pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: [pkgsrc-2015Q4] pkgsrc/net/bind99
Module Name: pkgsrc
Committed By: bsiegert
Date: Wed Jan 20 19:33:53 UTC 2016
Modified Files:
pkgsrc/net/bind99 [pkgsrc-2015Q4]: Makefile distinfo
Log Message:
Pullup ticket #4902 - requested by taca
net/bind99: security fix
Revisions pulled up:
- net/bind99/Makefile 1.51
- net/bind99/distinfo 1.36
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 20 02:17:12 UTC 2016
Modified Files:
pkgsrc/net/bind99: Makefile distinfo
Log Message:
Update bind99 to 9.9.8pl3 (BIND 9.9.8-P3).
Security Fixes
* Specific APL data could trigger an INSIST. This flaw was discovered
by Brian Mitchell and is disclosed in CVE-2015-8704. [RT #41396]
* Named is potentially vulnerable to the OpenSSL vulnerabilty
described in CVE-2015-3193.
* Insufficient testing when parsing a message allowed records with an
incorrect class to be be accepted, triggering a REQUIRE failure
when those records were subsequently cached. This flaw is disclosed
in CVE-2015-8000. [RT #40987]
* Incorrect reference counting could result in an INSIST failure if a
socket error occurred while performing a lookup. This flaw is
disclosed in CVE-2015-8461. [RT#40945]
New Features
* None
Feature Changes
* Updated the compiled in addresses for H.ROOT-SERVERS.NET.
Bug Fixes
* Authoritative servers that were marked as bogus (e.g. blackholed in
configuration or with invalid addresses) were being queried anyway.
[RT #41321]
To generate a diff of this commit:
cvs rdiff -u -r1.50 -r1.50.2.1 pkgsrc/net/bind99/Makefile
cvs rdiff -u -r1.35 -r1.35.2.1 pkgsrc/net/bind99/distinfo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Home |
Main Index |
Thread Index |
Old Index