СloudLinux Blog

A new bind package with the fix for the CVE-2021-25214, CVE-2021-25215, and CVE-2021-25216 within CentOS 6 ELS has been rolled out to 100%

Written by Inessa Atmachian | May 14, 2021 7:15:44 AM

A new bind package with the fix for the CVE-2021-25214, CVE-2021-25215, and CVE-2021-25216 within CentOS 6 extended lifecycle support has been rolled out to 100% and is now available for download from our production repository.

Errata: https://errata.cloudlinux.com/els6/CLSA-2021-1619706041.html 

Changelog

bind-9.8.2-0.68.rc1.el6_10.10.cloudlinux.els

  • CVE-2021-25214: A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly
  • CVE-2021-25215: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself
  • CVE-2021-25216: The second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack

Update command

yum update bind*