| Package | bind9 |
|---|---|
| Version | 1:9.9.5.dfsg-9+deb8u30 (jessie), 1:9.10.3.dfsg.P4-12.3+deb9u15 (stretch) |
| Related CVEs | CVE-2023-3341 |
An issue has been discovered in BIND, a DNS server implementation.
A stack exhaustion flaw was discovered in the control channel code which may result in denial of service (named daemon crash).
For Debian 8 jessie, these problems have been fixed in version 1:9.9.5.dfsg-9+deb8u30.
For Debian 9 stretch, these problems have been fixed in version 1:9.10.3.dfsg.P4-12.3+deb9u15.
We recommend that you upgrade your bind9 packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.