Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Sign up!
EnGarde Community
What is the most important Linux security technology?
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Latest Newsletters
Linux Security Week: March 30th, 2015
Linux Advisory Watch: March 27th, 2015
LinuxSecurity Newsletters
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

Fedora 9 Update: bind-9.5.1-1.P1.fc9 Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Fedora Update to 9.5.1-P1 maintenance release which includes fix for CVE-2009-0025. This update also fixes rare crash of host utility.
Fedora Update Notification
2009-01-14 23:35:00

Name        : bind
Product     : Fedora 9
Version     : 9.5.1
Release     : 1.P1.fc9
URL         :
Summary     : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

Update Information:

Update to 9.5.1-P1 maintenance release which includes fix for CVE-2009-0025.
This update also fixes rare crash of host utility.

* Thu Jan  8 2009 Adam Tkac  32:9.5.1-1.P1
- 9.5.1-P1 release (CVE-2009-0025)
- patches merged
  - bind95-rh454783.patch
  - bind-9.5-recv-race.patch
  - bind-9.5-edns.patch
  - bind95-rh457175.patch
* Tue Dec  2 2008 Adam Tkac  32:9.5.0-35.1.P2
- fixed rare use-after-free problem in host utility (#452060)
* Wed Aug  6 2008 Adam Tkac  32:9.5.0-35.P2
- 9.5.0-P2 release
  - bind95-rh450995.patch was merged
- disable transfer stats on DLZ zones (#454783)
* Thu Jul 31 2008 Adam Tkac  32:9.5.0-34.1.P1
- IP acls weren't merged correctly (#457175)
* Fri Jul 18 2008 Dennis Gilmore  32:9.5.0-34.P1
- use fPIE on sparcv9/sparc64
- add sparc64 to list of 64bit arches in spec
* Tue Jul  8 2008 Adam Tkac  32:9.5.0-33.P1
- 9.5.0-P1 release (CVE-2008-1447)
- fixed typo in bind-sdb summary (#454436)
* Wed Jun 18 2008 Adam Tkac  32:9.5.0-32.2
- parse inner acls correctly (#450995)
* Thu May 29 2008 Adam Tkac  32:9.5.0-32.1
- 9.5.0 final
- bind-9.5-initialize.patch merged to upstream
* Thu May 22 2008 Adam Tkac  32:9.5.0-32.rc1
- 9.5.0rc1 release
- bind-9.5-libcap.patch merged to upstream
- initialize memory in ACL code correctly (#446848)
* Tue May 20 2008 Adam Tkac  32:9.5.0-31.1.b3
- bind-chroot now depends on bind (#446477)
* Tue May 13 2008 Adam Tkac  32:9.5.0-31.b3
- reverted "any" patch, upstream says not needed
- log EDNS failure only when we really switch to plain EDNS (#275091)
- detect configuration file better
* Tue May  6 2008 Adam Tkac  32:9.5.0-30.1.b3
- addresses and ::0 really match any (#275091, comment #28)
* Mon May  5 2008 Adam Tkac  32:9.5.0-30.b3
- 9.5.0b3 release
- dropped patches (upstream)
  - bind-9.5.0-generate-xml.patch
  - bind-9.5-transfer-segv.patch
  - bind-9.5-mudflap.patch
- updated bind-9.5-libcap.patch
- added bind-9.5-recv-race.patch from F8 branch (#400461)
* Wed Apr  2 2008 Adam Tkac  32:9.5.0-29.3.b2
- fixed named.conf.sample file (#437569)
* Fri Mar 14 2008 Adam Tkac  32:9.5.0-29.2.b2
- fixed URLs
* Mon Feb 25 2008 Adam Tkac  32:9.5.0-29.1.b2
- BuildRequires cleanup

  [ 1 ] Bug #478984 - CVE-2009-0025 bind: DSA_do_verify() returns check issue

This update can be installed with the "yum" update program.  Use 
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

Fedora-package-announce mailing list
< Prev   Next >


Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Weekend Edition
FBI Quietly Removes Recommendation To Encrypt Your Phone
And the prize for LEAST SECURE BROWSER goes to ... Chrome!
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2015 Guardian Digital, Inc. All rights reserved.