./net/bind910, Berkeley Internet Name Daemon implementation of DNS, version 9.10

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: pkgsrc-2015Q2, Version: 9.10.2pl4, Package name: bind-9.10.2pl4, Maintainer: pkgsrc-users

BIND, the Berkeley Internet Name Daemon, version 9 is a major rewrite
of nearly all aspects of the underlying BIND architecture. Some
of the important features of BIND-9 are:

- DNS Security
- IP version 6
- DNS Protocol Enhancements
- Views
- Multiprocessor Support
- Improved Portability Architecture
- Full NSEC3 support
- Automatic zone re-signing
- New update-policy methods tcp-self and 6to4-self

This package contains the BIND 9.10 release.



Package options: inet6, readline, threads

Master sites: (Expand)

SHA1: 55b8803c566aa0c9a9e4dbabbad06fb4536a8d5b
RMD160: 8b2e0501899a5d654d8a234a7bd939cf06c43948
Filesize: 8272.979 KB

Version history: (Expand)


CVS history: (Expand)


   2015-09-03 22:11:22 by Matthias Scheler | Files touched by this commit (2) | Package updated
Log message:
Pullup ticket #4811 - requested by sevan
net/bind910: security update

Revisions pulled up:
- net/bind910/Makefile                                          1.11-1.12
- net/bind910/distinfo                                          1.9-1.10
- net/bind910/patches/patch-lib_dns_hmac_link.c                 deleted
- net/bind910/patches/patch-lib_dns_include_dst_dst.h           deleted
- net/bind910/patches/patch-lib_dns_ncache.c                    deleted
- net/bind910/patches/patch-lib_dns_openssldh_link.c            deleted
- net/bind910/patches/patch-lib_dns_openssldsa_link.c           deleted
- net/bind910/patches/patch-lib_dns_opensslecdsa_link.c         deleted
- net/bind910/patches/patch-lib_dns_opensslrsa_link.c           deleted
- net/bind910/patches/patch-lib_dns_pkcs11dh_link.c             deleted
- net/bind910/patches/patch-lib_dns_pkcs11dsa_link.c            deleted
- net/bind910/patches/patch-lib_dns_pkcs11rsa_link.c            deleted
- net/bind910/patches/patch-lib_dns_rdata_generic_openpgpkey_61.c deleted
- net/bind910/patches/patch-lib_dns_resolver.c                  deleted

---
   Module Name:	pkgsrc
   Committed By:	sevan
   Date:		Wed Sep  2 19:46:44 UTC 2015

   Modified Files:
   	pkgsrc/net/bind910: Makefile distinfo
   Added Files:
   	pkgsrc/net/bind910/patches: patch-lib_dns_hmac_link.c
   	    patch-lib_dns_include_dst_dst.h patch-lib_dns_ncache.c
   	    patch-lib_dns_openssldh_link.c patch-lib_dns_openssldsa_link.c
   	    patch-lib_dns_opensslecdsa_link.c patch-lib_dns_opensslrsa_link.c
   	    patch-lib_dns_pkcs11dh_link.c patch-lib_dns_pkcs11dsa_link.c
   	    patch-lib_dns_pkcs11rsa_link.c
   	    patch-lib_dns_rdata_generic_openpgpkey_61.c
   	    patch-lib_dns_resolver.c

   Log message:
   Patch CVE-2015-5722 & CVE-2015-5986
   Bump rev

   CVE-2015-5722 - Parsing malformed keys may cause BIND to exit due to a failed
   assertion in buffer.c
   https://kb.isc.org/article/AA-01287/0

   CVE-2015-5986 - An incorrect boundary check can trigger a REQUIRE assertion
   failure in openpgpkey_61.c
   https://kb.isc.org/article/AA-01291/0

   Reviewed by wiz@

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Sep  3 00:33:32 UTC 2015

   Modified Files:
   	pkgsrc/net/bind910: Makefile distinfo
   Removed Files:
   	pkgsrc/net/bind910/patches: patch-lib_dns_hmac_link.c
   	    patch-lib_dns_include_dst_dst.h patch-lib_dns_ncache.c
   	    patch-lib_dns_openssldh_link.c patch-lib_dns_openssldsa_link.c
   	    patch-lib_dns_opensslecdsa_link.c patch-lib_dns_opensslrsa_link.c
   	    patch-lib_dns_pkcs11dh_link.c patch-lib_dns_pkcs11dsa_link.c
   	    patch-lib_dns_pkcs11rsa_link.c
   	    patch-lib_dns_rdata_generic_openpgpkey_61.c
   	    patch-lib_dns_resolver.c

   Log message:
   Update bind910 to 9.10.2pl4 (BIND 9.10.2-P4).
   (Already fixed by bind-9.10.2pl3nb1.)

   	--- 9.10.2-P4 released ---

   4170.	[security]	An incorrect boundary check in the OPENPGPKEY
   			rdatatype could trigger an assertion failure.
   			(CVE-2015-5986) [RT #40286]

   4168.	[security]	A buffer accounting error could trigger an
   			assertion failure when parsing certain malformed
   			DNSSEC keys. (CVE-2015-5722) [RT #40212]
   2015-08-01 10:54:30 by Matthias Scheler | Files touched by this commit (2) | Package updated
Log message:
Pullup ticket #4785 - requested by taca
net/bind910: security update

Revisions pulled up:
- net/bind910/Makefile                                          1.10
- net/bind910/distinfo                                          1.8

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 28 22:36:38 UTC 2015

   Modified Files:
   	pkgsrc/net/bind910: Makefile distinfo

   Log message:
   Update bind910 to 9.10.2pl3 (BIND 9.10.2-P3).

   	--- 9.10.2-P3 released ---

   4165.	[security]	A failure to reset a value to NULL in tkey.c could
   			result in an assertion failure. (CVE-2015-5477)
   			[RT #40046]
   2015-07-12 11:14:27 by Matthias Scheler | Files touched by this commit (2) | Package updated
Log message:
Pullup ticket #4769 - requested by taca
net/bind910: security update

Revisions pulled up:
- net/bind910/Makefile                                          1.9
- net/bind910/distinfo                                          1.7

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul  7 22:26:42 UTC 2015

   Modified Files:
   	pkgsrc/net/bind910: Makefile distinfo

   Log message:
   Update bind910 to 9.10.2pl2.

   	--- 9.10.2-P2 released ---

   4138.	[bug]		An uninitialized value in validator.c could result
   			in an assertion failure. (CVE-2015-4620) [RT #39795]