[El-errata] ELSA-2025-21111 Important: Oracle Linux 9 bind9.18 security update

Errata Announcements for Oracle Linux via El-errata Thu, 27 Nov 2025 15:17:46 -0800

Oracle Linux Security Advisory ELSA-2025-21111

http://linux.oracle.com/errata/ELSA-2025-21111.html


The following updated rpms for Oracle Linux 9 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
bind9.18-9.18.29-5.el9_7.2.x86_64.rpm
bind9.18-chroot-9.18.29-5.el9_7.2.x86_64.rpm
bind9.18-devel-9.18.29-5.el9_7.2.i686.rpm
bind9.18-devel-9.18.29-5.el9_7.2.x86_64.rpm
bind9.18-dnssec-utils-9.18.29-5.el9_7.2.x86_64.rpm
bind9.18-doc-9.18.29-5.el9_7.2.noarch.rpm
bind9.18-libs-9.18.29-5.el9_7.2.i686.rpm
bind9.18-libs-9.18.29-5.el9_7.2.x86_64.rpm
bind9.18-utils-9.18.29-5.el9_7.2.x86_64.rpm

aarch64:
bind9.18-9.18.29-5.el9_7.2.aarch64.rpm
bind9.18-chroot-9.18.29-5.el9_7.2.aarch64.rpm
bind9.18-devel-9.18.29-5.el9_7.2.aarch64.rpm
bind9.18-dnssec-utils-9.18.29-5.el9_7.2.aarch64.rpm
bind9.18-doc-9.18.29-5.el9_7.2.noarch.rpm
bind9.18-libs-9.18.29-5.el9_7.2.aarch64.rpm
bind9.18-utils-9.18.29-5.el9_7.2.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/bind9.18-9.18.29-5.el9_7.2.src.rpm

Related CVEs:

CVE-2025-8677
CVE-2025-40778
CVE-2025-40780




Description of changes:

[32:9.18.29-5.2]
- Fix upstream reported regression in recent CVE fix (CVE-2025-8677)
- Add upstream created test to this regression

[32:9.18.29-5.1]
- Refuse malformed DNSKEY records (CVE-2025-8677)
- Address various spoofing attacks (CVE-2025-40778)
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)

[32:9.18.29-5]
- logrotate: skip if empty and remove old variants (RHEL-113942)


_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

[El-errata] ELSA-2025-21111 Important: Oracle Linux 9 bind9.18 security update

Reply via email to