Security update for bind SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:2265-1 Final 1 1 2019-10-06T09:57:56Z current 2019-10-06T09:57:56Z 2019-10-06T09:57:56Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for bind This update for bind fixes the following issues: Security issue fixed: - CVE-2019-6471: Fixed a reachable assert in dispatch.c. (bsc#1138687) Non-security issue fixed: - bind will no longer rely on /etc/insserv.conf (bsc#1118367, bsc#1118368) This update was imported from the SUSE:SLE-15:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-2265 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UC5XCUBLMFQMOGLYKZG6JGMVGRAOCYY3/#UC5XCUBLMFQMOGLYKZG6JGMVGRAOCYY3 E-Mail link for openSUSE-SU-2019:2265-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1118367 SUSE Bug 1118367 https://bugzilla.suse.com/1118368 SUSE Bug 1118368 https://bugzilla.suse.com/1138687 SUSE Bug 1138687 https://www.suse.com/security/cve/CVE-2019-6471/ SUSE CVE CVE-2019-6471 page openSUSE Leap 15.1 bind-9.11.2-lp151.11.6.1 bind-chrootenv-9.11.2-lp151.11.6.1 bind-devel-9.11.2-lp151.11.6.1 bind-devel-32bit-9.11.2-lp151.11.6.1 bind-doc-9.11.2-lp151.11.6.1 bind-lwresd-9.11.2-lp151.11.6.1 bind-utils-9.11.2-lp151.11.6.1 libbind9-160-9.11.2-lp151.11.6.1 libbind9-160-32bit-9.11.2-lp151.11.6.1 libdns169-9.11.2-lp151.11.6.1 libdns169-32bit-9.11.2-lp151.11.6.1 libirs-devel-9.11.2-lp151.11.6.1 libirs160-9.11.2-lp151.11.6.1 libirs160-32bit-9.11.2-lp151.11.6.1 libisc166-9.11.2-lp151.11.6.1 libisc166-32bit-9.11.2-lp151.11.6.1 libisccc160-9.11.2-lp151.11.6.1 libisccc160-32bit-9.11.2-lp151.11.6.1 libisccfg160-9.11.2-lp151.11.6.1 libisccfg160-32bit-9.11.2-lp151.11.6.1 liblwres160-9.11.2-lp151.11.6.1 liblwres160-32bit-9.11.2-lp151.11.6.1 python3-bind-9.11.2-lp151.11.6.1 bind-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 bind-chrootenv-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 bind-devel-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 bind-devel-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 bind-doc-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 bind-lwresd-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 bind-utils-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libbind9-160-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libbind9-160-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libdns169-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libdns169-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libirs-devel-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libirs160-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libirs160-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libisc166-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libisc166-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libisccc160-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libisccc160-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libisccfg160-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 libisccfg160-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 liblwres160-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 liblwres160-32bit-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 python3-bind-9.11.2-lp151.11.6.1 as a component of openSUSE Leap 15.1 A race condition which may occur when discarding malformed packets can result in BIND exiting due to a REQUIRE assertion failure in dispatch.c. Versions affected: BIND 9.11.0 -> 9.11.7, 9.12.0 -> 9.12.4-P1, 9.14.0 -> 9.14.2. Also all releases of the BIND 9.13 development branch and version 9.15.0 of the BIND 9.15 development branch and BIND Supported Preview Edition versions 9.11.3-S1 -> 9.11.7-S1. CVE-2019-6471 openSUSE Leap 15.1:bind-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:bind-chrootenv-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:bind-devel-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:bind-devel-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:bind-doc-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:bind-lwresd-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:bind-utils-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libbind9-160-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libbind9-160-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libdns169-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libdns169-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libirs-devel-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libirs160-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libirs160-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libisc166-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libisc166-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libisccc160-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libisccc160-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libisccfg160-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:libisccfg160-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:liblwres160-32bit-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:liblwres160-9.11.2-lp151.11.6.1 openSUSE Leap 15.1:python3-bind-9.11.2-lp151.11.6.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UC5XCUBLMFQMOGLYKZG6JGMVGRAOCYY3/#UC5XCUBLMFQMOGLYKZG6JGMVGRAOCYY3 https://www.suse.com/security/cve/CVE-2019-6471.html CVE-2019-6471 https://bugzilla.suse.com/1138687 SUSE Bug 1138687