OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/bind?expand=0&rev=12

2007-08-09 16:01:16 +00:00 · 2007-08-09 16:01:16 +00:00 · 5b3dcf52da
commit 5b3dcf52da
parent a3bd10432a
4 changed files with 25 additions and 11 deletions
--- a/bind-9.4.1-P1.tar.gz
+++ b/bind-9.4.1-P1.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:912d07be9a6b4fa180d38637bf32ac4e802b087e46fbbf2a76314ecc3444b693
+size 6341409
--- a/bind-9.4.1.tar.gz
+++ b/bind-9.4.1.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:79c671ec6c32d84984a5a07e691dbed57a744c3602837cc8e3f4fd0e450a42fa
-size 6334215
--- a/bind.changes
+++ b/bind.changes
@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Thu Jul 26 13:46:45 CEST 2007 - mt@suse.de
+
+- Bug #294403: updated to security release 9.4.1-P1 fixing:
+  CVE-2007-2926: cryptographically weak query ids [RT #16915].
+  CVE-2007-2925: allow-query-cache/allow-recursion default
+                 acls not set [RT #16987], [RT #16960].
+
 -------------------------------------------------------------------
 Sat May 26 23:43:35 CEST 2007 - ro@suse.de

--- a/bind.spec
+++ b/bind.spec
@ -1,5 +1,5 @@
 #
-# spec file for package bind (Version 9.4.1)
+# spec file for package bind (Version 9.4.1.P1)
 #
 # Copyright (c) 2007 SUSE LINUX Products GmbH, Nuernberg, Germany.
 # This file and all modifications and additions to the pristine
@ -12,13 +12,14 @@

 Name:           bind
 %define pkg_name bind
+%define pkg_vers 9.4.1-P1
 #BuildRequires:  openldap2 openldap2-devel
 BuildRequires:  openssl openssl-devel
 Summary:        Domain Name System (DNS) Server (named)
-Version:        9.4.1
-Release:        5
+Version:        9.4.1.P1
+Release:        1
 %define       SDB_LDAP_VERSION      1.0-beta
-License:        BSD License and BSD-like, X11/MIT
+License:        BSD 3-Clause, X11/MIT
 Group:          Productivity/Networking/DNS/Servers
 Provides:       dns_daemon bind8 bind9
 Obsoletes:      bind8 bind9
@ -26,7 +27,7 @@ Requires:       %{name}-utils %{name}-chrootenv
 PreReq:         %fillup_prereq %insserv_prereq bind-utils /bin/grep /bin/sed /bin/mkdir /usr/bin/tee /bin/chmod /bin/chown /bin/mv /bin/cat /usr/bin/dirname /usr/bin/diff /usr/bin/old /usr/sbin/groupadd /usr/sbin/useradd /usr/sbin/usermod
 Autoreqprov:    on
 URL:            http://isc.org/sw/bind/
-Source:         ftp://ftp.isc.org/isc/bind9/%{version}/bind-%{version}.tar.gz
+Source:         ftp://ftp.isc.org/isc/bind9/%{pkg_vers}/bind-%{pkg_vers}.tar.gz
 Source1:        vendor-files.tar.bz2
 Source9:        ftp://ftp.internic.net/domain/named.root
 Source40:       http://www.venaas.no/ldap/bind-sdb/dnszone-schema.txt
@ -176,10 +177,10 @@ Authors:
    ISC Software <bind@isc.org>

 %prep
-[ "${RPM_BUILD_DIR}/%{pkg_name}-%{version}" != "/" -a -d "${RPM_BUILD_DIR}/%{pkg_name}-%{version}" ] && rm -rf "${RPM_BUILD_DIR}/%{pkg_name}-%{version}"
-%setup -n %{pkg_name}-%{version}
+[ "${RPM_BUILD_DIR}/%{pkg_name}-%{pkg_vers}" != "/" -a -d "${RPM_BUILD_DIR}/%{pkg_name}-%{pkg_vers}" ] && rm -rf "${RPM_BUILD_DIR}/%{pkg_name}-%{pkg_vers}"
+%setup -n %{pkg_name}-%{pkg_vers}
 #%setup -n %{pkg_name}-%{version} -T -D -a1 -a50
-%setup -n %{pkg_name}-%{version} -T -D -a1
+%setup -n %{pkg_name}-%{pkg_vers} -T -D -a1
 %patch -p1
 %patch1 -p1
 %patch2 -p1
@ -676,6 +677,11 @@ fi
 %doc %{_mandir}/man5/idnrc.5.gz

 %changelog
+* Thu Jul 26 2007 - mt@suse.de
+- Bug #294403: updated to security release 9.4.1-P1 fixing:
+  CVE-2007-2926: cryptographically weak query ids [RT #16915].
+  CVE-2007-2925: allow-query-cache/allow-recursion default
+  acls not set [RT #16987], [RT #16960].
 * Sat May 26 2007 - ro@suse.de
 - added ldconfig to postinstall script for bind-libs
 * Tue May 15 2007 - ug@suse.de