Project

General

Profile

New packages fix bind vulnerabilities CVE-2017-3142 and CVE-2017-3143

Bind fixed issues and vulnerabilities:

  • CVE-2017-3142
  • CVE-2017-3143

Bind fixed issues and vulnerabilities:

  • Thu Jun 29 2017 Petr Menšík <> - 32:9.8.2-0.62.rc1.4
    - Fix CVE-2017-3142 and CVE-2017-3143

Solution:

upgrade with bind-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm package from viapps repo.
upgrade with bind-chroot-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm package from viapps repo.
upgrade with bind-devel-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm package from viapps repo.
upgrade with bind-libs-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm package from viapps repo.
upgrade with bind-utils-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm package from viapps repo.

Signatures

91f3bc4f35d7ec2edc1c69761c35dea5 bind-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm
a8c13d312d330548e9e9e79c407717f4 bind-chroot-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm
9058706173597e74a6e762292c240171 bind-devel-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm
f8378066e1ab578fbb4639e48a403e2f bind-libs-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm
71ced45f8f9b60061a6bc0c22b26dcc9 bind-sdb-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm
a6ccc781cf55442773f104ec78c82ead bind-utils-9.8.2-0.62.rc1.el6_9.4.x86_64.rpm

How to apply:

  1. Copy downloaded rpms to cmi:/var/www/repo/x86_64
  2. Update CMI repo
    [root@cmi ~] createrepo --update /var/www/repo/x86_64
    
  3. Update DNS/DHCP/NTP node. Either
    1. From CMI front end -> Appliances -> Setup -> Minor packages Upgrade
    2. Or manually:
      [root@dns ~] yum clean all # (clear yum cache)
      [root@dns ~] yum -y update bind openssl
      [...]
      
      Complete!