CVS commit: pkgsrc/net/bind99

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/net/bind99
From: "Takahiro Kambe" <taca%netbsd.org@localhost>
Date: Wed, 20 Jan 2016 02:17:12 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Wed Jan 20 02:17:12 UTC 2016

Modified Files:
        pkgsrc/net/bind99: Makefile distinfo

Log Message:
Update bind99 to 9.9.8pl3 (BIND 9.9.8-P3).

Security Fixes

     * Specific APL data could trigger an INSIST. This flaw was discovered
       by Brian Mitchell and is disclosed in CVE-2015-8704. [RT #41396]
     * Named is potentially vulnerable to the OpenSSL vulnerabilty
       described in CVE-2015-3193.
     * Insufficient testing when parsing a message allowed records with an
       incorrect class to be be accepted, triggering a REQUIRE failure
       when those records were subsequently cached. This flaw is disclosed
       in CVE-2015-8000. [RT #40987]
     * Incorrect reference counting could result in an INSIST failure if a
       socket error occurred while performing a lookup. This flaw is
       disclosed in CVE-2015-8461. [RT#40945]

New Features

     * None

Feature Changes

     * Updated the compiled in addresses for H.ROOT-SERVERS.NET.

Bug Fixes

     * Authoritative servers that were marked as bogus (e.g. blackholed in
       configuration or with invalid addresses) were being queried anyway.
       [RT #41321]


To generate a diff of this commit:
cvs rdiff -u -r1.50 -r1.51 pkgsrc/net/bind99/Makefile
cvs rdiff -u -r1.35 -r1.36 pkgsrc/net/bind99/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/net/bind910
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/net/bind910
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index