Cloud Foundry Logo
blog single gear
Blog
Security Advisory

USN-6421-1: Bind vulnerability

by: December 4, 2023

Severity

Medium

Vendor

Canonical Ubuntu

Versions Affected

  • Canonical Ubuntu 16.04
  • Canonical Ubuntu 18.04

Description

It was discovered that Bind incorrectly handled certain control channel messages. A remote attacker with access to the control channel could possibly use this issue to cause Bind to crash, resulting in a denial of service. Update Instructions: Run `sudo pro fix USN-6421-1` to fix the vulnerability. The problem can be corrected by updating your system to the following package versions: libisc160 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libisccc-export140-udeb – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libdns162 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libbind-dev – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libbind9-140 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libisccc-export140 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libisccfg-export140 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 bind9 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libisc-export160 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 bind9-doc – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libbind-export-dev – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libisccc140 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 host – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libisccfg140 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 bind9-host – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 dnsutils – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libdns-export162 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 bind9utils – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 liblwres141 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libirs141 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 libirs-export141 – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 lwresd – 1:9.10.3.dfsg.P4-8ubuntu1.19+esm7 Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro

CVEs contained in this USN include: CVE-2023-3341.

Affected Cloud Foundry Products and Versions

Severity is medium unless otherwise noted.

  • CF Deployment
    • All versions prior to 30.0.0

Mitigation

Users of affected products are strongly encouraged to follow the mitigations below. The Cloud Foundry project recommends upgrading the following releases:

  • CF Deployment
    • Upgrade all versions to 30.0.0 or greater

History

2023-12-04: Initial vulnerability report published.

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

USN-3181-1: OpenSSL vulnerabilities
Security Advisory

USN-3181-1: OpenSSL vulnerabilities

by Cloud Foundry Foundation Security Team June 2, 2017
USN-3441-1: curl vulnerabilities
Security Advisory

USN-3441-1: curl vulnerabilities

by Cloud Foundry Foundation Security Team November 1, 2017
USN-5329-1: tar vulnerability
Security Advisory

USN-5329-1: tar vulnerability

by Cloud Foundry Foundation Security Team May 23, 2022
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept