As the package maintained by the Ubuntu team are “no longer” the source from ISC (but highly modified patches onto an old 9.16.1 source tree), I’d suggest following up with the Ubuntu maintainers of the package, as it’s likely their back-porting of security patches from much more recent releases is the cause of the issue.
Stuart From: bind-users <[email protected]> on behalf of Ben Bridges <[email protected]> Date: Thursday, 8 December 2022 at 11:04 am To: Emmanuel Fusté <[email protected]>, "[email protected]" <[email protected]> Subject: RE: Bind 9.16.1 crash According to the Ubuntu maintainers, the bind9 package on our server (1:9.16.1-0ubuntu2.11) is fully patched for all the BIND 9 CVE’s including the latest batch of 6 released on 2022-09-21 (CVE-2022-38178, CVE-2022-38177, CVE-2022-3080, CVE-2022-2906, CVE-2022-2881, and CVE-2022-2795). From: Emmanuel Fusté <[email protected]> Sent: Wednesday, December 7, 2022 4:22 PM To: Ben Bridges <[email protected]>; [email protected] Subject: Re: Bind 9.16.1 crash Current ESV : 9.16.35 No, your release is not patched. Add the ISC PPA repo and install the latest ESV. ISC PPA packaged are packaged by the same maintainers. Le mer. 7 déc. 2022, 23:02, Ben Bridges <[email protected]<mailto:[email protected]>> a écrit : Ubuntu 20.04.5 is LTS and BIND 9.16 is the current stable ESV release, so they’re both still fully supported (and fully patched).
-- Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. bind-users mailing list [email protected] https://lists.isc.org/mailman/listinfo/bind-users
