SUSE-SU-2019:14074-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14074-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2019:14074-1
- Related
- Published
- 2019-06-06T16:25:43Z
- Modified
- 2019-06-06T16:25:43Z
- Summary
- Security update for bind
- Details
-
This update for bind fixes the following issues:
Security issues fixed:
- CVE-2018-5740: Fixed a denial of service vulnerability in the 'deny-answer-aliases' feature (bsc#1104129).
- CVE-2018-5743: Limiting simultaneous TCP clients is ineffective. (bsc#1133185)
- CVE-2018-5745: An assertion failure can occur if a trust anchor rolls over to an unsupported key algorithm when using managed-keys. (bsc#1126068)
- CVE-2019-6465: Fixed an issue where controls for zone transfers may not be properly applied to Dynamically Loadable Zones (bsc#1126069).
- References
-
- https://www.suse.com/support/update/announcement/2019/suse-su-201914074-1/
- https://bugzilla.suse.com/1104129
- https://bugzilla.suse.com/1126068
- https://bugzilla.suse.com/1126069
- https://bugzilla.suse.com/1133185
- https://www.suse.com/security/cve/CVE-2018-5740
- https://www.suse.com/security/cve/CVE-2018-5743
- https://www.suse.com/security/cve/CVE-2018-5745
- https://www.suse.com/security/cve/CVE-2019-6465
Affected packages
SUSE:Linux Enterprise Point of Sale 11 SP3 / bind
Package
- Name
- bind
- Purl
- purl:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3