[Git][security-tracker-team/security-tracker][master] bind9 DSA

Wed May 20 21:23:37 BST 2026


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
48d8b00b by Moritz Mühlenhoff at 2026-05-20T22:22:36+02:00
bind9 DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -204,9 +204,11 @@ CVE-2026-5950 (An unbounded resend loop vulnerability exists in the BIND 9 resol
 	NOTE: https://kb.isc.org/docs/cve-2026-5950
 CVE-2026-5947 (Undefined behavior may result due to a race condition leading to a use ...)
 	- bind9 1:9.20.23-1
+	[trixie] - bind9 1:9.20.23-1~deb13u1
 	NOTE: https://kb.isc.org/docs/cve-2026-5947
 CVE-2026-3593 (A use-after-free vulnerability exists within the DNS-over-HTTPS implem ...)
 	- bind9 1:9.20.23-1
+	[trixie] - bind9 1:9.20.23-1~deb13u1
 	NOTE: https://kb.isc.org/docs/cve-2026-3593
 CVE-2026-44608 (NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a loc ...)
 	- unbound <unfixed> (bug #1137187)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[20 May 2026] DSA-6285-1 bind9 - security update
+	{CVE-2026-3039 CVE-2026-3592 CVE-2026-5946 CVE-2026-5950}
+	[bookworm] - bind9 1:9.18.49-1~deb12u1
+	[trixie] - bind9 1:9.20.23-1~deb13u1
 [20 May 2026] DSA-6284-1 pdns - security update
 	{CVE-2026-42000 CVE-2026-42001 CVE-2026-42002 CVE-2026-42396}
 	[trixie] - pdns 4.9.15-0+deb13u1


=====================================
data/dsa-needed.txt
=====================================
@@ -17,8 +17,6 @@ amd64-microcode (carnil)
 --
 atril
 --
-bind9
---
 botan3/stable
 --
 ceph (carnil)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48d8b00b8dd6ca6b9bec25d4a50b04505db38c12

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48d8b00b8dd6ca6b9bec25d4a50b04505db38c12
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260520/cfc685a6/attachment-0001.htm>
