16T11:00:00.000Z", "ID": "CVE-2022-0396", "STATE": "PUBLIC", "TITLE": "DoS from specifically crafted TCP packets" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "BIND", "version": { "version_data": [ { "version_name": "Open Source Branch 9.16", "version_value": "9.16.11 through versions before 9.16.27" }, { "version_name": "Development Branch 9.17", "version_value": "BIND 9.17 all versions" }, { "version_name": "Open Source Branch 9.18", "version_value": "9.18.0" }, { "version_name": "Supported Preview Branch 9.16-S", "version_value": "9.16.11-S through versions before 9.16.27-S" } ] } } ] }, "vendor_name": "ISC" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection." } ] }, "generator": { "engine": "Vulnogram 0.0.9" }, "impact": { "cvss": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "ISC recently discovered an issue in BIND that allows TCP connection slots to be consumed for an indefinite time frame via a specifically crafted TCP stream sent from a client. This issue is present in BIND. BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. 9.16.11 to 9.16.26 (including S editions), and 9.18.0. This issue can only be triggered on BIND servers which have keep-response-order enabled, which is not the default configuration. The keep-response-order option is an ACL block; any hosts which are specified within it will be able to trigger this issue on affected versions. BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition." } ] } ] }, "references": { "reference_data": [ { "name": "https://kb.isc.org/v1/docs/cve-2022-0396", "refsource": "CONFIRM", "url": "https://kb.isc.org/v1/docs/cve-2022-0396" }, { "name": "FEDORA-2022-14e36aac0c", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY/" }, { "name": "https://security.netapp.com/advisory/ntap-20220408-0001/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20220408-0001/" }, { "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf", "refsource": "CONFIRM", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "name": "GLSA-202210-25", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/202210-25" } ] }, "solution": [ { "lang": "eng", "value": "Upgrade to the patched release most closely related to your current version of BIND:\n 9.16.27\n 9.18.1\nBIND Supported Preview Edition is a special feature-preview branch of BIND provided to eligible ISC support customers.\n 9.16.27-S1" } ], "source": { "discovery": "INTERNAL" }, "work_around": [ { "lang": "eng", "value": "To mitigate this issue in all affected versions of BIND, use the default setting of keep-response-order { none; }.\nActive exploits: We are not aware of any active exploits." } ] }, "nvd.nist.gov": { "cve": { "configurations": [ { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*", "matchCriteriaId": "90B16201-A1E2-47D8-B410-92AE90B98867", "versionEndExcluding": "9.16.27", "versionStartIncluding": "9.16.11", "vulnerable": true }, { "criteria": "cpe:2.3:a:isc:bind:*:*:*:*:supported_preview:*:*:*", "matchCriteriaId": "24C30F5B-53A9-4D41-9158-35250756E637", "versionEndExcluding": "9.16.27", "versionStartIncluding": "9.16.11", "vulnerable": true }, { "criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*", "matchCriteriaId": "AC2500CA-5173-44CC-B35A-D645DA10BCE5", "versionEndIncluding": "9.18.0", "versionStartIncluding": "9.17.0", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*", "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835", "vulnerable": true }, { "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*", "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA", "vulnerable": true }, { "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*", "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "6770B6C3-732E-4E22-BF1C-2D2FD610061C", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*", "matchCriteriaId": "9F9C8C20-42EB-4AB5-BD97-212DEB070C43", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "7FFF7106-ED78-49BA-9EC5-B889E3685D53", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*", "matchCriteriaId": "E63D8B0F-006E-4801-BF9D-1C001BBFB4F9", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "56409CEC-5A1E-4450-AA42-641E459CC2AF", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*", "matchCriteriaId": "B06F4839-D16A-4A61-9BB5-55B13F41E47F", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "108A2215-50FB-4074-94CF-C130FA14566D", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*", "matchCriteriaId": "7AFC73CE-ABB9-42D3-9A71-3F5BC5381E0E", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "32F0B6C0-F930-480D-962B-3F4EFDCC13C7", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*", "matchCriteriaId": "803BC414-B250-4E3A-A478-A3881340D6B8", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "0FEB3337-BFDE-462A-908B-176F92053CEC", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*", "matchCriteriaId": "736AEAE9-782B-4F71-9893-DED53367E102", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D0B4AD8A-F172-4558-AEC6-FF424BA2D912", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*", "matchCriteriaId": "8497A4C9-8474-4A62-8331-3FE862ED4098", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "234DEFE0-5CE5-4B0A-96B8-5D227CB8ED31", "vulnerable": true } ], "negate": false, "operator": "OR" }, { "cpeMatch": [ { "criteria": "cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*", "matchCriteriaId": "CDDF61B7-EC5C-467C-B710-B89F502CD04F", "vulnerable": false } ], "negate": false, "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:siemens:sinec_ins:*:*:*:*:*:*:*:*", "matchCriteriaId": "C89891C1-DFD7-4E1F-80A9-7485D86A15B5", "versionEndExcluding": "1.0", "vulnerable": true }, { "criteria": "cpe:2.3:a:siemens:sinec_ins:1.0:-:*:*:*:*:*:*", "matchCriteriaId": "4664B195-AF14-4834-82B3-0B2C98020EB6", "vulnerable": true }, { "criteria": "cpe:2.3:a:siemens:sinec_ins:1.0:sp1:*:*:*:*:*:*", "matchCriteriaId": "75BC588E-CDF0-404E-AD61-02093A1DF343", "vulnerable": true } ], "negate": false, "operator": "OR" } ] } ], "descriptions": [ { "lang": "en", "value": "BIND 9.16.11 -\u003e 9.16.26, 9.17.0 -\u003e 9.18.0 and versions 9.16.11-S1 -\u003e 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSE_WAIT status for an indefinite period of time, even after the client has terminated the connection." }, { "lang": "es", "value": "BIND versiones 9.16.11 posteriores a 9.16.26, versiones 9.17.0 posteriores a 9.18.0 y versiones 9.16.11-S1 posteriores a 9.16.26-S1 de BIND Supported Preview Edition. Los flujos TCP espec\u00edficamente dise\u00f1ados pueden causar que las conexiones a BIND permanezcan en estado CLOSE_WAIT durante un per\u00edodo de tiempo indefinido, incluso despu\u00e9s de que el cliente haya terminado la conexi\u00f3n" } ], "id": "CVE-2022-0396", "lastModified": "2024-01-21T02:05:10.713", "metrics": { "cvssMetricV2": [ { "acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false } ], "cvssMetricV31": [ { "cvssData": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" }, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary" }, { "cvssData": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" }, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security-officer@isc.org", "type": "Secondary" } ] }, "published": "2022-03-23T11:15:08.380", "references": [ { "source": "security-officer@isc.org", "tags": [ "Patch", "Third Party Advisory" ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf" }, { "source": "security-officer@isc.org", "tags": [ "Mitigation", "Vendor Advisory" ], "url": "https://kb.isc.org/v1/docs/cve-2022-0396" }, { "source": "security-officer@isc.org", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYD7US4HZRFUGAJ66ZTHFBYVP5N3OQBY/" }, { "source": "security-officer@isc.org", "tags": [ "Third Party Advisory" ], "url": "https://security.gentoo.org/glsa/202210-25" }, { "source": "security-officer@isc.org", "tags": [ "Third Party Advisory" ], "url": "https://security.netapp.com/advisory/ntap-20220408-0001/" } ], "sourceIdentifier": "security-officer@isc.org", "vulnStatus": "Analyzed", "weaknesses": [ { "description": [ { "lang": "en", "value": "CWE-404" } ], "source": "nvd@nist.gov", "type": "Primary" } ] } } } }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.