Security update for bind SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:2033-1 Final 1 1 2024-06-16T10:20:06Z current 2024-06-16T10:20:06Z 2024-06-16T10:20:06Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for bind This update for bind fixes the following issues: - CVE-2023-4408: Fixed denial of service during DNS message parsing with different names (bsc#1219851) - CVE-2023-50387: Fixed denial of service during DNS messages validation with DNSSEC signatures (bsc#1219823) - CVE-2023-50868: Fixed denial of service during NSEC3 closest encloser proof preparation (bsc#1219826) - CVE-2023-5517: Fixed denial of service caused by specific queries with nxdomain-redirect enabled (bsc#1219852) - CVE-2023-6516: Fixed denial of service caused by specific queries that continuously triggered cache database maintenance (bsc#1219854) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES15-SP3-BYOS-Azure-2024-2033,Image SLES15-SP3-BYOS-EC2-HVM-2024-2033,Image SLES15-SP3-BYOS-GCE-2024-2033,Image SLES15-SP3-CHOST-BYOS-Aliyun-2024-2033,Image SLES15-SP3-CHOST-BYOS-Azure-2024-2033,Image SLES15-SP3-CHOST-BYOS-EC2-2024-2033,Image SLES15-SP3-CHOST-BYOS-GCE-2024-2033,Image SLES15-SP3-CHOST-BYOS-SAP-CCloud-2024-2033,Image SLES15-SP3-HPC-BYOS-Azure-2024-2033,Image SLES15-SP3-HPC-BYOS-EC2-HVM-2024-2033,Image SLES15-SP3-HPC-BYOS-GCE-2024-2033,Image SLES15-SP3-SAP-Azure-LI-BYOS-Production-2024-2033,Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production-2024-2033,Image SLES15-SP3-SAP-BYOS-Azure-2024-2033,Image SLES15-SP3-SAP-BYOS-EC2-HVM-2024-2033,Image SLES15-SP3-SAP-BYOS-GCE-2024-2033,Image SLES15-SP3-SAPCAL-Azure-2024-2033,Image SLES15-SP3-SAPCAL-EC2-HVM-2024-2033,Image SLES15-SP3-SAPCAL-GCE-2024-2033,SUSE-2024-2033,SUSE-SLE-Manager-Tools-For-Micro-5-2024-2033,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2033,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2033,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2033 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20242033-1/ Link for SUSE-SU-2024:2033-1 https://lists.suse.com/pipermail/sle-updates/2024-June/035606.html E-Mail link for SUSE-SU-2024:2033-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1219823 SUSE Bug 1219823 https://bugzilla.suse.com/1219826 SUSE Bug 1219826 https://bugzilla.suse.com/1219851 SUSE Bug 1219851 https://bugzilla.suse.com/1219852 SUSE Bug 1219852 https://bugzilla.suse.com/1219854 SUSE Bug 1219854 https://www.suse.com/security/cve/CVE-2023-4408/ SUSE CVE CVE-2023-4408 page https://www.suse.com/security/cve/CVE-2023-50387/ SUSE CVE CVE-2023-50387 page https://www.suse.com/security/cve/CVE-2023-50868/ SUSE CVE CVE-2023-50868 page https://www.suse.com/security/cve/CVE-2023-5517/ SUSE CVE CVE-2023-5517 page https://www.suse.com/security/cve/CVE-2023-6516/ SUSE CVE CVE-2023-6516 page Image SLES15-SP3-BYOS-Azure Image SLES15-SP3-BYOS-EC2-HVM Image SLES15-SP3-BYOS-GCE Image SLES15-SP3-CHOST-BYOS-Aliyun Image SLES15-SP3-CHOST-BYOS-Azure Image SLES15-SP3-CHOST-BYOS-EC2 Image SLES15-SP3-CHOST-BYOS-GCE Image SLES15-SP3-CHOST-BYOS-SAP-CCloud Image SLES15-SP3-HPC-BYOS-Azure Image SLES15-SP3-HPC-BYOS-EC2-HVM Image SLES15-SP3-HPC-BYOS-GCE Image SLES15-SP3-SAP-Azure-LI-BYOS-Production Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production Image SLES15-SP3-SAP-BYOS-Azure Image SLES15-SP3-SAP-BYOS-EC2-HVM Image SLES15-SP3-SAP-BYOS-GCE Image SLES15-SP3-SAPCAL-Azure Image SLES15-SP3-SAPCAL-EC2-HVM Image SLES15-SP3-SAPCAL-GCE SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Manager Client Tools for SLE Micro 5 libuv1-1.18.0-150000.3.2.1 bind-9.16.6-150000.12.74.2 bind-chrootenv-9.16.6-150000.12.74.2 bind-devel-9.16.6-150000.12.74.2 bind-devel-32bit-9.16.6-150000.12.74.2 bind-devel-64bit-9.16.6-150000.12.74.2 bind-doc-9.16.6-150000.12.74.2 bind-utils-9.16.6-150000.12.74.2 libbind9-1600-9.16.6-150000.12.74.2 libbind9-1600-32bit-9.16.6-150000.12.74.2 libbind9-1600-64bit-9.16.6-150000.12.74.2 libdns1605-9.16.6-150000.12.74.2 libdns1605-32bit-9.16.6-150000.12.74.2 libdns1605-64bit-9.16.6-150000.12.74.2 libirs-devel-9.16.6-150000.12.74.2 libirs1601-9.16.6-150000.12.74.2 libirs1601-32bit-9.16.6-150000.12.74.2 libirs1601-64bit-9.16.6-150000.12.74.2 libisc1606-9.16.6-150000.12.74.2 libisc1606-32bit-9.16.6-150000.12.74.2 libisc1606-64bit-9.16.6-150000.12.74.2 libisccc1600-9.16.6-150000.12.74.2 libisccc1600-32bit-9.16.6-150000.12.74.2 libisccc1600-64bit-9.16.6-150000.12.74.2 libisccfg1600-9.16.6-150000.12.74.2 libisccfg1600-32bit-9.16.6-150000.12.74.2 libisccfg1600-64bit-9.16.6-150000.12.74.2 libns1604-9.16.6-150000.12.74.2 libns1604-32bit-9.16.6-150000.12.74.2 libns1604-64bit-9.16.6-150000.12.74.2 libuv-devel-1.18.0-150000.3.2.1 python3-bind-9.16.6-150000.12.74.2 libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-BYOS-Azure libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-BYOS-EC2-HVM libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-BYOS-GCE libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-CHOST-BYOS-Aliyun libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-CHOST-BYOS-Azure libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-CHOST-BYOS-EC2 libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-CHOST-BYOS-GCE libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-CHOST-BYOS-SAP-CCloud libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-HPC-BYOS-Azure libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-HPC-BYOS-EC2-HVM libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-HPC-BYOS-GCE libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAP-Azure-LI-BYOS-Production libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAP-BYOS-Azure libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAP-BYOS-EC2-HVM libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAP-BYOS-GCE libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAPCAL-Azure libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAPCAL-EC2-HVM libuv1-1.18.0-150000.3.2.1 as a component of Image SLES15-SP3-SAPCAL-GCE bind-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bind-chrootenv-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bind-devel-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bind-doc-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bind-utils-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libbind9-1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libdns1605-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libirs-devel-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libirs1601-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libisc1606-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libisccc1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libisccfg1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libns1604-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libuv-devel-1.18.0-150000.3.2.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS libuv1-1.18.0-150000.3.2.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS python3-bind-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS bind-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bind-chrootenv-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bind-devel-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bind-doc-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bind-utils-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libbind9-1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libdns1605-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libirs-devel-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libirs1601-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libisc1606-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libisccc1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libisccfg1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libns1604-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libuv-devel-1.18.0-150000.3.2.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS libuv1-1.18.0-150000.3.2.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS python3-bind-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS bind-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bind-chrootenv-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bind-devel-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bind-doc-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bind-utils-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libbind9-1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libdns1605-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libirs-devel-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libirs1601-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libisc1606-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libisccc1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libisccfg1600-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libns1604-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libuv-devel-1.18.0-150000.3.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 libuv1-1.18.0-150000.3.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 python3-bind-9.16.6-150000.12.74.2 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 bind-utils-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libbind9-1600-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libbind9-1600-64bit-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libdns1605-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libdns1605-64bit-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libirs1601-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libirs1601-64bit-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libisc1606-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libisc1606-64bit-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libisccc1600-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libisccc1600-64bit-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libisccfg1600-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libisccfg1600-64bit-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libns1604-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 libuv1-1.18.0-150000.3.2.1 as a component of SUSE Manager Client Tools for SLE Micro 5 python3-bind-9.16.6-150000.12.74.2 as a component of SUSE Manager Client Tools for SLE Micro 5 The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. This issue affects both authoritative servers and recursive resolvers. This issue affects BIND 9 versions 9.0.0 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1. CVE-2023-4408 Image SLES15-SP3-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Aliyun:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-EC2:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-SAP-CCloud:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-GCE:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:python3-bind-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:bind-utils-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libns1604-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libuv1-1.18.0-150000.3.2.1 SUSE Manager Client Tools for SLE Micro 5:python3-bind-9.16.6-150000.12.74.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242033-1/ https://www.suse.com/security/cve/CVE-2023-4408.html CVE-2023-4408 https://bugzilla.suse.com/1219823 SUSE Bug 1219823 https://bugzilla.suse.com/1219851 SUSE Bug 1219851 https://bugzilla.suse.com/1221586 SUSE Bug 1221586 Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records. CVE-2023-50387 Image SLES15-SP3-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Aliyun:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-EC2:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-SAP-CCloud:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-GCE:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:python3-bind-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:bind-utils-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libns1604-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libuv1-1.18.0-150000.3.2.1 SUSE Manager Client Tools for SLE Micro 5:python3-bind-9.16.6-150000.12.74.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242033-1/ https://www.suse.com/security/cve/CVE-2023-50387.html CVE-2023-50387 https://bugzilla.suse.com/1219823 SUSE Bug 1219823 https://bugzilla.suse.com/1220717 SUSE Bug 1220717 https://bugzilla.suse.com/1221586 SUSE Bug 1221586 The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations. CVE-2023-50868 Image SLES15-SP3-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Aliyun:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-EC2:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-SAP-CCloud:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-GCE:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:python3-bind-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:bind-utils-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libns1604-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libuv1-1.18.0-150000.3.2.1 SUSE Manager Client Tools for SLE Micro 5:python3-bind-9.16.6-150000.12.74.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242033-1/ https://www.suse.com/security/cve/CVE-2023-50868.html CVE-2023-50868 https://bugzilla.suse.com/1219823 SUSE Bug 1219823 https://bugzilla.suse.com/1219826 SUSE Bug 1219826 https://bugzilla.suse.com/1221586 SUSE Bug 1221586 A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure when: - `nxdomain-redirect <domain>;` is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. This issue affects BIND 9 versions 9.12.0 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1. CVE-2023-5517 Image SLES15-SP3-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Aliyun:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-EC2:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-SAP-CCloud:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-GCE:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:python3-bind-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:bind-utils-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libns1604-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libuv1-1.18.0-150000.3.2.1 SUSE Manager Client Tools for SLE Micro 5:python3-bind-9.16.6-150000.12.74.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242033-1/ https://www.suse.com/security/cve/CVE-2023-5517.html CVE-2023-5517 https://bugzilla.suse.com/1219852 SUSE Bug 1219852 To keep its cache database efficient, `named` running as a recursive resolver occasionally attempts to clean up the database. It uses several methods, including some that are asynchronous: a small chunk of memory pointing to the cache element that can be cleaned up is first allocated and then queued for later processing. It was discovered that if the resolver is continuously processing query patterns triggering this type of cache-database maintenance, `named` may not be able to handle the cleanup events in a timely manner. This in turn enables the list of queued cleanup events to grow infinitely large over time, allowing the configured `max-cache-size` limit to be significantly exceeded. This issue affects BIND 9 versions 9.16.0 through 9.16.45 and 9.16.8-S1 through 9.16.45-S1. CVE-2023-6516 Image SLES15-SP3-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Aliyun:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-EC2:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-CHOST-BYOS-SAP-CCloud:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-HPC-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAP-BYOS-GCE:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-Azure:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-EC2-HVM:libuv1-1.18.0-150000.3.2.1 Image SLES15-SP3-SAPCAL-GCE:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server 15 SP2-LTSS:python3-bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-chrootenv-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-doc-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:bind-utils-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libbind9-1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libdns1605-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs-devel-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libirs1601-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisc1606-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccc1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libisccfg1600-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libns1604-9.16.6-150000.12.74.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv-devel-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:libuv1-1.18.0-150000.3.2.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:python3-bind-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:bind-utils-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libbind9-1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libdns1605-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libirs1601-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisc1606-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccc1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-64bit-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libisccfg1600-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libns1604-9.16.6-150000.12.74.2 SUSE Manager Client Tools for SLE Micro 5:libuv1-1.18.0-150000.3.2.1 SUSE Manager Client Tools for SLE Micro 5:python3-bind-9.16.6-150000.12.74.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242033-1/ https://www.suse.com/security/cve/CVE-2023-6516.html CVE-2023-6516 https://bugzilla.suse.com/1219854 SUSE Bug 1219854