---
- branch: MAIN
  date: Wed Dec 16 00:32:06 UTC 2015
  files:
  - new: '1.50'
    old: '1.49'
    path: pkgsrc/net/bind99/Makefile
    pathrev: pkgsrc/net/bind99/Makefile@1.50
    type: modified
  - new: '1.35'
    old: '1.34'
    path: pkgsrc/net/bind99/distinfo
    pathrev: pkgsrc/net/bind99/distinfo@1.35
    type: modified
  id: 20151216T003206Z.0ff50411826846c381060e5f5536e2fddd49ee0a
  log: "Update bind99 package to 9.9.8pl2 (BIND 9.9.8-P2), security release.\n\n\t---
    9.9.8-P2 released ---\n\n4270.\t[security]\tUpdate allowed OpenSSL versions as
    named is\n\t\t\tpotentially vulnerable to CVE-2015-3193.\n\n4261.\t[maint]\t\tH.ROOT-SERVERS.NET
    is 198.97.190.53 and 2001:500:1::53.\n\t\t\t[RT #40556]\n\n4260.\t[security]\tInsufficient
    testing when parsing a message allowed\n\t\t\trecords with an incorrect class
    to be be accepted,\n\t\t\ttriggering a REQUIRE failure when those records\n\t\t\twere
    subsequently cached. (CVE-2015-8000) [RT #40987]\n\n4253.\t[security]\tAddress
    fetch context reference count handling error\n\t\t\ton socket error. (CVE-2015-8461)
    [RT#40945]\n\n\t--- 9.9.8-P1 (withdrawn) ---\n"
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/net/bind99'
  unixtime: '1450225926'
  user: taca