OESA-2024-2016

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-2016
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2024-2016.json
JSON Data
https://api.test.osv.dev/v1/vulns/OESA-2024-2016
Upstream
Published
2024-08-23T11:08:52Z
Modified
2025-08-12T05:40:42.821020Z
Summary
bind security update
Details

Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols and provides an openly redistributable reference implementation of the major components of the Domain Name System. This package includes the components to operate a DNS server.

Security Fix(es):

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.(CVE-2024-0760)

Database specific 
{
    "severity": "High"
}
References

Affected packages

openEuler:24.03-LTS / bind

Package

Name
bind
Purl
pkg:rpm/openEuler/bind&distro=openEuler-24.03-LTS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.18.21-3.oe2403

Ecosystem specific 

{
    "noarch": [
        "bind-dnssec-doc-9.18.21-3.oe2403.noarch.rpm",
        "bind-license-9.18.21-3.oe2403.noarch.rpm"
    ],
    "aarch64": [
        "bind-9.18.21-3.oe2403.aarch64.rpm",
        "bind-chroot-9.18.21-3.oe2403.aarch64.rpm",
        "bind-debuginfo-9.18.21-3.oe2403.aarch64.rpm",
        "bind-debugsource-9.18.21-3.oe2403.aarch64.rpm",
        "bind-devel-9.18.21-3.oe2403.aarch64.rpm",
        "bind-dnssec-utils-9.18.21-3.oe2403.aarch64.rpm",
        "bind-libs-9.18.21-3.oe2403.aarch64.rpm",
        "bind-utils-9.18.21-3.oe2403.aarch64.rpm"
    ],
    "src": [
        "bind-9.18.21-3.oe2403.src.rpm"
    ],
    "x86_64": [
        "bind-9.18.21-3.oe2403.x86_64.rpm",
        "bind-chroot-9.18.21-3.oe2403.x86_64.rpm",
        "bind-debuginfo-9.18.21-3.oe2403.x86_64.rpm",
        "bind-debugsource-9.18.21-3.oe2403.x86_64.rpm",
        "bind-devel-9.18.21-3.oe2403.x86_64.rpm",
        "bind-dnssec-utils-9.18.21-3.oe2403.x86_64.rpm",
        "bind-libs-9.18.21-3.oe2403.x86_64.rpm",
        "bind-utils-9.18.21-3.oe2403.x86_64.rpm"
    ]
}