Security Updates for Fedora 43 Address Multiple CVEs

Security Updates for Fedora 43 Address Multiple CVEs

First seen 26 May 2026, 14:44 UTC Linuxsecurity 87% similarity 57.9

Article Content

Browse articles
ThreatCluster

On May 26, 2026, Fedora released updates for bind-dyndb-ldap and bind, addressing critical security vulnerabilities. The updates include fixes for CVE-2026-3592, which limits resolver server list size, CVE-2026-3039, which resolves a GSS-API resource leak, and CVE-2026-5946, which disables recursion, UPDATE, and NOTIFY for non-IN views. All three CVEs were published on May 20, 2026. Affected systems include Fedora 43 installations using bind and bind-dyndb-ldap. Users are advised to update to version 9.18.49 to mitigate these vulnerabilities. The updates are crucial for maintaining the security and integrity of systems relying on these services.

Key Points: • Fedora 43 updates address three critical CVEs affecting bind and bind-dyndb-ldap. • CVE-2026-3592 limits resolver server list size to enhance security. • Users are urged to update to version 9.18.49 to mitigate these vulnerabilities.

ThreatCluster AI

Timeline

2026-05-20
CVE-2026-3039 published
CVE-2026-3039 addresses a GSS-API resource leak in bind and bind-dyndb-ldap.
Linuxsecurity
2026-05-20
CVE-2026-3592 published
CVE-2026-3592 limits the resolver server list size to prevent potential exploitation.
Linuxsecurity
2026-05-20
CVE-2026-5946 published
CVE-2026-5946 disables recursion, UPDATE, and NOTIFY for non-IN views to enhance security.
Linuxsecurity
2026-05-26
Fedora 43 updates released
Fedora released updates for bind and bind-dyndb-ldap to address critical vulnerabilities.
Linuxsecurity

Community

Browse all →