[CLSA-2024:1709562163] Fix CVE(s): CVE-2023-50387, CVE-2023-50868
Type:
security
Severity:
Important
Release date:
2024-03-04 14:22:47 UTC
Description:
* SECURITY UPDATE: KeyTrap denial of service vulnerability - debian/patches/CVE-2023-50387-20230-50868.patch: Fix DNSSEC verification complexity issue by updating verification function signatures. - debian/patches/CVE-2023-50387-fix-1.patch: Allow the original CVE-2023-50387 patch to work if multiple threads support is disabled. - debian/patches/CVE-2023-50387-fix-2.patch: Fix a leak. - CVE-2023-50387 - CVE-2023-50868
Updated packages:
  • bind9_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:b9227e6a11f47b8ccefe8fc8f43ba993dd264d02
  • bind9-doc_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_all.deb
    sha:314a3975101f96b55ea28c42af49541ca2812db9
  • bind9-host_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:51a7ffd120ebc20a8025dfdb95b4d3a4ebda5b32
  • bind9utils_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:22f0ca746889441a1307b1b63d0f3c78b585ff30
  • dnsutils_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:290eb118a15decb8006afde36352f6d8520f2edd
  • host_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_all.deb
    sha:0adb0e0fc993c2fc8d3391ccedb21a4a27a6dd22
  • libbind-dev_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:a398b55259ba51f8cea050b7cf3c6f6c7d7db119
  • libbind-export-dev_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:ceab8f8e092195ce22419e0f318d63f8bcf33cbc
  • libbind9-140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:e0473778a644e22763b20f7ecf09c61aac3c9369
  • libdns-export162_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:d118d0326c7a668c7f660fa9905e559f98e0e113
  • libdns162_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:3a4d54579a8a68adbd00d694ab3403f5277f6c61
  • libirs-export141_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:790357ff3e367d4274a9ec27b2c4eea7c83e0bc3
  • libirs141_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:32afd16f76effa50e5f626ec3fc4e96a4cbde7cd
  • libisc-export160_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:c2ca6d284359f88245f1b6da2a13debb3d1fc71a
  • libisc160_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:92d856c01f297620872cf78116379e2a8f8f8687
  • libisccc-export140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:4ab0bf4188dfcae50a14564214b160926947e002
  • libisccc140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:e14fa734301a09d19e3913c8201d7ded2b4c5ee4
  • libisccfg-export140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:6026ef960044ebc580658bbf706fe2a6c4478cd6
  • libisccfg140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:a7fb46f5bd525d3092e1cb0cea1f17f2a60743cb
  • liblwres141_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:081317e393fe1fc5dd1d17830a690b2be2ef487b
  • lwresd_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els7_amd64.deb
    sha:0608aa48725d55cc467153604411212d9f2078d3
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.