Source-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[src/trunk]: src/external/bsd/bind/dist Changes for 9.10.2-P4:



details:   https://anonhg.NetBSD.org/src/rev/603b0a674b30
branches:  trunk
changeset: 810545:603b0a674b30
user:      christos <christos%NetBSD.org@localhost>
date:      Thu Sep 03 07:33:34 2015 +0000

description:
Changes for 9.10.2-P4:

4170.  [security]      An incorrect boundary check in the OPENPGPKEY
                       rdatatype could trigger an assertion failure.
                       (CVE-2015-5986) [RT #40286]

4168.  [security]      A buffer accounting error could trigger an
                       assertion failure when parsing certain malformed
                       DNSSEC keys. (CVE-2015-5722) [RT #40212]

diffstat:

 external/bsd/bind/dist/CHANGES                              |   10 ++
 external/bsd/bind/dist/README                               |    5 +
 external/bsd/bind/dist/doc/arm/Bv9ARM.ch04.html             |    4 +-
 external/bsd/bind/dist/doc/arm/Bv9ARM.ch06.html             |    4 +-
 external/bsd/bind/dist/doc/arm/Bv9ARM.ch07.html             |    4 +-
 external/bsd/bind/dist/doc/arm/Bv9ARM.ch08.html             |    4 +-
 external/bsd/bind/dist/doc/arm/Bv9ARM.ch09.html             |   27 ++++++-
 external/bsd/bind/dist/doc/arm/Bv9ARM.html                  |   22 +++---
 external/bsd/bind/dist/doc/arm/Bv9ARM.pdf                   |  Bin 
 external/bsd/bind/dist/doc/arm/man.arpaname.html            |   10 +-
 external/bsd/bind/dist/doc/arm/man.ddns-confgen.html        |   12 +-
 external/bsd/bind/dist/doc/arm/man.delv.html                |   16 ++--
 external/bsd/bind/dist/doc/arm/man.dig.html                 |   22 +++---
 external/bsd/bind/dist/doc/arm/man.dnssec-checkds.html      |   12 +-
 external/bsd/bind/dist/doc/arm/man.dnssec-coverage.html     |   12 +-
 external/bsd/bind/dist/doc/arm/man.dnssec-dsfromkey.html    |   18 ++--
 external/bsd/bind/dist/doc/arm/man.dnssec-importkey.html    |   16 ++--
 external/bsd/bind/dist/doc/arm/man.dnssec-keyfromlabel.html |   16 ++--
 external/bsd/bind/dist/doc/arm/man.dnssec-keygen.html       |   18 ++--
 external/bsd/bind/dist/doc/arm/man.dnssec-revoke.html       |   12 +-
 external/bsd/bind/dist/doc/arm/man.dnssec-settime.html      |   16 ++--
 external/bsd/bind/dist/doc/arm/man.dnssec-signzone.html     |   14 ++--
 external/bsd/bind/dist/doc/arm/man.dnssec-verify.html       |   12 +-
 external/bsd/bind/dist/doc/arm/man.genrandom.html           |   12 +-
 external/bsd/bind/dist/doc/arm/man.host.html                |   12 +-
 external/bsd/bind/dist/doc/arm/man.isc-hmac-fixup.html      |   12 +-
 external/bsd/bind/dist/doc/arm/man.named-checkconf.html     |   14 ++--
 external/bsd/bind/dist/doc/arm/man.named-checkzone.html     |   14 ++--
 external/bsd/bind/dist/doc/arm/man.named-journalprint.html  |   10 +-
 external/bsd/bind/dist/doc/arm/man.named-rrchecker.html     |    8 +-
 external/bsd/bind/dist/doc/arm/man.named.html               |   18 ++--
 external/bsd/bind/dist/doc/arm/man.nsec3hash.html           |   12 +-
 external/bsd/bind/dist/doc/arm/man.nsupdate.html            |   16 ++--
 external/bsd/bind/dist/doc/arm/man.rndc-confgen.html        |   14 ++--
 external/bsd/bind/dist/doc/arm/man.rndc.conf.html           |   14 ++--
 external/bsd/bind/dist/doc/arm/man.rndc.html                |   16 ++--
 external/bsd/bind/dist/lib/dns/api                          |    2 +-
 external/bsd/bind/dist/lib/dns/hmac_link.c                  |   32 ++++++--
 external/bsd/bind/dist/lib/dns/include/dst/dst.h            |    3 +-
 external/bsd/bind/dist/lib/dns/ncache.c                     |   11 +--
 external/bsd/bind/dist/lib/dns/openssldh_link.c             |   37 +++++----
 external/bsd/bind/dist/lib/dns/openssldsa_link.c            |   42 +++++++----
 external/bsd/bind/dist/lib/dns/opensslecdsa_link.c          |    8 +-
 external/bsd/bind/dist/lib/dns/opensslrsa_link.c            |   20 +++--
 external/bsd/bind/dist/lib/dns/rdata.c                      |    4 +-
 external/bsd/bind/dist/lib/dns/resolver.c                   |    9 ++-
 external/bsd/bind/dist/srcid                                |    2 +-
 external/bsd/bind/dist/version                              |    2 +-
 48 files changed, 346 insertions(+), 284 deletions(-)

diffs (truncated from 2543 to 300 lines):

diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/CHANGES
--- a/external/bsd/bind/dist/CHANGES    Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/CHANGES    Thu Sep 03 07:33:34 2015 +0000
@@ -1,3 +1,13 @@
+       --- 9.10.2-P4 released ---
+
+4170.  [security]      An incorrect boundary check in the OPENPGPKEY
+                       rdatatype could trigger an assertion failure.
+                       (CVE-2015-5986) [RT #40286]
+
+4168.  [security]      A buffer accounting error could trigger an
+                       assertion failure when parsing certain malformed 
+                       DNSSEC keys. (CVE-2015-5722) [RT #40212]
+
        --- 9.10.2-P3 released ---
 
 4165.  [security]      A failure to reset a value to NULL in tkey.c could
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/README
--- a/external/bsd/bind/dist/README     Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/README     Thu Sep 03 07:33:34 2015 +0000
@@ -51,6 +51,11 @@
        For up-to-date release notes and errata, see
        http://www.isc.org/software/bind9/releasenotes
 
+BIND 9.10.2-P4
+
+       BIND 9.10.2-P4 is a security release addressing the flaws
+       described in CVE-2015-5722 and CVE-2015-5986.
+
 BIND 9.10.2-P3
 
        BIND 9.10.2-P3 is a security release addressing the flaw
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/Bv9ARM.ch04.html
--- a/external/bsd/bind/dist/doc/arm/Bv9ARM.ch04.html   Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/Bv9ARM.ch04.html   Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: Bv9ARM.ch04.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: Bv9ARM.ch04.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
@@ -2294,6 +2294,6 @@
 </tr>
 </table>
 </div>
-<p style="text-align: center;">BIND 9.10.2-P3</p>
+<p style="text-align: center;">BIND 9.10.2-P4</p>
 </body>
 </html>
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/Bv9ARM.ch06.html
--- a/external/bsd/bind/dist/doc/arm/Bv9ARM.ch06.html   Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/Bv9ARM.ch06.html   Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: Bv9ARM.ch06.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: Bv9ARM.ch06.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
@@ -12150,6 +12150,6 @@
 </tr>
 </table>
 </div>
-<p style="text-align: center;">BIND 9.10.2-P3</p>
+<p style="text-align: center;">BIND 9.10.2-P4</p>
 </body>
 </html>
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/Bv9ARM.ch07.html
--- a/external/bsd/bind/dist/doc/arm/Bv9ARM.ch07.html   Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/Bv9ARM.ch07.html   Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: Bv9ARM.ch07.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: Bv9ARM.ch07.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
@@ -247,6 +247,6 @@
 </tr>
 </table>
 </div>
-<p style="text-align: center;">BIND 9.10.2-P3</p>
+<p style="text-align: center;">BIND 9.10.2-P4</p>
 </body>
 </html>
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/Bv9ARM.ch08.html
--- a/external/bsd/bind/dist/doc/arm/Bv9ARM.ch08.html   Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/Bv9ARM.ch08.html   Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: Bv9ARM.ch08.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: Bv9ARM.ch08.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
@@ -135,6 +135,6 @@
 </tr>
 </table>
 </div>
-<p style="text-align: center;">BIND 9.10.2-P3</p>
+<p style="text-align: center;">BIND 9.10.2-P4</p>
 </body>
 </html>
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/Bv9ARM.ch09.html
--- a/external/bsd/bind/dist/doc/arm/Bv9ARM.ch09.html   Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/Bv9ARM.ch09.html   Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: Bv9ARM.ch09.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: Bv9ARM.ch09.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
@@ -45,7 +45,7 @@
 <div class="toc">
 <p><b>Table of Contents</b></p>
 <dl>
-<dt><span class="sect1"><a href="Bv9ARM.ch09.html#id2610666">Release Notes for BIND Version 9.10.2-P3</a></span></dt>
+<dt><span class="sect1"><a href="Bv9ARM.ch09.html#id2610666">Release Notes for BIND Version 9.10.2-P4</a></span></dt>
 <dd><dl>
 <dt><span class="sect2"><a href="Bv9ARM.ch09.html#relnotes_intro">Introduction</a></span></dt>
 <dt><span class="sect2"><a href="Bv9ARM.ch09.html#relnotes_download">Download</a></span></dt>
@@ -60,7 +60,7 @@
 </div>
 <div class="sect1" lang="en">
 <div class="titlepage"><div><div><h2 class="title" style="clear: both">
-<a name="id2610666"></a>Release Notes for BIND Version 9.10.2-P3</h2></div></div></div>
+<a name="id2610666"></a>Release Notes for BIND Version 9.10.2-P4</h2></div></div></div>
 <div class="sect2" lang="en">
 <div class="titlepage"><div><div><h3 class="title">
 <a name="relnotes_intro"></a>Introduction</h3></div></div></div>
@@ -68,6 +68,10 @@
       This document summarizes changes since BIND 9.10.2:
     </p>
 <p>
+      BIND 9.10.2-P4 addresses security issues described in
+      CVE-2015-5722 and CVE-2015-5986.
+    </p>
+<p>
       BIND 9.10.2-P3 addresses a security issue described in
       CVE-2015-5477.
     </p>
@@ -102,6 +106,21 @@
 <div class="titlepage"><div><div><h3 class="title">
 <a name="relnotes_security"></a>Security Fixes</h3></div></div></div>
 <div class="itemizedlist"><ul type="disc">
+<li><p>
+         An incorrect boundary check in the OPENPGPKEY rdatatype
+         could trigger an assertion failure. This flaw is disclosed
+         in CVE-2015-5986. [RT #40286]
+       </p></li>
+<li>
+<p>
+         A buffer accounting error could trigger an assertion failure
+         when parsing certain malformed DNSSEC keys.
+       </p>
+<p>
+         This flaw was discovered by Hanno B&#50102;eck of the Fuzzing
+         Project, and is disclosed in CVE-2015-5722. [RT #40212]
+       </p>
+</li>
 <li>
 <p>
          A specially crafted query could trigger an assertion failure
@@ -226,6 +245,6 @@
 </tr>
 </table>
 </div>
-<p style="text-align: center;">BIND 9.10.2-P3</p>
+<p style="text-align: center;">BIND 9.10.2-P4</p>
 </body>
 </html>
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/Bv9ARM.html
--- a/external/bsd/bind/dist/doc/arm/Bv9ARM.html        Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/Bv9ARM.html        Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: Bv9ARM.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: Bv9ARM.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
@@ -41,7 +41,7 @@
 <div>
 <div><h1 class="title">
 <a name="id2563180"></a>BIND 9 Administrator Reference Manual</h1></div>
-<div><p class="releaseinfo">BIND Version 9.10.2-P3</p></div>
+<div><p class="releaseinfo">BIND Version 9.10.2-P4</p></div>
 <div><p class="copyright">Copyright © 2004-2015 Internet Systems Consortium, Inc. ("ISC")</p></div>
 <div><p class="copyright">Copyright © 2000-2003 Internet Software Consortium.</p></div>
 </div>
@@ -240,7 +240,7 @@
 </dl></dd>
 <dt><span class="appendix"><a href="Bv9ARM.ch09.html">A. Release Notes</a></span></dt>
 <dd><dl>
-<dt><span class="sect1"><a href="Bv9ARM.ch09.html#id2610666">Release Notes for BIND Version 9.10.2-P3</a></span></dt>
+<dt><span class="sect1"><a href="Bv9ARM.ch09.html#id2610666">Release Notes for BIND Version 9.10.2-P4</a></span></dt>
 <dd><dl>
 <dt><span class="sect2"><a href="Bv9ARM.ch09.html#relnotes_intro">Introduction</a></span></dt>
 <dt><span class="sect2"><a href="Bv9ARM.ch09.html#relnotes_download">Download</a></span></dt>
@@ -268,13 +268,13 @@
 <dd><dl>
 <dt><span class="sect1"><a href="Bv9ARM.ch12.html#bind9.library">BIND 9 DNS Library Support</a></span></dt>
 <dd><dl>
-<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612371">Prerequisite</a></span></dt>
-<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612380">Compilation</a></span></dt>
-<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612405">Installation</a></span></dt>
-<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612436">Known Defects/Restrictions</a></span></dt>
-<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612513">The dns.conf File</a></span></dt>
-<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612539">Sample Applications</a></span></dt>
-<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2613580">Library References</a></span></dt>
+<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612253">Prerequisite</a></span></dt>
+<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612263">Compilation</a></span></dt>
+<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612288">Installation</a></span></dt>
+<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612455">Known Defects/Restrictions</a></span></dt>
+<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612532">The dns.conf File</a></span></dt>
+<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2612558">Sample Applications</a></span></dt>
+<dt><span class="sect2"><a href="Bv9ARM.ch12.html#id2613600">Library References</a></span></dt>
 </dl></dd>
 </dl></dd>
 <dt><span class="reference"><a href="Bv9ARM.ch13.html">I. Manual pages</a></span></dt>
@@ -380,6 +380,6 @@
 </tr>
 </table>
 </div>
-<p style="text-align: center;">BIND 9.10.2-P3</p>
+<p style="text-align: center;">BIND 9.10.2-P4</p>
 </body>
 </html>
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/Bv9ARM.pdf
Binary file external/bsd/bind/dist/doc/arm/Bv9ARM.pdf has changed
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/man.arpaname.html
--- a/external/bsd/bind/dist/doc/arm/man.arpaname.html  Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/man.arpaname.html  Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: man.arpaname.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: man.arpaname.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
@@ -50,20 +50,20 @@
 <div class="cmdsynopsis"><p><code class="command">arpaname</code>  {<em class="replaceable"><code>ipaddress </code></em>...}</p></div>
 </div>
 <div class="refsect1" lang="en">
-<a name="id2623065"></a><h2>DESCRIPTION</h2>
+<a name="id2622948"></a><h2>DESCRIPTION</h2>
 <p>
       <span><strong class="command">arpaname</strong></span> translates IP addresses (IPv4 and
       IPv6) to the corresponding IN-ADDR.ARPA or IP6.ARPA names.
     </p>
 </div>
 <div class="refsect1" lang="en">
-<a name="id2623558"></a><h2>SEE ALSO</h2>
+<a name="id2622963"></a><h2>SEE ALSO</h2>
 <p>
       <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
     </p>
 </div>
 <div class="refsect1" lang="en">
-<a name="id2623572"></a><h2>AUTHOR</h2>
+<a name="id2622977"></a><h2>AUTHOR</h2>
 <p><span class="corpauthor">Internet Systems Consortium</span>
     </p>
 </div>
@@ -87,6 +87,6 @@
 </tr>
 </table>
 </div>
-<p style="text-align: center;">BIND 9.10.2-P3</p>
+<p style="text-align: center;">BIND 9.10.2-P4</p>
 </body>
 </html>
diff -r 1a622041437c -r 603b0a674b30 external/bsd/bind/dist/doc/arm/man.ddns-confgen.html
--- a/external/bsd/bind/dist/doc/arm/man.ddns-confgen.html      Thu Sep 03 07:21:32 2015 +0000
+++ b/external/bsd/bind/dist/doc/arm/man.ddns-confgen.html      Thu Sep 03 07:33:34 2015 +0000
@@ -14,7 +14,7 @@
  - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
  - PERFORMANCE OF THIS SOFTWARE.
 -->
-<!-- $Id: man.ddns-confgen.html,v 1.4 2015/07/28 18:55:16 christos Exp $ -->
+<!-- $Id: man.ddns-confgen.html,v 1.5 2015/09/03 07:33:34 christos Exp $ -->
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">



Home | Main Index | Thread Index | Old Index