ALAS2-2021-1635

Amazon Linux 2 Security Advisory: ALAS-2021-1635
Advisory Release Date: 2021-05-20 15:46 Pacific
Advisory Updated Date: 2021-05-24 17:51 Pacific

Severity: Important

References: CVE-2021-25215
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more than once which causes an assertion check to fail. The highest threat from this flaw is to system availability. (CVE-2021-25215)

Affected Packages:

bind

Note:

This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.

Issue Correction:
Run yum update bind to update your system.

New Packages:

aarch64:
    bind-9.11.4-26.P2.amzn2.5.aarch64
    bind-pkcs11-9.11.4-26.P2.amzn2.5.aarch64
    bind-pkcs11-utils-9.11.4-26.P2.amzn2.5.aarch64
    bind-pkcs11-libs-9.11.4-26.P2.amzn2.5.aarch64
    bind-pkcs11-devel-9.11.4-26.P2.amzn2.5.aarch64
    bind-sdb-9.11.4-26.P2.amzn2.5.aarch64
    bind-libs-lite-9.11.4-26.P2.amzn2.5.aarch64
    bind-libs-9.11.4-26.P2.amzn2.5.aarch64
    bind-utils-9.11.4-26.P2.amzn2.5.aarch64
    bind-devel-9.11.4-26.P2.amzn2.5.aarch64
    bind-lite-devel-9.11.4-26.P2.amzn2.5.aarch64
    bind-chroot-9.11.4-26.P2.amzn2.5.aarch64
    bind-sdb-chroot-9.11.4-26.P2.amzn2.5.aarch64
    bind-export-libs-9.11.4-26.P2.amzn2.5.aarch64
    bind-export-devel-9.11.4-26.P2.amzn2.5.aarch64
    bind-debuginfo-9.11.4-26.P2.amzn2.5.aarch64

i686:
    bind-9.11.4-26.P2.amzn2.5.i686
    bind-pkcs11-9.11.4-26.P2.amzn2.5.i686
    bind-pkcs11-utils-9.11.4-26.P2.amzn2.5.i686
    bind-pkcs11-libs-9.11.4-26.P2.amzn2.5.i686
    bind-pkcs11-devel-9.11.4-26.P2.amzn2.5.i686
    bind-sdb-9.11.4-26.P2.amzn2.5.i686
    bind-libs-lite-9.11.4-26.P2.amzn2.5.i686
    bind-libs-9.11.4-26.P2.amzn2.5.i686
    bind-utils-9.11.4-26.P2.amzn2.5.i686
    bind-devel-9.11.4-26.P2.amzn2.5.i686
    bind-lite-devel-9.11.4-26.P2.amzn2.5.i686
    bind-chroot-9.11.4-26.P2.amzn2.5.i686
    bind-sdb-chroot-9.11.4-26.P2.amzn2.5.i686
    bind-export-libs-9.11.4-26.P2.amzn2.5.i686
    bind-export-devel-9.11.4-26.P2.amzn2.5.i686
    bind-debuginfo-9.11.4-26.P2.amzn2.5.i686

noarch:
    bind-license-9.11.4-26.P2.amzn2.5.noarch

src:
    bind-9.11.4-26.P2.amzn2.5.src

x86_64:
    bind-9.11.4-26.P2.amzn2.5.x86_64
    bind-pkcs11-9.11.4-26.P2.amzn2.5.x86_64
    bind-pkcs11-utils-9.11.4-26.P2.amzn2.5.x86_64
    bind-pkcs11-libs-9.11.4-26.P2.amzn2.5.x86_64
    bind-pkcs11-devel-9.11.4-26.P2.amzn2.5.x86_64
    bind-sdb-9.11.4-26.P2.amzn2.5.x86_64
    bind-libs-lite-9.11.4-26.P2.amzn2.5.x86_64
    bind-libs-9.11.4-26.P2.amzn2.5.x86_64
    bind-utils-9.11.4-26.P2.amzn2.5.x86_64
    bind-devel-9.11.4-26.P2.amzn2.5.x86_64
    bind-lite-devel-9.11.4-26.P2.amzn2.5.x86_64
    bind-chroot-9.11.4-26.P2.amzn2.5.x86_64
    bind-sdb-chroot-9.11.4-26.P2.amzn2.5.x86_64
    bind-export-libs-9.11.4-26.P2.amzn2.5.x86_64
    bind-export-devel-9.11.4-26.P2.amzn2.5.x86_64
    bind-debuginfo-9.11.4-26.P2.amzn2.5.x86_64

Additional References

Red Hat: CVE-2021-25215

Mitre: CVE-2021-25215

Select your cookie preferences

Customize cookie preferences

Essential

Performance

Functional

Advertising

ALAS2-2021-1635

Additional References