[SECURITY] [DSA 6285-1] bind9 security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 6285-1] bind9 security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Wed, 20 May 2026 20:26:46 +0000
Message-id: <[🔎] ag4ZBnc1U2H1F-QS@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6285-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
May 20, 2026                          https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : bind9
CVE ID         : CVE-2026-3039 CVE-2026-3592 CVE-2026-5946
                 CVE-2026-5950 CVE-2026-5947 CVE-2026-3593

Several vulnerabilities were discovered in BIND, a DNS server
implementation, which may result in denial of service.

For the oldstable distribution (bookworm), these problems have been fixed
in version 1:9.18.49-1~deb12u1.

For the stable distribution (trixie), these problems have been fixed in
version 1:9.20.23-1~deb13u1.

We recommend that you upgrade your bind9 packages.

For the detailed security status of bind9 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/bind9

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=Pv4Z
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 6284-1] pdns security update
Next by Date: [SECURITY] [DSA 6286-1] evince security update
Previous by thread: [SECURITY] [DSA 6284-1] pdns security update
Next by thread: [SECURITY] [DSA 6286-1] evince security update
Index(es):
- Date
- Thread