Msrc Azl3 Bind 9.16.44-2 On Azure Linux 3.0 vulnerabilities

CVE-2023-5679 [HIGH] Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rece

CVE-2023-5517 [HIGH] CWE-617 Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date wi

CVE-2023-6516 [HIGH] CWE-770 Specific recursive query patterns may lead to an out-of-memory condition Specific recursive query patterns may lead to an out-of-memory condition FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the o

CVE-2023-4408 [HIGH] Parsing large DNS messages may cause excessive CPU load Parsing large DNS messages may cause excessive CPU load FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2023-3341 [HIGH] CWE-787 A stack exhaustion flaw in control channel code may cause named to terminate unexpectedly A stack exhaustion flaw in control channel code may cause named to terminate unexpectedly FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent

CVE-2019-6470 [MEDIUM] dhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries dhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and m