diff options
| author | dougb <dougb@FreeBSD.org> | 2010-01-25 08:25:08 +0800 |
|---|---|---|
| committer | dougb <dougb@FreeBSD.org> | 2010-01-25 08:25:08 +0800 |
| commit | 354a417689f5de486766845352ac8b5dc4cb142f (patch) | |
| tree | 09ce40ff0656f84edb3e88bc89c43f9cab910b7f /dns/bind94 | |
| parent | 5aea01af495d786e10e77fff771abd75683f80c9 (diff) | |
| download | freebsd-ports-gnome-354a417689f5de486766845352ac8b5dc4cb142f.tar.gz freebsd-ports-gnome-354a417689f5de486766845352ac8b5dc4cb142f.tar.zst freebsd-ports-gnome-354a417689f5de486766845352ac8b5dc4cb142f.zip | |
Upgrade to BIND 9.4.3-P5, 9.5.2-P2, and 9.6.1-P3. These versions address
the following vulnerabilities:
BIND 9 Cache Update from Additional Section
https://www.isc.org/advisories/CVE-2009-4022v6
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4022
A nameserver with DNSSEC validation enabled may incorrectly add
unauthenticated records to its cache that are received during the
resolution of a recursive client query
BIND 9 DNSSEC validation code could cause bogus NXDOMAIN responses
https://www.isc.org/advisories/CVE-2010-0097
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0097
There was an error in the DNSSEC NSEC/NSEC3 validation code that could
cause bogus NXDOMAIN responses (that is, NXDOMAIN responses for records
proven by NSEC or NSEC3 to exist) to be cached as if they had validated
correctly
These issues only affect systems with DNSSEC validation enabled.
Diffstat (limited to 'dns/bind94')
| -rw-r--r-- | dns/bind94/Makefile | 4 | ||||
| -rw-r--r-- | dns/bind94/distinfo | 15 |
2 files changed, 8 insertions, 11 deletions
diff --git a/dns/bind94/Makefile b/dns/bind94/Makefile index 11cf8dd41c97..15297405aff0 100644 --- a/dns/bind94/Makefile +++ b/dns/bind94/Makefile @@ -12,7 +12,7 @@ # release you can generally build it cleanly from the source - Doug PORTNAME= bind94 -PORTVERSION= 9.4.3.4 +PORTVERSION= 9.4.3.5 CATEGORIES= dns net ipv6 MASTER_SITES= ${MASTER_SITE_ISC} \ http://dougbarton.us/Downloads/%SUBDIR%/ @@ -25,7 +25,7 @@ MAINTAINER= dougb@FreeBSD.org COMMENT= The BIND DNS suite with updated DNSSEC and threads # ISC releases things like 9.4.0b3, which our versioning doesn't like -ISCVERSION= 9.4.3-P4 +ISCVERSION= 9.4.3-P5 MAKE_JOBS_UNSAFE= yes diff --git a/dns/bind94/distinfo b/dns/bind94/distinfo index bb5caa44bd7f..5c90a7376012 100644 --- a/dns/bind94/distinfo +++ b/dns/bind94/distinfo @@ -1,9 +1,6 @@ -MD5 (bind-9.4.3-P4.tar.gz) = 926d4664629a04af9a9afa9022bf0080 -SHA256 (bind-9.4.3-P4.tar.gz) = 6374354f72a25335ae54799e84f2f0f90b94e8849084ef50709ea8eef8534fc9 -SIZE (bind-9.4.3-P4.tar.gz) = 6545707 -MD5 (bind-9.4.3-P4.tar.gz.asc) = 3fdb975cc61be688a11b607afcf88b39 -SHA256 (bind-9.4.3-P4.tar.gz.asc) = 38ba45a70f18dc833440afc8d430944037365ed591d2d9db3c5816fdcbd35690 -SIZE (bind-9.4.3-P4.tar.gz.asc) = 481 -MD5 (bind-9.4.1-geodns-patch.tar.gz) = d3d515bdef525f9a31787b36a105e690 -SHA256 (bind-9.4.1-geodns-patch.tar.gz) = 352413037e4779519c0a5b70aef801c8f84bcf15d1d485b16096d75f83644a65 -SIZE (bind-9.4.1-geodns-patch.tar.gz) = 2057 +MD5 (bind-9.4.3-P5.tar.gz) = f14f4b59639068c9a611a9c03b821dde +SHA256 (bind-9.4.3-P5.tar.gz) = 7ca93553d1f488af1b21ab26f0297be5c7b7b5920d29ad9743382bf3623b2939 +SIZE (bind-9.4.3-P5.tar.gz) = 6447497 +MD5 (bind-9.4.3-P5.tar.gz.asc) = eb83f72e9c305d660903fd1ba33f0f37 +SHA256 (bind-9.4.3-P5.tar.gz.asc) = 12f414d6890d543e584e008986c0912de7b22913c37a7be79f9dc1039cb9f414 +SIZE (bind-9.4.3-P5.tar.gz.asc) = 481 |