[SECURITY] Fedora 11 Update: bind-9.6.1-9.P3.fc11
updates at fedoraproject.org
updates at fedoraproject.org
Thu Jan 21 00:13:26 UTC 2010
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-0861
2010-01-20 23:46:34
--------------------------------------------------------------------------------
Name : bind
Product : Fedora 11
Version : 9.6.1
Release : 9.P3.fc11
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.
--------------------------------------------------------------------------------
Update Information:
Update to 9.6.1-P3 release which contains fix for CVE-2010-0097. This update
also fixes occasional assertion failure in keytable.c.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 19 2010 Adam Tkac <atkac redhat com> 32:9.6.1-9.P3
- update to 9.6.1-P3 (CVE-2010-0097)
* Wed Jan 13 2010 Adam Tkac <atkac redhat com> 32:9.6.1-8.P2
- fix occasional crash in keytable.c (#549284)
* Wed Nov 25 2009 Adam Tkac <atkac redhat com> 32:9.6.1-7.P2
- update to 9.6.1-P2 (CVE-2009-4022)
* Mon Sep 21 2009 Adam Tkac <atkac redhat com> 32:9.6.1-6.P1
- determine file size via `stat` instead of `ls` (#523682)
* Tue Sep 15 2009 Adam Tkac <atkac redhat com> 32:9.6.1-5.P1
- fix libs postun section again (#514728)
- improve chroot related documentation (#507795)
- add NetworkManager dispatcher script to reload named when network interface is
activated/deactivated (#490275)
- don't set/unset named_write_master_zones SELinux boolean every time in
initscript, modify it only when it's actually needed
* Thu Sep 3 2009 Martin Nagy <mnagy redhat com> 32:9.6.1-4.P1.1
- update the patch for dynamic loading of database backends
* Wed Jul 29 2009 Adam Tkac <atkac redhat com> 32:9.6.1-4.P1
- 9.6.1-P1 release (CVE-2009-0696)
- fix postun trigger (#513016, hopefully)
* Mon Jul 13 2009 Adam Tkac <atkac redhat com> 32:9.6.1-3
- fix broken symlinks in bind-libs (#509635)
- fix typos in /etc/sysconfig/named (#509650)
- add DEBUG option to /etc/sysconfig/named (#510283)
* Wed Jun 24 2009 Adam Tkac <atkac redhat com> 32:9.6.1-2
- improved "chroot automount" patches (#504596)
- host should fail if specified server doesn't respond (#507469)
* Thu Jun 18 2009 Adam Tkac <atkac redhat com> 32:9.6.1-1
- 9.6.1 release
- simplify chroot maintenance. Important files and directories are mounted into
chroot (see /etc/sysconfig/named for more info, #504596)
- fix doc/named.conf.default perms
* Wed May 27 2009 Adam Tkac <atkac redhat com> 32:9.6.1-0.4.rc1
- 9.6.1rc1 release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #554851 - CVE-2010-0097 BIND DNSSEC NSEC/NSEC3 validation code could cause bogus NXDOMAIN responses
https://bugzilla.redhat.com/show_bug.cgi?id=554851
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list