[El-errata] ELSA-2025-19950 Important: Oracle Linux 9 bind9.18 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Nov 11 18:17:32 UTC 2025
Oracle Linux Security Advisory ELSA-2025-19950
http://linux.oracle.com/errata/ELSA-2025-19950.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
bind9.18-9.18.29-4.el9_6.2.x86_64.rpm
bind9.18-chroot-9.18.29-4.el9_6.2.x86_64.rpm
bind9.18-devel-9.18.29-4.el9_6.2.i686.rpm
bind9.18-devel-9.18.29-4.el9_6.2.x86_64.rpm
bind9.18-dnssec-utils-9.18.29-4.el9_6.2.x86_64.rpm
bind9.18-doc-9.18.29-4.el9_6.2.noarch.rpm
bind9.18-libs-9.18.29-4.el9_6.2.i686.rpm
bind9.18-libs-9.18.29-4.el9_6.2.x86_64.rpm
bind9.18-utils-9.18.29-4.el9_6.2.x86_64.rpm
aarch64:
bind9.18-9.18.29-4.el9_6.2.aarch64.rpm
bind9.18-chroot-9.18.29-4.el9_6.2.aarch64.rpm
bind9.18-devel-9.18.29-4.el9_6.2.aarch64.rpm
bind9.18-dnssec-utils-9.18.29-4.el9_6.2.aarch64.rpm
bind9.18-doc-9.18.29-4.el9_6.2.noarch.rpm
bind9.18-libs-9.18.29-4.el9_6.2.aarch64.rpm
bind9.18-utils-9.18.29-4.el9_6.2.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/bind9.18-9.18.29-4.el9_6.2.src.rpm
Related CVEs:
CVE-2025-8677
CVE-2025-40778
CVE-2025-40780
Description of changes:
[32:9.18.29-4.2]
- Fix upstream reported regression in recent CVE fix (CVE-2025-8677)
- Add upstream created test to this regression
[32:9.18.29-4.1]
- Refuse malformed DNSKEY records (CVE-2025-8677)
- Address various spoofing attacks (CVE-2025-40778)
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)
More information about the El-errata
mailing list