Mail archive
alpine-aports

[alpine-aports] [PATCH v3.3] main/bind: security upgrade to 9.10.4_p5 - fixes #6678

From: Sergei Lukin <sergej.lukin_at_gmail.com>
Date: Fri, 13 Jan 2017 07:54:48 +0000

CVE-2016-9131: A malformed response to an ANY query can cause an assertion failure during recursion
CVE-2016-9147: An error handling a query response containing inconsistent DNSSEC information could cause an assertion failure
CVE-2016-9444: An unusually-formed DS record response could cause an assertion failure
---
 main/bind/APKBUILD | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)
diff --git a/main/bind/APKBUILD b/main/bind/APKBUILD
index 82366e8..f4c139d 100644
--- a/main/bind/APKBUILD
+++ b/main/bind/APKBUILD
_at_@ -1,8 +1,9 @@
+# Contributor: Sergei Lukin <sergej.lukin_at_gmail.com>
 # Contributor: Sören Tempel <soeren+alpine_at_soeren-tempel.net>
 # Contributor: Carlo Landmeter <clandmeter_at_gmail.com>
 # Maintainer: Natanael Copa <ncopa_at_alpinelinux.org>
 pkgname=bind
-pkgver=9.10.4_p4
+pkgver=9.10.4_p5
 _ver=${pkgver%_p*}
 _p=${pkgver#*_p}
 [ "$_p" != "$pkgver" ] && _ver="${_ver}-P$_p"
_at_@ -30,7 +31,13 @@ source="http://ftp.isc.org/isc/bind9/${_ver}/bind-${_ver}.tar.gz
 
 # secfixes:
 #   9.10.4_p3-r0:
-#   - CVE-2016-2776
+#     - CVE-2016-2776
+#   9.10.4_p4-r0:
+#     - CVE-2016-8864
+#   9.10.4_p5-r0:
+#     - CVE-2016-9131
+#     - CVE-2016-9147
+#     - CVE-2016-9444
 
 _builddir="$srcdir/bind-${_ver}"
 prepare() {
_at_@ -130,7 +137,7 @@ tools() {
 	done
 }
 
-md5sums="e110904a1d54f83f01d4be8bcd842927  bind-9.10.4-P4.tar.gz
+md5sums="c53a3e34e7aabb16820b036ae9afd3c9  bind-9.10.4-P5.tar.gz
 f270a5b0a28ab6e818840c5c368ddbcc  bind.so_bsdcompat.patch
 0c7c9c9a131564ac8acbbbc2ce25f94b  named.initd
 418a367cecfdf8760c92235d3967867e  named.confd
_at_@ -139,7 +146,7 @@ a9de5fb1c027a7eedf440bf187594f07  named.conf.authoritative
 a7455b009b7fccd74ac6f6eaa6902a00  127.zone
 c3220168fabfb31a25e8c3a545545e34  localhost.zone
 a94e29ac677846f3d4d618c50b7d34f1  named.ca"
-sha256sums="a41ce7518e1d0faa40312cc89f4ca42246906b2718099d992e87a5d3ce9a9d86  bind-9.10.4-P4.tar.gz
+sha256sums="89c47b413613feddb1b623ad092f3def2247402e4148c464dbc6c0021e3f0feb  bind-9.10.4-P5.tar.gz
 4c5dc352da0a12bdda2644e835f7eabde4f5687f1a98acd65b22be4ee587c086  bind.so_bsdcompat.patch
 74e7a9ab5836d5182a55a9fc4ba24ea2665e4ef9307c4071ba6e2eab792d73ce  named.initd
 c0e7b365dca072dc96a97c8f81dff012aff7fe57337c10b63cd9f292d03c207d  named.confd
_at_@ -148,7 +155,7 @@ c0e7b365dca072dc96a97c8f81dff012aff7fe57337c10b63cd9f292d03c207d  named.confd
 65b909fc1398dfa5b532ab395d6920758937093cf7e5b5bec8242dff4fe15e89  127.zone
 b6dff70386920adb21883566610b0a45b9de5a3847a870e4ad1902c5c7900399  localhost.zone
 0bd88f7f5cab2f872d3619700e382c1df6837a8aacf28cf6a0bf336742a0ee56  named.ca"
-sha512sums="a662053f2052eb2d7ea61b4ecbd4e92980c808080598f7c4590c746e8e5d6545a9f965a8aeece57ce92b17545844cf8565719f697eaef6e2ade8106d810d2799  bind-9.10.4-P4.tar.gz
+sha512sums="09613b2a16a5784a1b0e4b685d1d2cea1c1539e11497c848f1c92a8a4f26c7fc0f08ef8f2bd17316559966aca04e1ec9d744304c36c002d66eaff6240473a101  bind-9.10.4-P5.tar.gz
 f3e3d1b680617485b9db20a59a10fec3b3b539d423984493228a7d5aaa29d699b9012ad60e863e56bdaf15b73952c22710d0ded1c86cd24417ac775ee062cfa3  bind.so_bsdcompat.patch
 196c0a3b43cf89e8e3547d7fb63a93ff9a3306505658dfd9aa78e6861be6b226580b424dd3dd44b955b2d9f682b1dc62c457f3ac29ce86200ef070140608c015  named.initd
 127bdcc0b5079961f0951344bc3fad547450c81aee2149eac8c41a8c0c973ea0ffe3f956684c6fcb735a29c43d2ff48c153b6a71a0f15757819a72c492488ddf  named.confd
-- 
2.6.6
---
Unsubscribe:  alpine-aports+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-aports+help_at_lists.alpinelinux.org
---
Received on Fri Jan 13 2017 - 07:54:48 GMT