[CLSA-2025:1762537520] Fix CVE(s): CVE-2023-4408
Type:
security
Severity:
Important
Release date:
2025-11-07 17:45:24 UTC
Description:
* SECURITY UPDATE: The DNS message parsing code in `named` includes a section whose computational complexity is overly high - debian/patches/CVE-2023-4408.patch: refactoring parsing code - debian/patches/CVE-2023-4408-1.patch: fix DNSSEC test suite - debian/libdns1100.symbols: some function declarations were removed according to the CVE-2023-4408.patch - CVE-2023-4408 * Add patch for enabling automated testing
Updated packages:
  • bind9_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:0fd9141e9737206a7c1b8d87cf5073689656a188
  • bind9-doc_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_all.deb
    sha:af56ebc5040a4ae3a47b03c807860b7a589b47b3
  • bind9-host_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:50368ab48b0b59e4694660800f659cb7eab73738
  • bind9utils_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:7bc79d1fc034beeb3067a3806477608e2bb02444
  • dnsutils_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:6e70bc56bb3498227b755355bdddfb69f1f434d2
  • libbind-dev_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:ec9dcd4fbe8d54a2cf0365f787e0e5ce8f05076e
  • libbind-export-dev_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:475974d613e6b06e66e5a6cfe6fcf98af1e8b131
  • libbind9-161_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:bbf3ea3db0223365eaa081b98aee811ef1b7b027
  • libdns-export1104_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:93cbd0ae2e86bc1a76950258113f0e4569ddcc0f
  • libdns1104_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:9fddcfc2a2c819267b9969d57dc72ece39c1af23
  • libirs-export161_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:010cb6a17e0ef9fd90b8d47478494bc9b5ea06d5
  • libirs161_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:0be55119f9518a796006b85bcc33cf92163b3a4e
  • libisc-export1100_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:a7e705bfe2ce17dcb5d8c65f48d3816f1b9db776
  • libisc1100_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:73f6e4ce54a8221546c316b421fd37de01ff1e74
  • libisccc-export161_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:7d24cd52442f96d1309e8e05edcbe92e444f6329
  • libisccc161_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:12cfa649cb759463999260a62275c7b1830acac8
  • libisccfg-export163_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:9fb29a110d2120fd43a040f5a9ef6464dfbae393
  • libisccfg163_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:c57846214c7b4bfdb4383600cfdb5d46c6af9c91
  • liblwres161_9.11.5.P4+dfsg-5.1+deb10u11+tuxcare.els1_amd64.deb
    sha:c95edae68ad9943e13ffce917323e9c6b343778c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.