OESA-2023-1689

Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1689
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2023-1689.json
JSON Data
https://api.test.osv.dev/v1/vulns/OESA-2023-1689
Upstream
Published
2023-09-28T11:06:02Z
Modified
2025-08-12T05:20:39.672159Z
Summary
bind security update
Details

Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols and provides an openly redistributable reference implementation of the major components of the Domain Name System. This package includes the components to operate a DNS server.

Security Fix(es):

The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory, causing named to terminate unexpectedly. Since each incoming control channel message is fully parsed before its contents are authenticated, exploiting this flaw does not require the attacker to hold a valid RNDC key; only network access to the control channel's configured TCP port is necessary. This issue affects BIND 9 versions 9.2.0 through 9.16.43, 9.18.0 through 9.18.18, 9.19.0 through 9.19.16, 9.9.3-S1 through 9.16.43-S1, and 9.18.0-S1 through 9.18.18-S1.(CVE-2023-3341)

Database specific
{
    "severity": "High"
}
References

Affected packages

openEuler:20.03-LTS-SP1 / bind

Package

Name
bind
Purl
pkg:rpm/openEuler/bind&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.11.21-18.oe1

Ecosystem specific

{
    "noarch": [
        "python3-bind-9.11.21-18.oe1.noarch.rpm"
    ],
    "aarch64": [
        "bind-debugsource-9.11.21-18.oe1.aarch64.rpm",
        "bind-export-devel-9.11.21-18.oe1.aarch64.rpm",
        "bind-libs-9.11.21-18.oe1.aarch64.rpm",
        "bind-utils-9.11.21-18.oe1.aarch64.rpm",
        "bind-pkcs11-9.11.21-18.oe1.aarch64.rpm",
        "bind-export-libs-9.11.21-18.oe1.aarch64.rpm",
        "bind-devel-9.11.21-18.oe1.aarch64.rpm",
        "bind-chroot-9.11.21-18.oe1.aarch64.rpm",
        "bind-debuginfo-9.11.21-18.oe1.aarch64.rpm",
        "bind-pkcs11-devel-9.11.21-18.oe1.aarch64.rpm",
        "bind-9.11.21-18.oe1.aarch64.rpm",
        "bind-libs-lite-9.11.21-18.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "bind-pkcs11-devel-9.11.21-18.oe1.x86_64.rpm",
        "bind-libs-lite-9.11.21-18.oe1.x86_64.rpm",
        "bind-debugsource-9.11.21-18.oe1.x86_64.rpm",
        "bind-chroot-9.11.21-18.oe1.x86_64.rpm",
        "bind-utils-9.11.21-18.oe1.x86_64.rpm",
        "bind-libs-9.11.21-18.oe1.x86_64.rpm",
        "bind-debuginfo-9.11.21-18.oe1.x86_64.rpm",
        "bind-devel-9.11.21-18.oe1.x86_64.rpm",
        "bind-9.11.21-18.oe1.x86_64.rpm",
        "bind-export-libs-9.11.21-18.oe1.x86_64.rpm",
        "bind-pkcs11-9.11.21-18.oe1.x86_64.rpm",
        "bind-export-devel-9.11.21-18.oe1.x86_64.rpm"
    ],
    "src": [
        "bind-9.11.21-18.oe1.src.rpm"
    ]
}

openEuler:20.03-LTS-SP3 / bind

Package

Name
bind
Purl
pkg:rpm/openEuler/bind&distro=openEuler-20.03-LTS-SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.11.21-18.oe1

Ecosystem specific

{
    "noarch": [
        "python3-bind-9.11.21-18.oe1.noarch.rpm"
    ],
    "aarch64": [
        "bind-pkcs11-devel-9.11.21-18.oe1.aarch64.rpm",
        "bind-pkcs11-9.11.21-18.oe1.aarch64.rpm",
        "bind-9.11.21-18.oe1.aarch64.rpm",
        "bind-libs-9.11.21-18.oe1.aarch64.rpm",
        "bind-export-devel-9.11.21-18.oe1.aarch64.rpm",
        "bind-debuginfo-9.11.21-18.oe1.aarch64.rpm",
        "bind-libs-lite-9.11.21-18.oe1.aarch64.rpm",
        "bind-utils-9.11.21-18.oe1.aarch64.rpm",
        "bind-devel-9.11.21-18.oe1.aarch64.rpm",
        "bind-export-libs-9.11.21-18.oe1.aarch64.rpm",
        "bind-chroot-9.11.21-18.oe1.aarch64.rpm",
        "bind-debugsource-9.11.21-18.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "bind-chroot-9.11.21-18.oe1.x86_64.rpm",
        "bind-debuginfo-9.11.21-18.oe1.x86_64.rpm",
        "bind-pkcs11-devel-9.11.21-18.oe1.x86_64.rpm",
        "bind-devel-9.11.21-18.oe1.x86_64.rpm",
        "bind-export-libs-9.11.21-18.oe1.x86_64.rpm",
        "bind-pkcs11-9.11.21-18.oe1.x86_64.rpm",
        "bind-9.11.21-18.oe1.x86_64.rpm",
        "bind-debugsource-9.11.21-18.oe1.x86_64.rpm",
        "bind-export-devel-9.11.21-18.oe1.x86_64.rpm",
        "bind-utils-9.11.21-18.oe1.x86_64.rpm",
        "bind-libs-9.11.21-18.oe1.x86_64.rpm",
        "bind-libs-lite-9.11.21-18.oe1.x86_64.rpm"
    ],
    "src": [
        "bind-9.11.21-18.oe1.src.rpm"
    ]
}

openEuler:22.03-LTS / bind

Package

Name
bind
Purl
pkg:rpm/openEuler/bind&distro=openEuler-22.03-LTS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.16.23-20.oe2203sp2

Ecosystem specific

{
    "noarch": [
        "bind-dnssec-doc-9.16.23-20.oe2203.noarch.rpm",
        "bind-license-9.16.23-20.oe2203.noarch.rpm",
        "python3-bind-9.16.23-20.oe2203.noarch.rpm",
        "bind-dnssec-doc-9.16.23-20.oe2203sp1.noarch.rpm",
        "bind-license-9.16.23-20.oe2203sp1.noarch.rpm",
        "python3-bind-9.16.23-20.oe2203sp1.noarch.rpm",
        "bind-dnssec-doc-9.16.23-20.oe2203sp2.noarch.rpm",
        "python3-bind-9.16.23-20.oe2203sp2.noarch.rpm",
        "bind-license-9.16.23-20.oe2203sp2.noarch.rpm"
    ],
    "aarch64": [
        "bind-debugsource-9.16.23-20.oe2203.aarch64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203.aarch64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203.aarch64.rpm",
        "bind-utils-9.16.23-20.oe2203.aarch64.rpm",
        "bind-9.16.23-20.oe2203.aarch64.rpm",
        "bind-devel-9.16.23-20.oe2203.aarch64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203.aarch64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203.aarch64.rpm",
        "bind-chroot-9.16.23-20.oe2203.aarch64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203.aarch64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203.aarch64.rpm",
        "bind-libs-9.16.23-20.oe2203.aarch64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-devel-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-libs-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-utils-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-utils-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-libs-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-devel-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp2.aarch64.rpm"
    ],
    "x86_64": [
        "bind-pkcs11-utils-9.16.23-20.oe2203.x86_64.rpm",
        "bind-libs-9.16.23-20.oe2203.x86_64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203.x86_64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203.x86_64.rpm",
        "bind-devel-9.16.23-20.oe2203.x86_64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203.x86_64.rpm",
        "bind-chroot-9.16.23-20.oe2203.x86_64.rpm",
        "bind-9.16.23-20.oe2203.x86_64.rpm",
        "bind-debugsource-9.16.23-20.oe2203.x86_64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203.x86_64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203.x86_64.rpm",
        "bind-utils-9.16.23-20.oe2203.x86_64.rpm",
        "bind-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-utils-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-libs-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-devel-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-utils-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-devel-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-libs-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp2.x86_64.rpm"
    ],
    "src": [
        "bind-9.16.23-20.oe2203.src.rpm",
        "bind-9.16.23-20.oe2203sp1.src.rpm",
        "bind-9.16.23-20.oe2203sp2.src.rpm"
    ]
}

openEuler:22.03-LTS-SP1 / bind

Package

Name
bind
Purl
pkg:rpm/openEuler/bind&distro=openEuler-22.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.16.23-20.oe2203sp1

Ecosystem specific

{
    "noarch": [
        "bind-dnssec-doc-9.16.23-20.oe2203sp1.noarch.rpm",
        "bind-license-9.16.23-20.oe2203sp1.noarch.rpm",
        "python3-bind-9.16.23-20.oe2203sp1.noarch.rpm"
    ],
    "aarch64": [
        "bind-pkcs11-libs-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-devel-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-libs-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-utils-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp1.aarch64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp1.aarch64.rpm"
    ],
    "x86_64": [
        "bind-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-utils-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-libs-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-devel-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp1.x86_64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp1.x86_64.rpm"
    ],
    "src": [
        "bind-9.16.23-20.oe2203sp1.src.rpm"
    ]
}

openEuler:22.03-LTS-SP2 / bind

Package

Name
bind
Purl
pkg:rpm/openEuler/bind&distro=openEuler-22.03-LTS-SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.16.23-20.oe2203sp2

Ecosystem specific

{
    "noarch": [
        "bind-dnssec-doc-9.16.23-20.oe2203sp2.noarch.rpm",
        "python3-bind-9.16.23-20.oe2203sp2.noarch.rpm",
        "bind-license-9.16.23-20.oe2203sp2.noarch.rpm"
    ],
    "aarch64": [
        "bind-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-utils-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-libs-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-libs-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-devel-9.16.23-20.oe2203sp2.aarch64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp2.aarch64.rpm"
    ],
    "x86_64": [
        "bind-pkcs11-libs-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-utils-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-devel-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-dnssec-utils-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-pkcs11-utils-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-debugsource-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-pkcs11-devel-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-chroot-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-libs-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-pkcs11-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-9.16.23-20.oe2203sp2.x86_64.rpm",
        "bind-debuginfo-9.16.23-20.oe2203sp2.x86_64.rpm"
    ],
    "src": [
        "bind-9.16.23-20.oe2203sp2.src.rpm"
    ]
}