[CLSA-2026:1782147734] bind: Fix of CVE-2025-8677
Type:
security
Severity:
None
Release date:
2026-06-22 17:02:26 UTC
Description:
- CVE-2025-8677: fail DNSSEC validation on a matching but cryptographically invalid DNSKEY instead of skipping it, preventing CPU exhaustion from malformed DNSKEY records in a specially crafted zone
Updated packages:
  • bind-9.16.23-11.el9_2.2.tuxcare.els13.x86_64.rpm
    sha:4d458f36dff97cc9de8a201d5c0ca951d3ad616c6612cc9546c274962d9e2661
  • bind-chroot-9.16.23-11.el9_2.2.tuxcare.els13.x86_64.rpm
    sha:cffc4ad52b29b315ebf96a5acb3905910d9dec9cdae633d420cb69254d1f38f4
  • bind-devel-9.16.23-11.el9_2.2.tuxcare.els13.i686.rpm
    sha:f0c8f5152c45564ef67213d90d4951a83e8e9c9bf4b47ce11888adde5d4571fd
  • bind-devel-9.16.23-11.el9_2.2.tuxcare.els13.x86_64.rpm
    sha:7a0fdde409c06a5a9704b6230e451ae51b1dda67fe406906fde16f0c18e2aa90
  • bind-dnssec-doc-9.16.23-11.el9_2.2.tuxcare.els13.noarch.rpm
    sha:379ea48744e9340c6a8715214288376e8fb972bca3c0ab20dd3e2390d7c12cba
  • bind-dnssec-utils-9.16.23-11.el9_2.2.tuxcare.els13.x86_64.rpm
    sha:3377166ca355df89db2392032d77db44b4d080a74aa3d24930e7c7cc45411033
  • bind-doc-9.16.23-11.el9_2.2.tuxcare.els13.noarch.rpm
    sha:1d5c8c184b87105a48c29e2ef863a656f069e46364907b7021c8ed6df990fa8d
  • bind-libs-9.16.23-11.el9_2.2.tuxcare.els13.i686.rpm
    sha:3aab4dd9546afda8fa40d5f354c9de8db35114ad110d000240b7ff2e98b0661f
  • bind-libs-9.16.23-11.el9_2.2.tuxcare.els13.x86_64.rpm
    sha:d8361cb16f2d2769d67fcc18cca203c8cbf5eb973f9304d4648192ac46a6ab23
  • bind-license-9.16.23-11.el9_2.2.tuxcare.els13.noarch.rpm
    sha:8b0414e4abba6a65cb2a4db26dca031dd99076071e651d185e7fbf5a3caa7fa2
  • bind-utils-9.16.23-11.el9_2.2.tuxcare.els13.x86_64.rpm
    sha:29672acce73217836988d5cd5050356acacaeee9360875bf1f681d90a6dc5302
  • python3-bind-9.16.23-11.el9_2.2.tuxcare.els13.noarch.rpm
    sha:5ca71da91f096378754d4f0f02ad77e8655f3dc600d3fe52cef32628748bedb9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.