SUSE-SU-2022:3682-1
- Source
- https://www.suse.com/support/update/announcement/2022/suse-su-20223682-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:3682-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2022:3682-1
- Upstream
- Related
- Published
- 2022-10-21T09:42:59Z
- Modified
- 2025-05-08T17:29:57.384261Z
- Summary
- Security update for bind
- Details
-
This update for bind fixes the following issues:
- CVE-2022-2795: Fixed potential performance degredation due to missing database lookup limits when processing large delegations (bsc#1203614).
- CVE-2022-38177: Fixed a memory leak that could be externally triggered in the DNSSEC verification code for the ECDSA algorithm (bsc#1203619).
- CVE-2022-38178: Fixed memory leaks that could be externally triggered in the DNSSEC verification code for the EdDSA algorithm (bsc#1203620).
Bugfixes: - Changed ownership of /var/lib/named/master from named:named to root:root (bsc#1201247)
- References
-
- https://www.suse.com/support/update/announcement/2022/suse-su-20223682-1/
- https://bugzilla.suse.com/1201247
- https://bugzilla.suse.com/1203614
- https://bugzilla.suse.com/1203619
- https://bugzilla.suse.com/1203620
- https://www.suse.com/security/cve/CVE-2022-2795
- https://www.suse.com/security/cve/CVE-2022-38177
- https://www.suse.com/security/cve/CVE-2022-38178
Affected packages
openSUSE:Leap 15.3
bind
Package
- Name
- bind
- Purl
- pkg:rpm/opensuse/bind&distro=openSUSE%20Leap%2015.3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed9.16.6-150300.22.21.2
Ecosystem specific
{
"binaries": [
{
"libns1604": "9.16.6-150300.22.21.2",
"libdns1605": "9.16.6-150300.22.21.2",
"libisc1606": "9.16.6-150300.22.21.2",
"libirs-devel": "9.16.6-150300.22.21.2",
"bind-chrootenv": "9.16.6-150300.22.21.2",
"libirs1601": "9.16.6-150300.22.21.2",
"bind-doc": "9.16.6-150300.22.21.2",
"bind": "9.16.6-150300.22.21.2",
"libisccc1600": "9.16.6-150300.22.21.2",
"bind-devel": "9.16.6-150300.22.21.2",
"bind-utils": "9.16.6-150300.22.21.2",
"python3-bind": "9.16.6-150300.22.21.2",
"libisccfg1600": "9.16.6-150300.22.21.2",
"libbind9-1600": "9.16.6-150300.22.21.2"
}
]
}openSUSE:Leap 15.4
bind
Package
- Name
- bind
- Purl
- pkg:rpm/opensuse/bind&distro=openSUSE%20Leap%2015.4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed9.16.6-150300.22.21.2
Ecosystem specific
{
"binaries": [
{
"libbind9-1600": "9.16.6-150300.22.21.2",
"libdns1605": "9.16.6-150300.22.21.2",
"libisc1606": "9.16.6-150300.22.21.2",
"libirs-devel": "9.16.6-150300.22.21.2",
"bind-chrootenv": "9.16.6-150300.22.21.2",
"libirs1601": "9.16.6-150300.22.21.2",
"libisccc1600": "9.16.6-150300.22.21.2",
"bind-devel": "9.16.6-150300.22.21.2",
"libisccfg1600": "9.16.6-150300.22.21.2",
"libns1604": "9.16.6-150300.22.21.2"
}
]
}SUSE:Linux Enterprise Module for Basesystem 15 SP3
bind
Package
- Name
- bind
- Purl
- pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed9.16.6-150300.22.21.2
Ecosystem specific
{
"binaries": [
{
"libns1604": "9.16.6-150300.22.21.2",
"libdns1605": "9.16.6-150300.22.21.2",
"libisc1606": "9.16.6-150300.22.21.2",
"libirs-devel": "9.16.6-150300.22.21.2",
"libirs1601": "9.16.6-150300.22.21.2",
"libisccc1600": "9.16.6-150300.22.21.2",
"bind-devel": "9.16.6-150300.22.21.2",
"bind-utils": "9.16.6-150300.22.21.2",
"python3-bind": "9.16.6-150300.22.21.2",
"libisccfg1600": "9.16.6-150300.22.21.2",
"libbind9-1600": "9.16.6-150300.22.21.2"
}
]
}SUSE:Linux Enterprise Module for Basesystem 15 SP4
bind
Package
- Name
- bind
- Purl
- pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed9.16.6-150300.22.21.2
Ecosystem specific
{
"binaries": [
{
"libns1604": "9.16.6-150300.22.21.2",
"libdns1605": "9.16.6-150300.22.21.2",
"libisccc1600": "9.16.6-150300.22.21.2",
"libisc1606": "9.16.6-150300.22.21.2",
"libirs1601": "9.16.6-150300.22.21.2",
"libisccfg1600": "9.16.6-150300.22.21.2",
"libbind9-1600": "9.16.6-150300.22.21.2"
}
]
}