Subject: CVS commit: pkgsrc/net/bind99
From: Takahiro Kambe
Date: 2016-01-20 03:17:12
Message id: 20160120021712.550CDFBB5@cvs.NetBSD.org
Log Message:
Update bind99 to 9.9.8pl3 (BIND 9.9.8-P3).

Security Fixes

     * Specific APL data could trigger an INSIST. This flaw was discovered
       by Brian Mitchell and is disclosed in CVE-2015-8704. [RT #41396]
     * Named is potentially vulnerable to the OpenSSL vulnerabilty
       described in CVE-2015-3193.
     * Insufficient testing when parsing a message allowed records with an
       incorrect class to be be accepted, triggering a REQUIRE failure
       when those records were subsequently cached. This flaw is disclosed
       in CVE-2015-8000. [RT #40987]
     * Incorrect reference counting could result in an INSIST failure if a
       socket error occurred while performing a lookup. This flaw is
       disclosed in CVE-2015-8461. [RT#40945]

New Features

     * None

Feature Changes

     * Updated the compiled in addresses for H.ROOT-SERVERS.NET.

Bug Fixes

     * Authoritative servers that were marked as bogus (e.g. blackholed in
       configuration or with invalid addresses) were being queried anyway.
       [RT #41321]
Files:
RevisionActionfile
1.51modifypkgsrc/net/bind99/Makefile
1.36modifypkgsrc/net/bind99/distinfo