From 34efaf997bf334ec552f618efc58fe9263c3326300251650e88d1283126d82e6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Josef=20M=C3=B6llers?= Date: Thu, 18 Jun 2020 06:51:39 +0000 Subject: [PATCH] Upgrade OBS-URL: https://build.opensuse.org/package/show/network/bind?expand=0&rev=281 --- Makefile.in.diff | 14 -------------- bind-9.16.3.tar.xz | 3 --- bind-9.16.3.tar.xz.sha512.asc | 16 ---------------- bind-9.16.4.tar.xz | 3 +++ bind-9.16.4.tar.xz.sha512.asc | 16 ++++++++++++++++ bind.changes | 24 ++++++++++++++++++++++++ bind.spec | 4 +--- 7 files changed, 44 insertions(+), 36 deletions(-) delete mode 100644 Makefile.in.diff delete mode 100644 bind-9.16.3.tar.xz delete mode 100644 bind-9.16.3.tar.xz.sha512.asc create mode 100644 bind-9.16.4.tar.xz create mode 100644 bind-9.16.4.tar.xz.sha512.asc diff --git a/Makefile.in.diff b/Makefile.in.diff deleted file mode 100644 index 7063cbc..0000000 --- a/Makefile.in.diff +++ /dev/null @@ -1,14 +0,0 @@ -Index: bind-9.14.7/bin/named/Makefile.in -=================================================================== ---- bind-9.14.7.orig/bin/named/Makefile.in -+++ bind-9.14.7/bin/named/Makefile.in -@@ -173,8 +173,7 @@ installdirs: - - install:: named@EXEEXT@ installdirs - ${LIBTOOL_MODE_INSTALL} ${INSTALL_PROGRAM} named@EXEEXT@ ${DESTDIR}${sbindir} -- ${INSTALL_DATA} ${srcdir}/named.8 ${DESTDIR}${mandir}/man8 -- ${INSTALL_DATA} ${srcdir}/named.conf.5 ${DESTDIR}${mandir}/man5 -+ for m in ${MANPAGES}; do ${INSTALL_DATA} ${srcdir}/$$m ${DESTDIR}${mandir}/man$${m##*.}; done - - uninstall:: - rm -f ${DESTDIR}${mandir}/man5/named.conf.5 diff --git a/bind-9.16.3.tar.xz b/bind-9.16.3.tar.xz deleted file mode 100644 index b88f203..0000000 --- a/bind-9.16.3.tar.xz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:27ac6513de5f8d0db34b9f241da53baa15a14b2ad21338d0cde0826eaf564f7e -size 4573044 diff --git a/bind-9.16.3.tar.xz.sha512.asc b/bind-9.16.3.tar.xz.sha512.asc deleted file mode 100644 index c40ba02..0000000 --- a/bind-9.16.3.tar.xz.sha512.asc +++ /dev/null @@ -1,16 +0,0 @@ ------BEGIN PGP SIGNATURE----- - -iQIzBAABCgAdFiEElc7aJWscoKFfMC+1lSGn7V2s6RgFAl61B08ACgkQlSGn7V2s -6RhTuRAAls+mHx7QLKqb9cdDVssaXD5agWhLCgNoeC199W2fUzbvQv7c33mSx5BW -fdX0M//ngLfkvPe7IP0ggqrcnX2GB/i6VIGWl/yKJyxxyfgCyY2k9u094/S9NcaO -//e7hPRE8x9DcVBZTW8LmMMagULhtALeJlqUCeSq7554vMZgzn0wCx7EJnQC82oH -UD60Qq7TAIr5Uqziqc0Hu7yas1HEzrYBOGjsACFE1z1VJXXELyuZgq80yNj3GyRM -W6sy+OS1VobMXt/PQ6qbvQWf+62HppJ2rijpEcKKNEmHtrncvCjsPvuRjbYc1C+O -VULijbTBjxvFdvjYGNNKsShiI/OzBzHxyyZdkhhZqfzAwfuGNLIhXywVxhyo20Li -XhG2Sz7E7RIkyPqzxLQtiAoe0pGUDm+oC7rx5htZLSbQDZK/6xuxG0+wNuEHaJPS -LGYi3nLZ9U4wlXYZaEiIO2h0MlymN2XPf33sHxZYwSIhtUTGATAWKzodyQ72s1Fv -kB00w1AHdKyegxZ/ygwiIQeC4fFUwTRMG1HJ+gkmXNpRfMlkXMJdUuQHcdN19p1+ -/h0N0r1B5hu7sTwQTjPm0dh5kYeOts5WBd2CRterIajaLL3TYQ0QuKJ7/GKVJBWm -ynp9eVT/XYjnHVv9bs64Q50hO0c8wignw1Q7WzmXuhhb9J6AsB4= -=Trz0 ------END PGP SIGNATURE----- diff --git a/bind-9.16.4.tar.xz b/bind-9.16.4.tar.xz new file mode 100644 index 0000000..133ebbb --- /dev/null +++ b/bind-9.16.4.tar.xz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:7522088d3daac8bcabaae37998178e09139ef5ccae6631cb1d8a625b770f370a +size 3465172 diff --git a/bind-9.16.4.tar.xz.sha512.asc b/bind-9.16.4.tar.xz.sha512.asc new file mode 100644 index 0000000..0d1976a --- /dev/null +++ b/bind-9.16.4.tar.xz.sha512.asc @@ -0,0 +1,16 @@ +-----BEGIN PGP SIGNATURE----- + +iQIzBAABCgAdFiEElc7aJWscoKFfMC+1lSGn7V2s6RgFAl7n+iQACgkQlSGn7V2s +6RiDpg/+Mol/YWQ+0qLcfhqfRQaIxFdwUo2cXNEdu2Qo36owPGmXCWZbczjNUF1Y +mGp0PAfPH854P/ihtHTEBybZlFq65KcI0WI7eRdF95ao0+XmxFdT0Jxs064d4ts2 +PWXap/NCl+u8y9rErkB+8g+xUru94T+Ezh40msP0Yb8W56+b3fi1UOrBZOSEaIY0 +2m2uZFigM0ztHwcmY9AvXujIDpryzcMKQAE7KBEB7uVVfRATDi3siaGzRH4ZqGZb +cUNPtBYSpIv+6fp1o4J78tXCiPPLRaKx9971i1FBEFoQqyhmARvbjb7q1egWeY1X +s10oFH28/2FR8HvNmzBL6iipwIMs5NZNE5XlLB0otN9JjN+1YVCwmFbXUfToZDxT +Uo1ddYP9KNwxiPLgscG5ZqyPZHnGdBVkD0V//lNShYyFJX0jNBv+yrCrNDOABby/ +C/E7E54XtfQMDAa56jqHmVb/wMkF4DBye3zWDaq4FH0z023EU/EmckgsGfqzBjm/ +ITyzAml0aWSF/XaFPiVn0OioYVuxi+n2VLcy8YwfU2TIEjGVVa8GE2WTPBsoV0r5 +X6b0kF43+7l6904orHQeLCz6pZTfhV8YBHoyUzb+biAlBUzvmB7pKGmo+WVka1lm +JYNQEFsel0tzIFu8p3A9PojSIElSz66NQZZBJaQz3vsXlwPb0rs= +=4/Ft +-----END PGP SIGNATURE----- diff --git a/bind.changes b/bind.changes index bc81e4a..a904103 100644 --- a/bind.changes +++ b/bind.changes @@ -1,3 +1,27 @@ +------------------------------------------------------------------- +Thu Jun 18 06:35:35 UTC 2020 - Josef Möllers + +- Upgrade to version bind-9.16.4 + Fixing two security problems: + * It was possible to trigger an INSIST when determining + whether a record would fit into a TCP message buffer. + (CVE-2020-8618) + * It was possible to trigger an INSIST in + lib/dns/rbtdb.c:new_reference() with a particular zone + content and query patterns. (CVE-2020-8619) + Also the following functional changes: + * Reject DS records at the zone apex when loading + master files. Log but otherwise ignore attempts to + add DS records at the zone apex via UPDATE. + * The default value of "max-stale-ttl" has been changed + from 1 week to 12 hours. + * Zone timers are now exported via statistics channel. + Thanks to Paul Frieden, Verizon Media. + More internal changes see the CHANGES file in the source RPM + This update obsoletes Makefile.in.diff + [bsc#1172958, CVE-2020-8618, CVE-2020-8619, Makefile.in.diff + bind.spec] + ------------------------------------------------------------------- Fri May 15 13:43:46 UTC 2020 - Josef Möllers diff --git a/bind.spec b/bind.spec index 764f776..7b3bcd0 100644 --- a/bind.spec +++ b/bind.spec @@ -60,7 +60,7 @@ %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif Name: bind -Version: 9.16.3 +Version: 9.16.4 Release: 0 Summary: Domain Name System (DNS) Server (named) License: MPL-2.0 @@ -79,7 +79,6 @@ Source60: dlz-schema.txt Source70: bind.conf Source71: bind-chrootenv.conf Source72: named.conf -Patch1: Makefile.in.diff Patch51: pie_compile.diff Patch52: named-bootconf.diff Patch56: bind-ldapdump-use-valid-host.patch @@ -274,7 +273,6 @@ This package provides a module which allows commands to be sent to rndc directly %prep %setup -q -a1 -%patch1 -p1 %patch51 -p1 %patch52 -p1 %patch56 -p1