[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

[SECURITY] Fedora 8 Update: bind-9.5.0-28.P1.fc8



--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-6281
2008-07-09 19:51:01
--------------------------------------------------------------------------------

Name        : bind
Product     : Fedora 8
Version     : 9.5.0
Release     : 28.P1.fc8
URL         : http://www.isc.org/products/BIND/
Summary     : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

--------------------------------------------------------------------------------
Update Information:

9.5.0-P1 release which contains fix for CVE-2008-1447. This update also fixes
parsing of inner ACLs.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul  8 2008 Adam Tkac <atkac redhat com> 32:9.5.0-28.P1
- 9.5.0-P1 release (CVE-2008-1447)
* Wed Jun 18 2008 Adam Tkac <atkac redhat com> 32:9.5.0-27.2
- parse inner acls correctly (#450995)
* Thu May 29 2008 Adam Tkac <atkac redhat com> 32:9.5.0-27.1
- 9.5.0 final
- bind-9.5-initialize.patch merged to upstream
* Thu May 22 2008 Adam Tkac <atkac redhat com> 32:9.5.0-27.rc1
- 9.5.0rc1 release
- initialize memory in ACL code correctly (#446848)
* Mon Apr 28 2008 Adam Tkac <atkac redhat com> 32:9.5.0-26.b3
- 9.5.0b3 release
- dropped patches (upstream)
  - bind-9.5.0-generate-xml.patch
  - bind-9.5-transfer-segv.patch
- fixed race condition in socket code (#400461, comment #36)
* Wed Apr 23 2008 Adam Tkac <atkac redhat com> 32:9.5.0-25.1.b2
- fixed building of named-sdb (#432497)
- bind-9.3.2-prctl_set_dumpable.patch is obsoleted
* Tue Feb 12 2008 Adam Tkac <atkac redhat com> 32:9.5.0-25.b2
- 9.5.0b2
  - dropped bind-9.5-gssapi-header.patch (upstream)
  - dropped bind-9.5-CVE-2008-0122.patch (upstream)
- improved patch for #400461 (segfault during sending notifies)
* Mon Feb  4 2008 Adam Tkac <atkac redhat com> 32:9.5.0-24.b1
- fixed segfault during sending notifies (#400461)
* Mon Jan 21 2008 Adam Tkac <atkac redhat com> 32:9.5.0-23.b1
- CVE-2008-0122
* Thu Dec 27 2007 Adam Tkac <atkac redhat com> 32:9.5.0-22.b1
- fixed initscript wait loop (#426382)
- removed dependency on policycoreutils and libselinux (#426515)
* Thu Dec 20 2007 Adam Tkac <atkac redhat com> 32:9.5.0-21.b1
- fixed regression caused by libidn2 patch (#426348)
* Wed Dec 19 2007 Adam Tkac <atkac redhat com> 32:9.5.0-20.b1
- CVE-2007-6283
* Wed Dec 12 2007 Adam Tkac <atkac redhat com> 32:9.5.0-19.2.b1
- added dst/gssapi.h to -devel subpackage (#419091)
- improved fix for (#417431)
* Mon Dec 10 2007 Adam Tkac <atkac redhat com> 32:9.5.0-19.1.b1
- fixed shutdown with initscript when rndc doesn't work (#417431)
- fixed IDN patch (#412241)
* Thu Dec  6 2007 Adam Tkac <atkac redhat com> 32:9.5.0-19.b1
- 9.5.0b1 (#405281, #392491)
* Mon Dec  3 2007 Adam Tkac <atkac redhat com> 32:9.5.0-18.3.a7
- removed bind-9.5-random_ports.patch because upstream doesn't
  like it. query-source{,-v6} is sufficient
- bind-chroot-admin called restorecon on /proc filesystem (#405281)
* Tue Nov 20 2007 Adam Tkac <atkac redhat com> 32:9.5.0-18.2.a7
- use system port selector instead ISC's (#391931)
* Mon Nov 19 2007 Adam Tkac <atkac redhat com> 32:9.5.0-18.a7
- removed statement from initscript which passes -D to named
* Thu Nov 15 2007 Adam Tkac <atkac redhat com> 32:9.5.0-17.a7
- 9.5.0a7
- dropped patches (upstream)
  - bind-9.5-update.patch
  - bind-9.5-pool_badfree.patch
  - bind-9.5-_res_errno.patch
* Thu Nov 15 2007 Adam Tkac <atkac redhat com> 32:9.5.0-16.3.a6
- added bind-sdb again, contains SDB modules and DLZ modules
- bind-9.3.1rc1-sdb.patch replaced by bind-9.5-sdb.patch
* Mon Nov 12 2007 Adam Tkac <atkac redhat com> 32:9.5.0-16.2.a6
- removed Requires: openldap, postgresql, mysql, db4, unixODBC (#374261)
- new L.ROOT-SERVERS.NET address
* Mon Oct 29 2007 Adam Tkac <atkac redhat com> 32:9.5.0-16.1.a6
- completely disable DBUS (#339191)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #449345 - CVE-2008-1447 implement source UDP port randomization (CERT VU#800113)
        https://bugzilla.redhat.com/show_bug.cgi?id=449345
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]