[Git][security-tracker-team/security-tracker][master] Reference additional commits for bind9 issues from v9.20.23 tagged verison

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 30 21:40:10 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c7c9249b by Salvatore Bonaccorso at 2026-06-30T22:39:43+02:00
Reference additional commits for bind9 issues from v9.20.23 tagged verison

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -28685,22 +28685,26 @@ CVE-2026-3592 (BIND resolvers are vulnerable to an amplified resource consumptio
 	{DSA-6285-1}
 	- bind9 1:9.20.23-1
 	NOTE: https://kb.isc.org/docs/cve-2026-3592
-	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/42fb4c1b7d7381ec8019f9f668d8ee2157b408a3
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/06a0738b2bd48c0da847a55791d10dc0a8f32c93 (v9.20.23)
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/42fb4c1b7d7381ec8019f9f668d8ee2157b408a3 (9.16-branch)
 CVE-2026-3039 (BIND servers that are configured to use TKEY-based authentication via  ...)
 	{DSA-6285-1}
 	- bind9 1:9.20.23-1
 	NOTE: https://kb.isc.org/docs/cve-2026-3039
-	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/7f04d7104304fdc6b858c41bb44ad151b2c3e1b7
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/83ff826b22e181a8f73431193a9b4ace530a0299 (v9.20.23)
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/7f04d7104304fdc6b858c41bb44ad151b2c3e1b7 (9.16-branch)
 CVE-2026-5946 (Multiple flaws have been identified in `named` related to the handling ...)
 	{DSA-6285-1}
 	- bind9 1:9.20.23-1
 	NOTE: https://kb.isc.org/docs/cve-2026-5946
-	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/ec2c98181115bd5f6c7087fcc74d816490d4312e
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/4c1547e4b5afabdea3c3fe4ce81eb85acc990c9a (v9.20.23)
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/ec2c98181115bd5f6c7087fcc74d816490d4312e (9.16-branch)
 CVE-2026-5950 (An unbounded resend loop vulnerability exists in the BIND 9 resolver s ...)
 	{DSA-6285-1}
 	- bind9 1:9.20.23-1
 	NOTE: https://kb.isc.org/docs/cve-2026-5950
-	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/379ca10cf34759d0c007cebcd9280911161bca1a
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/1c390aacaedaf788a04ba053758c1b7f53673f0b (v9.20.23)
+	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/379ca10cf34759d0c007cebcd9280911161bca1a (9.16-branch)
 CVE-2026-5947 (Undefined behavior may result due to a race condition leading to a use ...)
 	- bind9 1:9.20.23-1
 	[trixie] - bind9 1:9.20.23-1~deb13u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7c9249be273120acb7ff648aeede1ee5e7a6cd6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7c9249be273120acb7ff648aeede1ee5e7a6cd6
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260630/10359c19/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list