X-Original-To: alpine-aports@lists.alpinelinux.org
Received: from mail-lf0-f66.google.com (mail-lf0-f66.google.com [209.85.215.66])
	by lists.alpinelinux.org (Postfix) with ESMTP id C57B55C4FDF
	for <alpine-aports@lists.alpinelinux.org>; Fri, 14 Apr 2017 12:11:09 +0000 (GMT)
Received: by mail-lf0-f66.google.com with SMTP id 75so9905821lfs.3
        for <alpine-aports@lists.alpinelinux.org>; Fri, 14 Apr 2017 05:11:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=from:to:cc:subject:date:message-id;
        bh=EGyPom/nJFGUIpoewzXgvmZl4P5SwmZ2IIAB5oYdnqE=;
        b=b65xxMdK274qOhxxbHJXH/8F9mCcBxov0g7muvv2Y7B5ozVkpZk/wB4jg/o16b4N/4
         kzhq/0dK8pdbxVjhZxRSORP2H+r3xl2kI2xPFUGcFLaVG7kuxezescseAmriiqOsTv8+
         zgmu4lRJGk5xB3hZFEHIJAh2VyNQwEeLQBchhwPkodVkwNiP3TyI2tfcFNtg+cUPbBzD
         0jB81zwx9UWzFV7+rme6Vs8OSSLVPa25TpCpe3rH2X5zhsmPscfcdMXfzj+O5X9gyX53
         JcSO5x4xKllD3vAnEEbLv8Y9a6iRarG4YG0NLLC1LQWHLT3Cnejp36gkrUKxuSVEfM+1
         SJxg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:date:message-id;
        bh=EGyPom/nJFGUIpoewzXgvmZl4P5SwmZ2IIAB5oYdnqE=;
        b=FVuOYB+/K0aZwBxhtVYspBellZZJD3VWRMgLa0KAw0mt33lfZHTJjgm0CCy8h7mrRr
         74dshA46F0lvHgdb3fiFwWCiXZGSm7r6ZZp3xiLKGTlt2ppWYk01Z7tzuny4q69tz9LG
         TUShK8IkQkqjbX1aDfATieTB3SX11YQ8D/wc16/i8qm4lBTCHdO1QrAg0tvjAp72EP4J
         aCpe3eWOT8UVKdKPPvK3BoRu646/UCgu8+NEswVRA6lulUvmWW7h5AJ57g+GEv1n5oi3
         tpfl1U7c7afj20M95eOr2uHzJ1ORRk7fldMG3ZWAq2NGZpe8X7ciaEJUZLj0wQohpE7m
         XAOg==
X-Gm-Message-State: AN3rC/5o3SoohEyF3dPpSf7NL/wYPP1396oOR5V5ur8JneYrHKj1iTKO
	/Y1KwNRdVemLfA==
X-Received: by 10.46.9.208 with SMTP id 199mr2519545ljj.42.1492171868611;
        Fri, 14 Apr 2017 05:11:08 -0700 (PDT)
Received: from edge.util.wtbts.net ([83.145.235.199])
        by smtp.gmail.com with ESMTPSA id p27sm343415lfg.5.2017.04.14.05.11.07
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Fri, 14 Apr 2017 05:11:07 -0700 (PDT)
From: Sergei Lukin <sergej.lukin@gmail.com>
To: alpine-aports@lists.alpinelinux.org
Cc: Sergei Lukin <sergej.lukin@gmail.com>
Subject: [alpine-aports] [PATCH edge] main/bind: security upgrade to 9.11.0_p5 - fixes #7141
Date: Fri, 14 Apr 2017 12:11:01 +0000
Message-Id: <20170414121101.28584-1-sergej.lukin@gmail.com>
X-Mailer: git-send-email 2.12.2
X-Mailinglist: alpine-aports
Precedence: list
List-Id: Alpine Development <alpine-aports.lists.alpinelinux.org>
List-Unsubscribe: 
	<mailto:alpine-aports+unsubscribe@lists.alpinelinux.org?subject=unsubscribe>
List-Post: <mailto:alpine-aports@lists.alpinelinux.org>
List-Help: <mailto:alpine-aports+help@lists.alpinelinux.org?subject=help>
List-Subscribe: 
	<mailto:alpine-aports+subscribe@lists.alpinelinux.org?subject=subscribe>

CVE-2017-3136: An error handling synthesized records could cause an assertion failure when using DNS64 with "break-dnssec yes;"
CVE-2017-3137: A response packet can cause a resolver to terminate when processing an answer containing a CNAME or DNAME
CVE-2017-3138: named exits with a REQUIRE assertion failure if it receives a null command string on its control channel
---
 main/bind/APKBUILD | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/main/bind/APKBUILD b/main/bind/APKBUILD
index f634e45b7d..56940ef2ab 100644
--- a/main/bind/APKBUILD
+++ b/main/bind/APKBUILD
@@ -3,7 +3,7 @@
 # Contributor: Carlo Landmeter <clandmeter@gmail.com>
 # Maintainer: Natanael Copa <ncopa@alpinelinux.org>
 pkgname=bind
-pkgver=9.11.0_p3
+pkgver=9.11.0_p5
 _ver=${pkgver%_p*}
 _p=${pkgver#*_p}
 [ "$_p" != "$pkgver" ] && _ver="${_ver}-P$_p"
@@ -30,6 +30,10 @@ source="http://ftp.isc.org/isc/bind9/${_ver}/bind-${_ver}.tar.gz
 	"
 
 # secfixes:
+#   9.11.0_p5-r0:
+#     - CVE-2017-3136
+#     - CVE-2017-3137
+#     - CVE-2017-3138
 #   9.10.4_p5-r0:
 #     - CVE-2016-9131
 #     - CVE-2016-9147
@@ -132,7 +136,7 @@ tools() {
 	done
 }
 
-sha512sums="fd5818ea36d7d4aa754a69ced675485cdb80b82f871b3f175c24715c0bd57fc78d4566657996f86ab32cb4158a974e97bb941ff9920cc3718b3484c161164b45  bind-9.11.0-P3.tar.gz
+sha512sums="142407db35a7bba6e676f2b3dc726a3a6ece9df8a27722f108ec309e24c4614da097b6cd31675c4925e68ff147896bc0a16dd71aa74dd73753ba86a2dbd7d3bd  bind-9.11.0-P5.tar.gz
 f3e3d1b680617485b9db20a59a10fec3b3b539d423984493228a7d5aaa29d699b9012ad60e863e56bdaf15b73952c22710d0ded1c86cd24417ac775ee062cfa3  bind.so_bsdcompat.patch
 196c0a3b43cf89e8e3547d7fb63a93ff9a3306505658dfd9aa78e6861be6b226580b424dd3dd44b955b2d9f682b1dc62c457f3ac29ce86200ef070140608c015  named.initd
 127bdcc0b5079961f0951344bc3fad547450c81aee2149eac8c41a8c0c973ea0ffe3f956684c6fcb735a29c43d2ff48c153b6a71a0f15757819a72c492488ddf  named.confd
-- 
2.12.2



---
Unsubscribe:  alpine-aports+unsubscribe@lists.alpinelinux.org
Help:         alpine-aports+help@lists.alpinelinux.org
---