CVS commit: [pkgsrc-2012Q3] pkgsrc/net/bind98

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: [pkgsrc-2012Q3] pkgsrc/net/bind98
From: "Matthias Scheler" <tron%netbsd.org@localhost>
Date: Wed, 10 Oct 2012 13:11:14 +0000

Module Name:    pkgsrc
Committed By:   tron
Date:           Wed Oct 10 13:11:14 UTC 2012

Modified Files:
        pkgsrc/net/bind98 [pkgsrc-2012Q3]: Makefile distinfo

Log Message:
Pullup ticket #3943 - requested by taca
net/bind98: security update

Revisions pulled up:
- net/bind98/Makefile                                           1.17-1.18
- net/bind98/distinfo                                           1.15

---
   Module Name: pkgsrc
   Committed By:        wiz
   Date:                Wed Oct  3 21:59:10 UTC 2012

   Modified Files:
        pkgsrc/net/bind98: Makefile

   Log Message:
   Bump all packages that use perl, or depend on a p5-* package, or
   are called p5-*.

   I hope that's all of them.

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Wed Oct 10 03:06:37 UTC 2012

   Modified Files:
        pkgsrc/net/bind98: Makefile distinfo

   Log Message:
   Update bind98 package to 9.8.4.

   Here are change changes from release note.  Note security fixes except
   CVE-2012-5166 should be already fixed in previous version of bind98 package.

   Please refer https://kb.isc.org/article/AA-00797 for list of full bug fixes.

   Security Fixes

   * A deliberately constructed combination of records could cause named to hang
     while populating the additional section of a response. [CVE-2012-5166] [RT
     #31090]
   * Prevents a named assert (crash) when queried for a record whose RDATA
     exceeds 65535 bytes [CVE-2012-4244] [RT #30416]
   * Prevents a named assert (crash) when validating caused by using "Bad cache"
     data before it has been initialized. [CVE-2012-3817] [RT #30025]
   * A condition has been corrected where improper handling of zero-length RDATA
     could cause undesirable behavior, including termination of the named
     process. [CVE-2012-1667] [RT #29644]

   New Features

   * Elliptic Curve Digital Signature Algorithm keys and signatures in DNSSEC 
are
     now supported per RFC 6605. [RT #21918]

   Feature Changes

   * Improves OpenSSL error logging [RT #29932]
   * nslookup now returns a nonzero exit code when it is unable to get an 
answer.
     [RT #29492]


To generate a diff of this commit:
cvs rdiff -u -r1.16 -r1.16.2.1 pkgsrc/net/bind98/Makefile
cvs rdiff -u -r1.14 -r1.14.2.1 pkgsrc/net/bind98/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/graphics/librsvg
Next by Date: CVS commit: pkgsrc/graphics/p5-PerlMagick
Previous by Thread: CVS commit: pkgsrc/graphics/librsvg
Next by Thread: CVS commit: pkgsrc/graphics/p5-PerlMagick
Indexes:

Home | Main Index | Thread Index | Old Index