Mail archive
alpine-aports

[alpine-aports] [PATCH v3.5] main/bind: security upgrade to 9.10.4_p5 - fixes #6676

From: Sergei Lukin <sergej.lukin_at_gmail.com>
Date: Fri, 13 Jan 2017 07:28:10 +0000

CVE-2016-9131: A malformed response to an ANY query can cause an assertion failure during recursion
CVE-2016-9147: An error handling a query response containing inconsistent DNSSEC information could cause an assertion failure
CVE-2016-9444: An unusually-formed DS record response could cause an assertion failure
---
 main/bind/APKBUILD | 23 +++++++++++++++--------
 1 file changed, 15 insertions(+), 8 deletions(-)
diff --git a/main/bind/APKBUILD b/main/bind/APKBUILD
index f8d83c8269..9b7dba3ef3 100644
--- a/main/bind/APKBUILD
+++ b/main/bind/APKBUILD
_at_@ -1,8 +1,9 @@
+# Contributor: Sergei Lukin <sergej.lukin_at_gmail.com>
 # Contributor: Sören Tempel <soeren+alpine_at_soeren-tempel.net>
 # Contributor: Carlo Landmeter <clandmeter_at_gmail.com>
 # Maintainer: Natanael Copa <ncopa_at_alpinelinux.org>
 pkgname=bind
-pkgver=9.10.4_p4
+pkgver=9.10.4_p5
 _ver=${pkgver%_p*}
 _p=${pkgver#*_p}
 [ "$_p" != "$pkgver" ] && _ver="${_ver}-P$_p"
_at_@ -28,9 +29,15 @@ source="http://ftp.isc.org/isc/bind9/${_ver}/bind-${_ver}.tar.gz
 	named.ca
 	"
 
-_builddir="$srcdir/bind-${_ver}"
+# secfixes:
+#   9.10.4_p5-r0:
+#     - CVE-2016-9131
+#     - CVE-2016-9147
+#     - CVE-2016-9444
+
+builddir="$srcdir/bind-${_ver}"
 prepare() {
-	cd "$_builddir"
+	cd "$builddir"
 
 	### http://bugs.gentoo.org/show_bug.cgi?id=227333
 	export CFLAGS="$CFLAGS -D_GNU_SOURCE"
_at_@ -48,7 +55,7 @@ prepare() {
 }
 
 build() {
-	cd "$_builddir"
+	cd "$builddir"
 	./configure \
 		--build=$CBUILD \
 		--host=$CHOST \
_at_@ -73,7 +80,7 @@ build() {
 }
 
 package() {
-	cd "$_builddir"
+	cd "$builddir"
 	install -d -m0770 -g named -o root "$pkgdir"/var/bind \
 		"$pkgdir"/var/bind/sec \
 		"$pkgdir"/var/bind/dyn \
_at_@ -125,7 +132,7 @@ tools() {
 	done
 }
 
-md5sums="e110904a1d54f83f01d4be8bcd842927  bind-9.10.4-P4.tar.gz
+md5sums="c53a3e34e7aabb16820b036ae9afd3c9  bind-9.10.4-P5.tar.gz
 f270a5b0a28ab6e818840c5c368ddbcc  bind.so_bsdcompat.patch
 0c7c9c9a131564ac8acbbbc2ce25f94b  named.initd
 418a367cecfdf8760c92235d3967867e  named.confd
_at_@ -134,7 +141,7 @@ a9de5fb1c027a7eedf440bf187594f07  named.conf.authoritative
 a7455b009b7fccd74ac6f6eaa6902a00  127.zone
 c3220168fabfb31a25e8c3a545545e34  localhost.zone
 a94e29ac677846f3d4d618c50b7d34f1  named.ca"
-sha256sums="a41ce7518e1d0faa40312cc89f4ca42246906b2718099d992e87a5d3ce9a9d86  bind-9.10.4-P4.tar.gz
+sha256sums="89c47b413613feddb1b623ad092f3def2247402e4148c464dbc6c0021e3f0feb  bind-9.10.4-P5.tar.gz
 4c5dc352da0a12bdda2644e835f7eabde4f5687f1a98acd65b22be4ee587c086  bind.so_bsdcompat.patch
 74e7a9ab5836d5182a55a9fc4ba24ea2665e4ef9307c4071ba6e2eab792d73ce  named.initd
 c0e7b365dca072dc96a97c8f81dff012aff7fe57337c10b63cd9f292d03c207d  named.confd
_at_@ -143,7 +150,7 @@ c0e7b365dca072dc96a97c8f81dff012aff7fe57337c10b63cd9f292d03c207d  named.confd
 65b909fc1398dfa5b532ab395d6920758937093cf7e5b5bec8242dff4fe15e89  127.zone
 b6dff70386920adb21883566610b0a45b9de5a3847a870e4ad1902c5c7900399  localhost.zone
 0bd88f7f5cab2f872d3619700e382c1df6837a8aacf28cf6a0bf336742a0ee56  named.ca"
-sha512sums="a662053f2052eb2d7ea61b4ecbd4e92980c808080598f7c4590c746e8e5d6545a9f965a8aeece57ce92b17545844cf8565719f697eaef6e2ade8106d810d2799  bind-9.10.4-P4.tar.gz
+sha512sums="09613b2a16a5784a1b0e4b685d1d2cea1c1539e11497c848f1c92a8a4f26c7fc0f08ef8f2bd17316559966aca04e1ec9d744304c36c002d66eaff6240473a101  bind-9.10.4-P5.tar.gz
 f3e3d1b680617485b9db20a59a10fec3b3b539d423984493228a7d5aaa29d699b9012ad60e863e56bdaf15b73952c22710d0ded1c86cd24417ac775ee062cfa3  bind.so_bsdcompat.patch
 196c0a3b43cf89e8e3547d7fb63a93ff9a3306505658dfd9aa78e6861be6b226580b424dd3dd44b955b2d9f682b1dc62c457f3ac29ce86200ef070140608c015  named.initd
 127bdcc0b5079961f0951344bc3fad547450c81aee2149eac8c41a8c0c973ea0ffe3f956684c6fcb735a29c43d2ff48c153b6a71a0f15757819a72c492488ddf  named.confd
-- 
2.11.0
---
Unsubscribe:  alpine-aports+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-aports+help_at_lists.alpinelinux.org
---
Received on Fri Jan 13 2017 - 07:28:10 GMT