Security update for bind SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:3976-1 Final 1 1 2025-11-06T13:14:37Z current 2025-11-06T13:14:37Z 2025-11-06T13:14:37Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for bind This update for bind fixes the following issues: - CVE-2025-40778: Address various spoofing attacks (bsc#1252379). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES12-SP5-Azure-HPC-BYOS-2025-3976,Image SLES12-SP5-Azure-HPC-On-Demand-2025-3976,Image SLES12-SP5-Azure-SAP-BYOS-2025-3976,SUSE-2025-3976,SUSE-SLE-SERVER-12-SP5-LTSS-2025-3976,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3976 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20253976-1/ Link for SUSE-SU-2025:3976-1 https://lists.suse.com/pipermail/sle-security-updates/2025-November/023172.html E-Mail link for SUSE-SU-2025:3976-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1252379 SUSE Bug 1252379 https://www.suse.com/security/cve/CVE-2025-40778/ SUSE CVE CVE-2025-40778 page Image SLES12-SP5-Azure-HPC-BYOS Image SLES12-SP5-Azure-HPC-On-Demand Image SLES12-SP5-Azure-SAP-BYOS SUSE Linux Enterprise Server 12 SP5-LTSS SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 bind-utils-9.11.22-3.65.1 libbind9-161-9.11.22-3.65.1 libdns1110-9.11.22-3.65.1 libirs161-9.11.22-3.65.1 libisc1107-9.11.22-3.65.1 libisccc161-9.11.22-3.65.1 libisccfg163-9.11.22-3.65.1 liblwres161-9.11.22-3.65.1 python-bind-9.11.22-3.65.1 bind-9.11.22-3.65.1 bind-chrootenv-9.11.22-3.65.1 bind-devel-9.11.22-3.65.1 bind-devel-32bit-9.11.22-3.65.1 bind-devel-64bit-9.11.22-3.65.1 bind-doc-9.11.22-3.65.1 bind-lwresd-9.11.22-3.65.1 libbind9-161-32bit-9.11.22-3.65.1 libbind9-161-64bit-9.11.22-3.65.1 libdns1110-32bit-9.11.22-3.65.1 libdns1110-64bit-9.11.22-3.65.1 libirs-devel-9.11.22-3.65.1 libirs161-32bit-9.11.22-3.65.1 libirs161-64bit-9.11.22-3.65.1 libisc1107-32bit-9.11.22-3.65.1 libisc1107-64bit-9.11.22-3.65.1 libisccc161-32bit-9.11.22-3.65.1 libisccc161-64bit-9.11.22-3.65.1 libisccfg163-32bit-9.11.22-3.65.1 libisccfg163-64bit-9.11.22-3.65.1 liblwres161-32bit-9.11.22-3.65.1 liblwres161-64bit-9.11.22-3.65.1 bind-utils-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS libbind9-161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS libdns1110-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS libirs161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS libisc1107-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS libisccc161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS libisccfg163-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS liblwres161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS python-bind-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-BYOS bind-utils-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand libbind9-161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand libdns1110-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand libirs161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand libisc1107-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand libisccc161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand libisccfg163-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand liblwres161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand python-bind-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-HPC-On-Demand bind-utils-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS libbind9-161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS libdns1110-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS libirs161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS libisc1107-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS libisccc161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS libisccfg163-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS liblwres161-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS python-bind-9.11.22-3.65.1 as a component of Image SLES12-SP5-Azure-SAP-BYOS bind-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS bind-chrootenv-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS bind-devel-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS bind-doc-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS bind-utils-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libbind9-161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libdns1110-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libirs161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libisc1107-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libisc1107-32bit-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libisccc161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libisccfg163-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS liblwres161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS python-bind-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS bind-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 bind-chrootenv-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 bind-devel-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 bind-doc-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 bind-utils-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libbind9-161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libdns1110-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libirs161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libisc1107-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libisc1107-32bit-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libisccc161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libisccfg163-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 liblwres161-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 python-bind-9.11.22-3.65.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1. CVE-2025-40778 Image SLES12-SP5-Azure-HPC-BYOS:bind-utils-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:libbind9-161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:libdns1110-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:libirs161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:libisc1107-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:libisccc161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:libisccfg163-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:liblwres161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-BYOS:python-bind-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:bind-utils-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:libbind9-161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:libdns1110-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:libirs161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:libisc1107-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:libisccc161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:libisccfg163-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:liblwres161-9.11.22-3.65.1 Image SLES12-SP5-Azure-HPC-On-Demand:python-bind-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:bind-utils-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:libbind9-161-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:libdns1110-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:libirs161-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:libisc1107-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:libisccc161-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:libisccfg163-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:liblwres161-9.11.22-3.65.1 Image SLES12-SP5-Azure-SAP-BYOS:python-bind-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:bind-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:bind-chrootenv-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:bind-devel-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:bind-doc-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:bind-utils-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libbind9-161-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libdns1110-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libirs161-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libisc1107-32bit-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libisc1107-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libisccc161-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libisccfg163-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:liblwres161-9.11.22-3.65.1 SUSE Linux Enterprise Server 12 SP5-LTSS:python-bind-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:bind-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:bind-chrootenv-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:bind-devel-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:bind-doc-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:bind-utils-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libbind9-161-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libdns1110-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libirs161-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libisc1107-32bit-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libisc1107-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libisccc161-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libisccfg163-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:liblwres161-9.11.22-3.65.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:python-bind-9.11.22-3.65.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20253976-1/ https://www.suse.com/security/cve/CVE-2025-40778.html CVE-2025-40778 https://bugzilla.suse.com/1252379 SUSE Bug 1252379