An update for hesiod is now available for HCE 1.1

HCE1-SA-2022-0009 An update for hesiod is now available for HCE 1.1 Critical HCE 1.1 Security Fix(es): The read_config_file function in lib/hesiod.c in Hesiod 3.2.1 falls back to the ".athena.mit.edu" default domain when opening the configuration file fails, which allows remote attackers to gain root privileges by poisoning the DNS cache. (CVE-2016-10152) The hesiod_init function in lib/hesiod.c in Hesiod 3.2.1 compares EUID with UID to determine whether to use configurations from environment variables, which allows local users to gain privileges via the (1) HESIOD_CONFIG or (2) HES_DOMAIN environment variable and leveraging certain SUID/SGUID binary. (CVE-2016-10151) HCE 1.1 hesiod-3.2.1-4.hce1c.x86_64.rpm