Navigation:
Browse pkgsrc
(this page) 2015-09-03 22:03:06 by Matthias Scheler | Files touched by this commit (2) |  |
Log message: Pullup ticket #4810 - requested by sevan & taca net/bind99: security update Revisions pulled up: - net/bind99/Makefile 1.47-1.48 - net/bind99/distinfo 1.31-1.32 - net/bind99/patches/patch-lib_dns_hmac_link.c deleted - net/bind99/patches/patch-lib_dns_include_dst_dst.h deleted - net/bind99/patches/patch-lib_dns_ncache.c deleted - net/bind99/patches/patch-lib_dns_openssldh_link.c deleted - net/bind99/patches/patch-lib_dns_openssldsa_link.c deleted - net/bind99/patches/patch-lib_dns_opensslecdsa_link.c deleted - net/bind99/patches/patch-lib_dns_opensslsslrsa_link.c deleted - net/bind99/patches/patch-lib_dns_rdata_generic_openpgpkey_61.c deleted - net/bind99/patches/patch-lib_dns_resolver.c deleted --- Module Name: pkgsrc Committed By: sevan Date: Wed Sep 2 19:44:28 UTC 2015 Modified Files: pkgsrc/net/bind99: Makefile distinfo Added Files: pkgsrc/net/bind99/patches: patch-lib_dns_hmac_link.c patch-lib_dns_include_dst_dst.h patch-lib_dns_ncache.c patch-lib_dns_openssldh_link.c patch-lib_dns_openssldsa_link.c patch-lib_dns_opensslecdsa_link.c patch-lib_dns_opensslsslrsa_link.c patch-lib_dns_rdata_generic_openpgpkey_61.c patch-lib_dns_resolver.c Log message: Patch CVE-2015-5722 & CVE-2015-5986 Bump rev CVE-2015-5722 - Parsing malformed keys may cause BIND to exit due to a failed assertion in buffer.c https://kb.isc.org/article/AA-01287/0 CVE-2015-5986 - An incorrect boundary check can trigger a REQUIRE assertion failure in openpgpkey_61.c https://kb.isc.org/article/AA-01291/0 Reviewed by wiz@ --- Module Name: pkgsrc Committed By: taca Date: Thu Sep 3 00:35:03 UTC 2015 Modified Files: pkgsrc/net/bind99: Makefile distinfo Removed Files: pkgsrc/net/bind99/patches: patch-lib_dns_hmac_link.c patch-lib_dns_include_dst_dst.h patch-lib_dns_ncache.c patch-lib_dns_openssldh_link.c patch-lib_dns_openssldsa_link.c patch-lib_dns_opensslecdsa_link.c patch-lib_dns_opensslsslrsa_link.c patch-lib_dns_rdata_generic_openpgpkey_61.c patch-lib_dns_resolver.c Log message: Update bind99 to 9.9.7pl3 (BIND 9.9.7-P3). (These security fixes are already done by bind-9.9.7pl2nb1.) --- 9.9.7-P3 released --- 4170. [security] An incorrect boundary check in the OPENPGPKEY rdatatype could trigger an assertion failure. (CVE-2015-5986) [RT #40286] 4168. [security] A buffer accounting error could trigger an assertion failure when parsing certain malformed DNSSEC keys. (CVE-2015-5722) [RT #40212] |
| 2015-08-01 10:50:30 by Matthias Scheler | Files touched by this commit (2) | |
Log message: Pullup ticket #4784 - requested by taca net/bind99: security update Revisions pulled up: - net/bind99/Makefile 1.46 - net/bind99/distinfo 1.30 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 28 22:35:36 UTC 2015 Modified Files: pkgsrc/net/bind99: Makefile distinfo Log message: Update bind99 to 9.9.7pl2 (BIND 9.9.7-P2). --- 9.9.7-P2 released --- 4165. [security] A failure to reset a value to NULL in tkey.c could result in an assertion failure. (CVE-2015-5477) [RT #40046] |
| 2015-07-12 11:09:24 by Matthias Scheler | Files touched by this commit (2) | |
Log message: Pullup ticket #4768 - requested by taca net/bind99: security update Revisions pulled up: - net/bind99/Makefile 1.45 - net/bind99/distinfo 1.29 --- Module Name: pkgsrc Committed By: taca Date: Tue Jul 7 22:25:35 UTC 2015 Modified Files: pkgsrc/net/bind99: Makefile distinfo Log message: Update bind99 to 9.9.7pl1 (BIND 9.9.7-P1). --- 9.9.7-P1 released --- 4138. [bug] An uninitialized value in validator.c could result in an assertion failure. (CVE-2015-4620) [RT #39795] |
New packages: