From owner-svn-ports-head@FreeBSD.ORG Wed Oct 10 11:54:45 2012 Return-Path: Delivered-To: svn-ports-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 4758D713; Wed, 10 Oct 2012 11:54:45 +0000 (UTC) (envelope-from erwin@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:4f8:fff6::2c]) by mx1.freebsd.org (Postfix) with ESMTP id 2CE168FC14; Wed, 10 Oct 2012 11:54:45 +0000 (UTC) Received: from svn.freebsd.org (localhost [127.0.0.1]) by svn.freebsd.org (8.14.4/8.14.4) with ESMTP id q9ABsj8h021189; Wed, 10 Oct 2012 11:54:45 GMT (envelope-from erwin@svn.freebsd.org) Received: (from erwin@localhost) by svn.freebsd.org (8.14.4/8.14.4/Submit) id q9ABsihq021179; Wed, 10 Oct 2012 11:54:44 GMT (envelope-from erwin@svn.freebsd.org) Message-Id: <201210101154.q9ABsihq021179@svn.freebsd.org> From: Erwin Lansing Date: Wed, 10 Oct 2012 11:54:44 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r305645 - in head: dns/bind96 dns/bind97 dns/bind98 dns/bind99 security/vuxml X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Oct 2012 11:54:45 -0000 X-List-Received-Date: Wed, 10 Oct 2012 11:54:45 -0000 Author: erwin Date: Wed Oct 10 11:54:44 2012 New Revision: 305645 URL: http://svn.freebsd.org/changeset/ports/305645 Log: Upgrade to the latest BIND patch level: A deliberately constructed combination of records could cause named to hang while populating the additional section of a response. Security: http://www.vuxml.org/freebsd/57a700f9-12c0-11e2-9f86-001d923933b6.html Modified: head/dns/bind96/Makefile head/dns/bind96/distinfo head/dns/bind97/Makefile head/dns/bind97/distinfo head/dns/bind98/Makefile head/dns/bind98/distinfo head/dns/bind99/Makefile head/dns/bind99/distinfo head/security/vuxml/vuln.xml Modified: head/dns/bind96/Makefile ============================================================================== --- head/dns/bind96/Makefile Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind96/Makefile Wed Oct 10 11:54:44 2012 (r305645) @@ -1,7 +1,7 @@ # $FreeBSD$ PORTNAME= bind96 -PORTVERSION= 9.6.3.1.ESV.R7.3 +PORTVERSION= 9.6.3.1.ESV.R7.4 CATEGORIES= dns net ipv6 MASTER_SITES= ${MASTER_SITE_ISC} MASTER_SITE_SUBDIR= bind9/${ISCVERSION} @@ -13,7 +13,7 @@ MAINTAINER= erwin@FreeBSD.org COMMENT= BIND DNS suite with updated DNSSEC and threads # ISC releases things like 9.4.0b3, which our versioning doesn't like -ISCVERSION= 9.6-ESV-R7-P3 +ISCVERSION= 9.6-ESV-R7-P4 MAKE_JOBS_UNSAFE= yes Modified: head/dns/bind96/distinfo ============================================================================== --- head/dns/bind96/distinfo Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind96/distinfo Wed Oct 10 11:54:44 2012 (r305645) @@ -1,4 +1,4 @@ -SHA256 (bind-9.6-ESV-R7-P3.tar.gz) = c3ca6ab6c162689ec9662d822b255c3a99c076d968bc059b4ae11f1d4c35edae -SIZE (bind-9.6-ESV-R7-P3.tar.gz) = 6411767 -SHA256 (bind-9.6-ESV-R7-P3.tar.gz.asc) = 1a9cf3ba23a769d6a2e38a881ab9f714a2203104db88312ef9f931269af0da3d -SIZE (bind-9.6-ESV-R7-P3.tar.gz.asc) = 490 +SHA256 (bind-9.6-ESV-R7-P4.tar.gz) = 27152922fbf32fd5a39243e5daf00b6b74a80105aa357b2d6bb332cd41e68085 +SIZE (bind-9.6-ESV-R7-P4.tar.gz) = 6419312 +SHA256 (bind-9.6-ESV-R7-P4.tar.gz.asc) = 29ca706cd26f3b4cd7c08311927ff5b6c3db01c28df5a9add8f23d95ce601ca3 +SIZE (bind-9.6-ESV-R7-P4.tar.gz.asc) = 490 Modified: head/dns/bind97/Makefile ============================================================================== --- head/dns/bind97/Makefile Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind97/Makefile Wed Oct 10 11:54:44 2012 (r305645) @@ -1,7 +1,7 @@ # $FreeBSD$ PORTNAME?= bind97 -PORTVERSION= 9.7.6.3 +PORTVERSION= 9.7.6.4 PORTREVISION?= 0 CATEGORIES= dns net ipv6 MASTER_SITES= ${MASTER_SITE_ISC} @@ -14,7 +14,7 @@ MAINTAINER= erwin@FreeBSD.org COMMENT?= BIND DNS suite with updated DNSSEC and threads # ISC releases things like 9.4.0b3, which our versioning doesn't like -ISCVERSION= 9.7.6-P3 +ISCVERSION= 9.7.6-P4 MAKE_JOBS_UNSAFE= yes Modified: head/dns/bind97/distinfo ============================================================================== --- head/dns/bind97/distinfo Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind97/distinfo Wed Oct 10 11:54:44 2012 (r305645) @@ -1,4 +1,4 @@ -SHA256 (bind-9.7.6-P3.tar.gz) = 5d5ad5b168fb9231185e363b7d8c391e4b7b801eef269415f273e5e4591ba277 -SIZE (bind-9.7.6-P3.tar.gz) = 6971503 -SHA256 (bind-9.7.6-P3.tar.gz.asc) = 6b388305b98b0b46a4629333b15513a406779bbf70aeccc7be6b74aa1d5fe61c -SIZE (bind-9.7.6-P3.tar.gz.asc) = 490 +SHA256 (bind-9.7.6-P4.tar.gz) = 58b01bcf3ec5e2cfcad99b09379c164e508dc07dd8fb602970812d95fa30292e +SIZE (bind-9.7.6-P4.tar.gz) = 6983647 +SHA256 (bind-9.7.6-P4.tar.gz.asc) = ce01b28e00388e16d4fd4ba7be98b7fe51ac69b32e935913189fcbeed3bb063e +SIZE (bind-9.7.6-P4.tar.gz.asc) = 490 Modified: head/dns/bind98/Makefile ============================================================================== --- head/dns/bind98/Makefile Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind98/Makefile Wed Oct 10 11:54:44 2012 (r305645) @@ -1,7 +1,7 @@ # $FreeBSD$ PORTNAME= bind98 -PORTVERSION= 9.8.3.3 +PORTVERSION= 9.8.3.4 CATEGORIES= dns net ipv6 MASTER_SITES= ${MASTER_SITE_ISC} MASTER_SITE_SUBDIR= bind9/${ISCVERSION} @@ -13,7 +13,7 @@ MAINTAINER= erwin@FreeBSD.org COMMENT= BIND DNS suite with updated DNSSEC and DNS64 # ISC releases things like 9.8.0-P1, which our versioning doesn't like -ISCVERSION= 9.8.3-P3 +ISCVERSION= 9.8.3-P4 MAKE_JOBS_UNSAFE= yes Modified: head/dns/bind98/distinfo ============================================================================== --- head/dns/bind98/distinfo Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind98/distinfo Wed Oct 10 11:54:44 2012 (r305645) @@ -1,4 +1,4 @@ -SHA256 (bind-9.8.3-P3.tar.gz) = 2819fc75f686bd0d393e04873f69982e0462a5604bfd2e207396b86334200cd3 -SIZE (bind-9.8.3-P3.tar.gz) = 7109848 -SHA256 (bind-9.8.3-P3.tar.gz.asc) = a7ae019d9ededba3e50fb889eb0096dc0d53117996d20420750776bb176805c2 -SIZE (bind-9.8.3-P3.tar.gz.asc) = 490 +SHA256 (bind-9.8.3-P4.tar.gz) = 2fc27441ed0c3905045c4baca639c953e7f3f2bc684b52abbf35481d617e783f +SIZE (bind-9.8.3-P4.tar.gz) = 7117624 +SHA256 (bind-9.8.3-P4.tar.gz.asc) = 967f4c9fc0b5cd2982d3113f6ed672ac46eb7f8893d35abc19a6282b02ee4c69 +SIZE (bind-9.8.3-P4.tar.gz.asc) = 490 Modified: head/dns/bind99/Makefile ============================================================================== --- head/dns/bind99/Makefile Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind99/Makefile Wed Oct 10 11:54:44 2012 (r305645) @@ -1,7 +1,7 @@ # $FreeBSD$ PORTNAME= bind99 -PORTVERSION= 9.9.1.3 +PORTVERSION= 9.9.1.4 CATEGORIES= dns net ipv6 MASTER_SITES= ${MASTER_SITE_ISC} MASTER_SITE_SUBDIR= bind9/${ISCVERSION} @@ -13,7 +13,7 @@ MAINTAINER= erwin@FreeBSD.org COMMENT= BIND DNS suite with updated DNSSEC and DNS64 # ISC releases things like 9.8.0-P1, which our versioning doesn't like -ISCVERSION= 9.9.1-P3 +ISCVERSION= 9.9.1-P4 MAKE_JOBS_UNSAFE= yes Modified: head/dns/bind99/distinfo ============================================================================== --- head/dns/bind99/distinfo Wed Oct 10 11:53:08 2012 (r305644) +++ head/dns/bind99/distinfo Wed Oct 10 11:54:44 2012 (r305645) @@ -1,4 +1,4 @@ -SHA256 (bind-9.9.1-P3.tar.gz) = 1cdb83db76d6f8554dea19e3bd82b8d65261a24b9ce9fc948eade8c57569e302 -SIZE (bind-9.9.1-P3.tar.gz) = 7217415 -SHA256 (bind-9.9.1-P3.tar.gz.asc) = d3047cc5dfd5f4fe941996f363425ce86856b389fe7de6aad251f0d627e4d145 -SIZE (bind-9.9.1-P3.tar.gz.asc) = 490 +SHA256 (bind-9.9.1-P4.tar.gz) = 18f90727fd9566da037e71569d9b3a4834c96b04d9e75f9899eba0bc88c0868a +SIZE (bind-9.9.1-P4.tar.gz) = 7227655 +SHA256 (bind-9.9.1-P4.tar.gz.asc) = f781b8eeeb44b3c88e8f68eddd1c3d85d089dcb00d99fede76ccdaa1a7f1e404 +SIZE (bind-9.9.1-P4.tar.gz.asc) = 490 Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Wed Oct 10 11:53:08 2012 (r305644) +++ head/security/vuxml/vuln.xml Wed Oct 10 11:54:44 2012 (r305645) @@ -51,6 +51,44 @@ Note: Please add new entries to the beg --> + + dns/bind9* -- crash on deliberately constructed combination of records + + + bind99 + 9.9.1.4 + + + bind98 + 9.8.3.4 + + + bind97 + 9.7.6.4 + + + bind96 + 9.6.3.1.ESV.R7.4 + + + + +

ISC reports:

+
+

A deliberately constructed combination of records could cause named + to hang while populating the additional section of a response.

+
+ + + + CVE-2012-5166 + + + 2012-09-26 + 2012-10-10 + + + chromium -- multiple vulnerabilities