Lintlafatso tse lokisoang makaleng a tsitsitseng a seva sa BIND DNS 9.11.37, 9.16.27 le 9.18.1 li phatlalalitsoe, tse lokisang liphoso tse 'ne:
- CVE-2021-25220 - monyetla oa ho kenya lirekoto tse fosahetseng tsa NS ka har'a cache ea seva ea DNS (chefo ea cache), e ka lebisang ho fihlella li-server tse fosahetseng tsa DNS tse fanang ka tlhahisoleseling ea bohata. Bothata bo iponahatsa ho bahlalosi ba sebetsang ka mekhoa ea "pele pele" (kamehla) kapa "pele feela", ha ho ka ba le tšitiso ea e mong oa ba fetisang litaba (lirekoto tsa NS tse amohetsoeng ho tsoa ho motho ea fetisang litaba li lula ka har'a cache mme li ka lebisa ho ho fihlella seva e fosahetseng ea DNS ha u etsa lipotso tse iphetang).
- CVE-2022-0396 - Denial of Service (likhokahanyo li leketlile ka ho sa feleng sebakeng sa CLOSE_WAIT) ka ho romella liphutheloana tsa TCP tse entsoeng ka mokhoa o ikhethileng. Taba ena e etsahala feela ha tlhophiso ea ho boloka-karabelo-taelo e nolofalitsoe, e seng ea kamehla, le ha khetho ea ho boloka-karabo e boletsoeng ho ACL.
- CVE-2022-0635 - Monyetla oa ho senya ts'ebetso e boletsoeng ka ho romela likopo tse itseng ho sevaBothata bo hlaha ha ho sebediswa DNSSEC-Validated Cache, e nolofalletswang ka boiketsetso lekaleng la 9.18 (dnssec-validation le di-setting tsa synth-from-dnssec).
- CVE-2022-0667 - Ho senyeha ho ka bang teng ha ts'ebetso e boletsoeng ha ho ntse ho sebetsa lipotso tse chechisitsoeng tsa DS. Taba ena e hlaha feela lekaleng la BIND 9.18 mme e bakoa ke phoso ha ho etsoa botjha khoutu ea moreki bakeng sa phetisetso ea lipotso.
Source: opennet.ru
