pkg/41796: Security fix CVE-2009-0696

[sm%resistor.net@localhost]

>Number:         41796
>Category:       pkg
>Synopsis:       Security fix CVE-2009-0696
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    pkg-manager
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Tue Jul 28 22:35:00 +0000 2009
>Originator:     SM
>Release:        
>Organization:
>Environment:
>Description:
Receipt of a specially-crafted dynamic update message may cause BIND 9
servers to exit (CVE-2009-0696).  See https://www.isc.org/node/474
>How-To-Repeat:

>Fix:
The following updates bind96 in pkgsrc to 9.6.1-P1

--- Makefile.orig       2009-07-26 10:17:56.000000000 -0700
+++ Makefile    2009-07-28 14:58:08.000000000 -0700
@@ -15,7 +15,7 @@
 
 MAKE_JOBS_SAFE=        no
 
-BIND_VERSION=  9.6.1
+BIND_VERSION=  9.6.1-P1
 
 .include "../../mk/bsd.prefs.mk"
 

--- distinfo.orig       2009-07-26 10:17:56.000000000 -0700
+++ distinfo    2009-07-28 15:01:43.000000000 -0700
@@ -1,8 +1,8 @@
 $NetBSD: distinfo,v 1.4 2009/07/26 09:07:58 obache Exp $
 
-SHA1 (bind-9.6.1.tar.gz) = 50c485a152b566ca89d082e5d6f777c00f0a92b2
-RMD160 (bind-9.6.1.tar.gz) = 18431b1418eda7298295945d63d5ad185f19d78f
-Size (bind-9.6.1.tar.gz) = 6724683 bytes
+SHA1 (bind-9.6.1-P1.tar.gz) = b266511994525b6203af173fd6dda9db58c500a8
+RMD160 (bind-9.6.1.tar.gz) = 7421f22f0f30c70ba0324216a4410a2682ecdf1a
+Size (bind-9.6.1-P1.tar.gz) = 6601209 bytes
 SHA1 (patch-ab) = 6cec876c8caa7082f97365863f3f88c4f168da48
 SHA1 (patch-ac) = 074649e1514870a3154c623a5f6d1507b72b5b05
 SHA1 (patch-ad) = c916e594fd959d3a003cb7916fdf5cf89b6e5c45