Date: Wed, 6 Jul 2011 00:48:31 +0000 (UTC) From: Doug Barton <dougb@FreeBSD.org> To: cvs-src-old@freebsd.org Subject: cvs commit: src/contrib/bind9 CHANGES version src/contrib/bind9/bin/named bind9.xsl.h src/contrib/bind9/lib/dns api masterdump.c message.c ncache.c rbtdb.c rdataset.c resolver.c validator.c src/contrib/bind9/lib/dns/include/dns masterdump.h ... Message-ID: <201107060048.p660mmYc048191@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
dougb 2011-07-06 00:48:31 UTC FreeBSD src repository Modified files: contrib/bind9 CHANGES version contrib/bind9/bin/named bind9.xsl.h contrib/bind9/lib/dns api masterdump.c message.c ncache.c rbtdb.c rdataset.c resolver.c validator.c contrib/bind9/lib/dns/include/dns masterdump.h rdataset.h Log: SVN rev 223812 on 2011-07-06 00:48:31Z by dougb Update to version 9.6-ESV-R4-P3 ALL BIND USERS ARE ENCOURAGED TO UPGRADE IMMEDIATELY This update addresses the following vulnerability: CVE-2011-2464 ============= Severity: High Exploitable: Remotely Description: A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured within named.conf or by disabling any features at compile-time or run-time. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2464 https://www.isc.org/software/bind/advisories/cve-2011-2464 Revision Changes Path 1.19 +13 -0 src/contrib/bind9/CHANGES 1.2 +3 -3 src/contrib/bind9/bin/named/bind9.xsl.h 1.16 +1 -1 src/contrib/bind9/lib/dns/api 1.4 +2 -2 src/contrib/bind9/lib/dns/include/dns/masterdump.h 1.7 +3 -2 src/contrib/bind9/lib/dns/include/dns/rdataset.h 1.7 +15 -17 src/contrib/bind9/lib/dns/masterdump.c 1.6 +7 -7 src/contrib/bind9/lib/dns/message.c 1.7 +7 -2 src/contrib/bind9/lib/dns/ncache.c 1.11 +26 -14 src/contrib/bind9/lib/dns/rbtdb.c 1.7 +3 -3 src/contrib/bind9/lib/dns/rdataset.c 1.13 +8 -7 src/contrib/bind9/lib/dns/resolver.c 1.14 +6 -4 src/contrib/bind9/lib/dns/validator.c 1.19 +2 -2 src/contrib/bind9/version
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201107060048.p660mmYc048191>