From owner-cvs-ports@FreeBSD.ORG  Thu Jan 25 01:57:43 2007
Return-Path: <owner-cvs-ports@FreeBSD.ORG>
X-Original-To: cvs-ports@FreeBSD.org
Delivered-To: cvs-ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 484F916A401;
	Thu, 25 Jan 2007 01:57:43 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org [69.147.83.41])
	by mx1.freebsd.org (Postfix) with ESMTP id 3B3D013C45A;
	Thu, 25 Jan 2007 01:57:43 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.13.6/8.13.6) with ESMTP id l0P1vhdK060757;
	Thu, 25 Jan 2007 01:57:43 GMT
	(envelope-from dougb@repoman.freebsd.org)
Received: (from dougb@localhost)
	by repoman.freebsd.org (8.13.6/8.13.4/Submit) id l0P1vhZK060756;
	Thu, 25 Jan 2007 01:57:43 GMT (envelope-from dougb)
Message-Id: <200701250157.l0P1vhZK060756@repoman.freebsd.org>
From: Doug Barton <dougb@FreeBSD.org>
Date: Thu, 25 Jan 2007 01:57:42 +0000 (UTC)
To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Cc: 
Subject: cvs commit: ports/dns/bind9 Makefile distinfo
X-BeenThere: cvs-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the ports tree <cvs-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-ports>
List-Post: <mailto:cvs-ports@freebsd.org>
List-Help: <mailto:cvs-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jan 2007 01:57:43 -0000

dougb       2007-01-25 01:57:42 UTC

  FreeBSD ports repository

  Modified files:
    dns/bind9            Makefile distinfo 
  Log:
  Upgrade to version 9.3.4, the latest from ISC, which addresses the
  following security issues. All users of BIND are encouraged to upgrade
  to this version.
  
  2126.   [security]      Serialise validation of type ANY responses. [RT #16555]
  
  2124.   [security]      It was possible to dereference a freed fetch
                          context. [RT #16584]
  
  2089.   [security]      Raise the minimum safe OpenSSL versions to
                          OpenSSL 0.9.7l and OpenSSL 0.9.8d.  Versions
                          prior to these have known security flaws which
                          are (potentially) exploitable in named. [RT #16391]
  
  2088.   [security]      Change the default RSA exponent from 3 to 65537.
                          [RT #16391]
  
  2066.   [security]      Handle SIG queries gracefully. [RT #16300]
  
  1941.   [bug]           ncache_adderesult() should set eresult even if no
                          rdataset is passed to it. [RT #15642]
  
  Revision  Changes    Path
  1.75      +2 -2      ports/dns/bind9/Makefile
  1.41      +6 -6      ports/dns/bind9/distinfo