Professional Documents
Culture Documents
Bdds 9.3.1-002 REL-251 x86 64
Bdds 9.3.1-002 REL-251 x86 64
Contents
ii | CONFIDENTIAL
REL-251 Patch Release Notes
Description of issue
CVE-2021-43527: Under some circumstances, some NSS (Network Security Services) versions prior
to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow.
A vulnerability in some Libnss (Libnss3) versions prior to 3.73 or 3.68.1 ESR can make it vulnerable to
a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. This can impact BlueCat
applications that use NSS for certificate and security validation.
Impact
Successful exploitation of this vulnerability could lead to disclosure of sensitive information, addition or
modification of data, or Denial of Service (DoS).
Note: For more information, refer to article KI-025003 on BlueCat Customer Care.
Effects on service
DNS and DHCP services are not affected by installation of this patch.
Attention: BlueCat advises customers to apply this patch during a controlled or planned
outage. Customers should schedule a maintenance window during non-peak times in order to
minimize the effects of this interruption.
CONFIDENTIAL | 3
REL-251 Patch Release Notes for DNS/DHCP Server v9.3.1
Rollback support
This patch supports rollback. For details, refer to Rolling back the patch on page 4.
Location of patch
Customers can obtain this patch from article 17915 on BlueCat Customer Care (login required).
• bdds_9.3.1-002_REL-251_x86_64.zip—installation file. This zip contains the following artifacts:
• bdds_9.3.1-002-251_x86_64.tar—tarball file.
• bdds_9.3.1-002_REL-251_x86_64.key—associated public key file.
• bdds_9.3.1-002_REL-251_x86_64.run.zip—runzip file. This zip file contains the following artifacts:
• bdds_9.3.1-002_REL-251_x86_64.run—run file.
Attention: This patch can be applied on DNS/DHCP Server v9.3.1 only.
4 | CONFIDENTIAL
REL-251 Patch Release Notes
CONFIDENTIAL | 5
REL-251 Patch Release Notes for DNS/DHCP Server v9.3.1
Copyright
©2001—2022 BlueCat Networks (USA) Inc. and its affiliates (collectively ‘BlueCat’). All rights reserved.
This document contains BlueCat confidential and proprietary information and is intended only for the
person(s) to whom it is transmitted. Any reproduction of this document, in whole or in part, without the prior
written consent of BlueCat is prohibited.
Trademarks
Proteus, Adonis, BlueCat DNS/DHCP Server, BlueCat Address Manager, BlueCat DNS Edge, BlueCat
Device Registration Portal, BlueCat DNS Integrity, BlueCat Gateway, BlueCat Mobile Security, BlueCat
Address Manager for Windows Server, and BlueCat Threat Protection are trademarks of BlueCat.
iDRAC is a registered trademark of Dell Inc. Windows is a registered trademark of Microsoft Corporation.
UNIX is a registered trademark of The Open Group. Linux is a registered trademark of Linus Torvalds.
QRadar is a registered trademark of IBM. ArcSight is a registered trademark of Hewlett Packard. Ubuntu is
a registered trademark of Canonical Ltd. CentOS is a trademark of the CentOS Project. All other product
and company names are registered trademarks or trademarks of their respective holders.
6 | CONFIDENTIAL
BlueCat Networks (USA) Inc. and its affiliates.
www.bluecatnetworks.com
Toll Free: 1.866.895.6931
Document #: 3347
Published in Canada
Date: January 2022