From: Gustavo Zacarias Date: Fri, 4 Sep 2015 12:39:52 +0000 (-0300) Subject: bind: security bump to version 9.9.7-P3 X-Git-Url: https://git.libre-soc.org/?a=commitdiff_plain;h=38d1a66bda57cb4c47156021ee976c2583b55822;p=buildroot.git bind: security bump to version 9.9.7-P3 Fixes: CVE-2015-5722 - denial-of-service vector which can be exploited remotely against a BIND server that is performing validation on DNSSEC-signed records. CVE-2015-5986 - denial-of-service vector which can be used against a BIND server that is performing recursion and (under limited conditions) an authoritative-only nameserver. Signed-off-by: Gustavo Zacarias Reviewed-by: Vicente Olivert Riera Tested-by: Vicente Olivert Riera Signed-off-by: Peter Korsgaard --- diff --git a/package/bind/bind.hash b/package/bind/bind.hash index 6bc2d1b645..4c9fc406b0 100644 --- a/package/bind/bind.hash +++ b/package/bind/bind.hash @@ -1,2 +1,2 @@ -# Verified from ftp://ftp.isc.org/isc/bind9/9.9.7-P2/bind-9.9.7-P2.tar.gz.sha256.asc -sha256 f5f433567e5f68d61460d86f691471259a49b6d10d7422acbd88b7fdb038b518 bind-9.9.7-P2.tar.gz +# Verified from ftp://ftp.isc.org/isc/bind9/9.9.7-P3/bind-9.9.7-P3.tar.gz.sha256.asc +sha256 cb737dce18350890f350dd7d3bc836c62ea440103dfde184c09bc18cfad8a844 bind-9.9.7-P3.tar.gz diff --git a/package/bind/bind.mk b/package/bind/bind.mk index 6201991302..95051d1e07 100644 --- a/package/bind/bind.mk +++ b/package/bind/bind.mk @@ -4,7 +4,7 @@ # ################################################################################ -BIND_VERSION = 9.9.7-P2 +BIND_VERSION = 9.9.7-P3 BIND_SITE = ftp://ftp.isc.org/isc/bind9/$(BIND_VERSION) BIND_INSTALL_STAGING = YES BIND_CONFIG_SCRIPTS = bind9-config isc-config.sh