Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66]) by www.NetBSD.org (Postfix) with ESMTP id 6F68D63B8DB for ; Wed, 10 Oct 2012 03:05:03 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id 0A49614A10F; Wed, 10 Oct 2012 03:05:03 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id A1F4714A0F4 for ; Wed, 10 Oct 2012 03:04:59 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id eQ8c9ASv7kof for ; Wed, 10 Oct 2012 03:04:59 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id D505914A0D4 for ; Wed, 10 Oct 2012 03:04:58 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 57638175DD; Wed, 10 Oct 2012 03:04:58 +0000 (UTC) MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" Date: Wed, 10 Oct 2012 03:04:58 +0000 From: "Takahiro Kambe" Subject: CVS commit: pkgsrc/net/bind96 To: pkgsrc-changes@NetBSD.org Reply-To: taca@netbsd.org X-Mailer: log_accum Message-Id: <20121010030458.57638175DD@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: taca Date: Wed Oct 10 03:04:57 UTC 2012 Modified Files: pkgsrc/net/bind96: Makefile distinfo Log Message: Update bind96 to 9.6.3.1.ESV.7pl4 (BIND 9.6-ESV-R7-P4). Here are change changes from release note. Note security fixes except CVE-2012-5166 should be already fixed in previous version of bind96 package. Please refer https://kb.isc.org/article/AA-00795 for list of full bug fixes. Security Fixes * A deliberately constructed combination of records could cause named to hang while populating the additional section of a response. [CVE-2012-5166] [RT #31090] * Prevents a named assert (crash) when queried for a record whose RDATA exceeds 65535 bytes [CVE-2012-4244] [RT #30416] * Prevents a named assert (crash) when validating caused by using "Bad cache" data before it has been initialized. [CVE-2012-3817] [RT #30025] * A condition has been corrected where improper handling of zero-length RDATA could cause undesirable behavior, including termination of the named process. [CVE-2012-1667] [RT #29644] New Features None Feature Changes * Improves OpenSSL error logging [RT #29932] * nslookup now returns a nonzero exit code when it is unable to get an answer. [RT #29492] To generate a diff of this commit: cvs rdiff -u -r1.31 -r1.32 pkgsrc/net/bind96/Makefile cvs rdiff -u -r1.20 -r1.21 pkgsrc/net/bind96/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.