Bug 23176

Summary: bind new security issue CVE-2018-5738
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Guillaume Rousse <guillomovitch>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: marja11
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: bind-9.11.3-2.mga7.src.rpm CVE:
Status comment:

Description David Walser 2018-06-13 13:50:53 CEST 
ISC has issued an advisory on June 12:
https://kb.isc.org/article/AA-01616

Only Cauldron is affected.

The advisory says that a patch is available upon request.
Comment 1 Marja Van Waes 2018-06-14 10:48:25 CEST 
Assigning to the registered maintainer.

CC: (none) => marja11
Assignee: bugsquad => guillomovitch

Comment 2 David Walser 2018-07-02 14:35:20 CEST 
Fedora has issued an advisory for this on July 1:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/RKVI6IZWLMQLQPB27TI2KB7LV7HBIXBG/
Comment 3 David Walser 2018-07-05 12:59:44 CEST 
There is also an operational issue that will be fixed in 9.10.8 and 9.11.4:
http://openwall.com/lists/oss-security/2018/07/05/1
Comment 4 David Walser 2018-07-06 00:52:09 CEST 
CVE-2018-5738 fixed in bind-9.11.3-3.mga7 by Guillaume.

Resolution: (none) => FIXED
Status: NEW => RESOLVED