A new bind package with the fix for the CVE-2021-25214, CVE-2021-25215, and CVE-2021-25216 within CloudLinux 6 ELS has been scheduled for gradual rollout

Extended-CL

A new bind package with the fix for the CVE-2021-25214, CVE-2021-25215, and CVE-2021-25216 within CloudLinux 6 extended lifecycle support has been scheduled for gradual rollout from our production repository.

Rollout slot: 6

Rolled out to: 1%

ETA for 100% rollout: May, 14

Changelog

bind-9.8.2-0.68.rc1.10.cloudlinux.els

  • CVE-2021-25214: A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly
  • CVE-2021-25215: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself
  • CVE-2021-25216: A second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack

Update command

yum update bind*

Immediate update (via bypass)

yum update bind* --enablerepo=cloudlinux-rollout-6-bypass

A new bind package with the fix for the CVE-2021-25214, CVE-2021-25215, and CVE-2021-25216 within CloudLinux 6 ELS has been scheduled for gradual rollout

Extended-CL

A new bind package with the fix for the CVE-2021-25214, CVE-2021-25215, and CVE-2021-25216 within CloudLinux 6 extended lifecycle support has been scheduled for gradual rollout from our production repository.

Rollout slot: 6

Rolled out to: 1%

ETA for 100% rollout: May, 14

Changelog

bind-9.8.2-0.68.rc1.10.cloudlinux.els

  • CVE-2021-25214: A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly
  • CVE-2021-25215: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself
  • CVE-2021-25216: A second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack

Update command

yum update bind*

Immediate update (via bypass)

yum update bind* --enablerepo=cloudlinux-rollout-6-bypass
imunify-logo

WEB SERVER SECURITY BLOG

Subscribe to CloudLinux Newsletter