Bug 23176 - bind new security issue CVE-2018-5738
Summary: bind new security issue CVE-2018-5738
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: Guillaume Rousse
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2018-06-13 13:50 CEST by David Walser
Modified: 2018-07-06 00:52 CEST (History)
1 user (show)

See Also:
Source RPM: bind-9.11.3-2.mga7.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2018-06-13 13:50:53 CEST 
ISC has issued an advisory on June 12:
https://kb.isc.org/article/AA-01616

Only Cauldron is affected.

The advisory says that a patch is available upon request.
Comment 1 Marja Van Waes 2018-06-14 10:48:25 CEST 
Assigning to the registered maintainer.

CC: (none) => marja11
Assignee: bugsquad => guillomovitch

Comment 2 David Walser 2018-07-02 14:35:20 CEST 
Fedora has issued an advisory for this on July 1:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/RKVI6IZWLMQLQPB27TI2KB7LV7HBIXBG/
Comment 3 David Walser 2018-07-05 12:59:44 CEST 
There is also an operational issue that will be fixed in 9.10.8 and 9.11.4:
http://openwall.com/lists/oss-security/2018/07/05/1
Comment 4 David Walser 2018-07-06 00:52:09 CEST 
CVE-2018-5738 fixed in bind-9.11.3-3.mga7 by Guillaume.

Resolution: (none) => FIXED
Status: NEW => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.