diff options
| author | erwin <erwin@FreeBSD.org> | 2013-06-05 19:49:51 +0800 |
|---|---|---|
| committer | erwin <erwin@FreeBSD.org> | 2013-06-05 19:49:51 +0800 |
| commit | 0a48ab4572454d01b10188ab7aa0cdf9aee4b616 (patch) | |
| tree | 82778859bdbf9651a2c7907941b273d832ff191a | |
| parent | e5ad7bbfea43f838c7686e913dbb966773d0ca61 (diff) | |
| download | freebsd-ports-gnome-0a48ab4572454d01b10188ab7aa0cdf9aee4b616.tar.gz freebsd-ports-gnome-0a48ab4572454d01b10188ab7aa0cdf9aee4b616.tar.zst freebsd-ports-gnome-0a48ab4572454d01b10188ab7aa0cdf9aee4b616.zip | |
Update to 9.8.5-P1
Security Fixes
Prevents exploitation of a runtime_check which can crash named
when satisfying a recursive query for particular malformed zones.
(CVE-2013-3919) [RT #33690]
A deliberately constructed combination of records could cause
named to hang while populating the additional section of a
response. (CVE-2012-5166) [RT #31090]
Now supports NAPTR regular expression validation on all platforms,
and avoids memory exhaustion compiling pathological regular
expressions. (CVE-2013-2266) [RT #32688]
Prevents named from aborting with a require assertion failure
on servers with DNS64 enabled. These crashes might occur as a
result of specific queries that are received. (CVE-2012-5688)
[RT #30792 / #30996]
Prevents an assertion failure in named when RPZ and DNS64 are
used together. (CVE-2012-5689) [RT #32141]
See release notes for further features and bug fixes:
https://kb.isc.org/article/AA-00969/0/BIND-9.8.5-P1-Release-Notes.html
Security: CVE-2013-3919
CVE-2012-5166
CVE-2013-2266
CVE-2012-5688
CVE-2012-5689
| -rw-r--r-- | dns/bind98/Makefile | 6 | ||||
| -rw-r--r-- | dns/bind98/distinfo | 8 |
2 files changed, 7 insertions, 7 deletions
diff --git a/dns/bind98/Makefile b/dns/bind98/Makefile index 3d7206c09ae2..22e8ed91e161 100644 --- a/dns/bind98/Makefile +++ b/dns/bind98/Makefile @@ -1,7 +1,7 @@ # $FreeBSD$ PORTNAME= bind98 -PORTVERSION= 9.8.5 +PORTVERSION= 9.8.5.1 CATEGORIES= dns net ipv6 MASTER_SITES= ${MASTER_SITE_ISC} MASTER_SITE_SUBDIR= bind9/${ISCVERSION} @@ -13,7 +13,7 @@ COMMENT= BIND DNS suite with updated DNSSEC and DNS64 LICENSE= ISCL # ISC releases things like 9.8.0-P1, which our versioning doesn't like -ISCVERSION= 9.8.5 +ISCVERSION= 9.8.5-P1 MAKE_JOBS_UNSAFE= yes @@ -109,7 +109,7 @@ CONFIGURE_ARGS+= --enable-rpz-nsdname .endif .if ${PORT_OPTIONS:MRPZRRL_PATCH} -PATCHFILES= rpz2+rl-9.8.5.patch +PATCHFILES= 9.8.5-rpz+rl.156.01-P1.patch PATCH_SITES= http://ss.vix.com/~vjs/ .endif diff --git a/dns/bind98/distinfo b/dns/bind98/distinfo index a34dd33e714c..af14d25c127a 100644 --- a/dns/bind98/distinfo +++ b/dns/bind98/distinfo @@ -1,4 +1,4 @@ -SHA256 (bind-9.8.5.tar.gz) = 250bf1a305290db30c4e3b284e9ac58c53687727b51107c393bdb3fd3f36de6d -SIZE (bind-9.8.5.tar.gz) = 7262595 -SHA256 (rpz2+rl-9.8.5.patch) = 918a45012092f3a21ea4cae248d18d332d435ff41a0e4260246c85f0e682bca9 -SIZE (rpz2+rl-9.8.5.patch) = 323496 +SHA256 (bind-9.8.5-P1.tar.gz) = f1aa010cef49c453e24f0cadedd1866dc7e3c9fd385f39ee3e68f3a4ba226cc6 +SIZE (bind-9.8.5-P1.tar.gz) = 7263322 +SHA256 (9.8.5-rpz+rl.156.01-P1.patch) = fdf306bf7a5cc8eb1dd5a400048aec788b3387934d350c46bbe0384b9ff76793 +SIZE (9.8.5-rpz+rl.156.01-P1.patch) = 323499 |