diff options
author | tron <tron@pkgsrc.org> | 2015-09-03 20:11:22 +0000 |
---|---|---|
committer | tron <tron@pkgsrc.org> | 2015-09-03 20:11:22 +0000 |
commit | bf0d1ef2e7b39d89cfef9c49f05e02765e3bc9ba (patch) | |
tree | 768258d1206388b526f3148af453a7ac39ddbc68 | |
parent | a3e07501d91156444c496449a6486d20d85e23be (diff) | |
download | pkgsrc-bf0d1ef2e7b39d89cfef9c49f05e02765e3bc9ba.tar.gz |
Pullup ticket #4811 - requested by sevan
net/bind910: security update
Revisions pulled up:
- net/bind910/Makefile 1.11-1.12
- net/bind910/distinfo 1.9-1.10
- net/bind910/patches/patch-lib_dns_hmac_link.c deleted
- net/bind910/patches/patch-lib_dns_include_dst_dst.h deleted
- net/bind910/patches/patch-lib_dns_ncache.c deleted
- net/bind910/patches/patch-lib_dns_openssldh_link.c deleted
- net/bind910/patches/patch-lib_dns_openssldsa_link.c deleted
- net/bind910/patches/patch-lib_dns_opensslecdsa_link.c deleted
- net/bind910/patches/patch-lib_dns_opensslrsa_link.c deleted
- net/bind910/patches/patch-lib_dns_pkcs11dh_link.c deleted
- net/bind910/patches/patch-lib_dns_pkcs11dsa_link.c deleted
- net/bind910/patches/patch-lib_dns_pkcs11rsa_link.c deleted
- net/bind910/patches/patch-lib_dns_rdata_generic_openpgpkey_61.c deleted
- net/bind910/patches/patch-lib_dns_resolver.c deleted
---
Module Name: pkgsrc
Committed By: sevan
Date: Wed Sep 2 19:46:44 UTC 2015
Modified Files:
pkgsrc/net/bind910: Makefile distinfo
Added Files:
pkgsrc/net/bind910/patches: patch-lib_dns_hmac_link.c
patch-lib_dns_include_dst_dst.h patch-lib_dns_ncache.c
patch-lib_dns_openssldh_link.c patch-lib_dns_openssldsa_link.c
patch-lib_dns_opensslecdsa_link.c patch-lib_dns_opensslrsa_link.c
patch-lib_dns_pkcs11dh_link.c patch-lib_dns_pkcs11dsa_link.c
patch-lib_dns_pkcs11rsa_link.c
patch-lib_dns_rdata_generic_openpgpkey_61.c
patch-lib_dns_resolver.c
Log Message:
Patch CVE-2015-5722 & CVE-2015-5986
Bump rev
CVE-2015-5722 - Parsing malformed keys may cause BIND to exit due to a failed
assertion in buffer.c
https://kb.isc.org/article/AA-01287/0
CVE-2015-5986 - An incorrect boundary check can trigger a REQUIRE assertion
failure in openpgpkey_61.c
https://kb.isc.org/article/AA-01291/0
Reviewed by wiz@
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Sep 3 00:33:32 UTC 2015
Modified Files:
pkgsrc/net/bind910: Makefile distinfo
Removed Files:
pkgsrc/net/bind910/patches: patch-lib_dns_hmac_link.c
patch-lib_dns_include_dst_dst.h patch-lib_dns_ncache.c
patch-lib_dns_openssldh_link.c patch-lib_dns_openssldsa_link.c
patch-lib_dns_opensslecdsa_link.c patch-lib_dns_opensslrsa_link.c
patch-lib_dns_pkcs11dh_link.c patch-lib_dns_pkcs11dsa_link.c
patch-lib_dns_pkcs11rsa_link.c
patch-lib_dns_rdata_generic_openpgpkey_61.c
patch-lib_dns_resolver.c
Log Message:
Update bind910 to 9.10.2pl4 (BIND 9.10.2-P4).
(Already fixed by bind-9.10.2pl3nb1.)
--- 9.10.2-P4 released ---
4170. [security] An incorrect boundary check in the OPENPGPKEY
rdatatype could trigger an assertion failure.
(CVE-2015-5986) [RT #40286]
4168. [security] A buffer accounting error could trigger an
assertion failure when parsing certain malformed
DNSSEC keys. (CVE-2015-5722) [RT #40212]
-rw-r--r-- | net/bind910/Makefile | 4 | ||||
-rw-r--r-- | net/bind910/distinfo | 8 |
2 files changed, 6 insertions, 6 deletions
diff --git a/net/bind910/Makefile b/net/bind910/Makefile index 305ec38a88d..742ea79f78f 100644 --- a/net/bind910/Makefile +++ b/net/bind910/Makefile @@ -1,4 +1,4 @@ -# $NetBSD: Makefile,v 1.8.2.2 2015/08/01 08:54:30 tron Exp $ +# $NetBSD: Makefile,v 1.8.2.3 2015/09/03 20:11:22 tron Exp $ DISTNAME= bind-${BIND_VERSION} PKGNAME= ${DISTNAME:S/-P/pl/} @@ -14,7 +14,7 @@ CONFLICTS+= host-[0-9]* MAKE_JOBS_SAFE= no -BIND_VERSION= 9.10.2-P3 +BIND_VERSION= 9.10.2-P4 .include "../../mk/bsd.prefs.mk" diff --git a/net/bind910/distinfo b/net/bind910/distinfo index 4fba391644f..d0f2593577d 100644 --- a/net/bind910/distinfo +++ b/net/bind910/distinfo @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.6.2.2 2015/08/01 08:54:30 tron Exp $ +$NetBSD: distinfo,v 1.6.2.3 2015/09/03 20:11:22 tron Exp $ -SHA1 (bind-9.10.2-P3.tar.gz) = ab362f2632db923accd1b29e37b8fffa66d21d8d -RMD160 (bind-9.10.2-P3.tar.gz) = 1cd59e605ab723a1e051dfd6727f4534f3368efa -Size (bind-9.10.2-P3.tar.gz) = 8469831 bytes +SHA1 (bind-9.10.2-P4.tar.gz) = 55b8803c566aa0c9a9e4dbabbad06fb4536a8d5b +RMD160 (bind-9.10.2-P4.tar.gz) = 8b2e0501899a5d654d8a234a7bd939cf06c43948 +Size (bind-9.10.2-P4.tar.gz) = 8471531 bytes SHA1 (patch-bin_dig_dighost.c) = 582fa4c7288e70bcc6ac906e8429cf38e0ad5152 SHA1 (patch-bin_tests_system_Makefile.in) = 8bb6130981a6ff2ac736cf53a061115782bb65a2 SHA1 (patch-config.threads.in) = 227b83efe9cb3e301aaac9b97cf42f1fb8ad06b2 |