From: Yann E. MORIN <yann.morin.1998@free.fr>
To: buildroot@busybox.net
Subject: [Buildroot] [PATCH] package/bind: security bump to version 9.11.22
Date: Sun, 23 Aug 2020 15:32:00 +0200 [thread overview]
Message-ID: <20200823133200.GH8728@scaer> (raw)
In-Reply-To: <20200821212612.9029-1-peter@korsgaard.com>
Peter, All,
On 2020-08-21 23:26 +0200, Peter Korsgaard spake thusly:
> Fixes the following security issues:
>
> CVE-2020-8622: A truncated TSIG response can lead to an assertion failure
> https://kb.isc.org/docs/cve-2020-8622
>
> CVE-2020-8623: A flaw in native PKCS#11 code can lead to a remotely
> triggerable assertion failure in pk11.c
> https://kb.isc.org/docs/cve-2020-8623
>
> CVE-2020-8624: update-policy rules of type "subdomain" are enforced incorrectly
> https://kb.isc.org/docs/cve-2020-8624
>
> For more details, see the release notes:
> https://downloads.isc.org/isc/bind9/9.11.22/RELEASE-NOTES-bind-9.11.22.html
>
> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Security fix => applied to master, thanks.
Regards,
Yann E. MORIN.
> ---
> package/bind/bind.hash | 4 ++--
> package/bind/bind.mk | 2 +-
> 2 files changed, 3 insertions(+), 3 deletions(-)
>
> diff --git a/package/bind/bind.hash b/package/bind/bind.hash
> index 282b2aeba3..4ba0182b1c 100644
> --- a/package/bind/bind.hash
> +++ b/package/bind/bind.hash
> @@ -1,4 +1,4 @@
> -# Verified from https://ftp.isc.org/isc/bind9/9.11.20/bind-9.11.20.tar.gz.asc
> +# Verified from https://ftp.isc.org/isc/bind9/9.11.22/bind-9.11.22.tar.gz.asc
> # with key AE3FAC796711EC59FC007AA474BB6B9A4CBB3D38
> -sha256 306831a738a275693bbe1d6839a09b34a2c8b5c26f8a42ea57ef000a6a99c2b6 bind-9.11.20.tar.gz
> +sha256 afc6d8015006f1cabf699ff19f517bb8fd9c1811e5231f26baf51c3550262ac9 bind-9.11.22.tar.gz
> sha256 da2aec2b7f6f0feb16bcb080e2c587375fd3195145f047e4d92d112f5b9db501 COPYRIGHT
> diff --git a/package/bind/bind.mk b/package/bind/bind.mk
> index 80f8defca8..18fc4845f9 100644
> --- a/package/bind/bind.mk
> +++ b/package/bind/bind.mk
> @@ -4,7 +4,7 @@
> #
> ################################################################################
>
> -BIND_VERSION = 9.11.20
> +BIND_VERSION = 9.11.22
> BIND_SITE = https://ftp.isc.org/isc/bind9/$(BIND_VERSION)
> # bind does not support parallel builds.
> BIND_MAKE = $(MAKE1)
> --
> 2.20.1
>
> _______________________________________________
> buildroot mailing list
> buildroot at busybox.net
> http://lists.busybox.net/mailman/listinfo/buildroot
--
.-----------------.--------------------.------------------.--------------------.
| Yann E. MORIN | Real-Time Embedded | /"\ ASCII RIBBON | Erics' conspiracy: |
| +33 662 376 056 | Software Designer | \ / CAMPAIGN | ___ |
| +33 561 099 427 `------------.-------: X AGAINST | \e/ There is no |
| http://ymorin.is-a-geek.org/ | _/*\_ | / \ HTML MAIL | v conspiracy. |
'------------------------------^-------^------------------^--------------------'
next prev parent reply other threads:[~2020-08-23 13:32 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-08-21 21:26 [Buildroot] [PATCH] package/bind: security bump to version 9.11.22 Peter Korsgaard
2020-08-23 13:32 ` Yann E. MORIN [this message]
2020-08-28 17:03 ` Peter Korsgaard
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20200823133200.GH8728@scaer \
--to=yann.morin.1998@free.fr \
--cc=buildroot@busybox.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.