LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: September 26th, 2014
Linux Security Week: September 22nd, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Fedora 9 Update: bind-9.5.1-1.P1.fc9 Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Fedora Update to 9.5.1-P1 maintenance release which includes fix for CVE-2009-0025. This update also fixes rare crash of host utility.
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-0350
2009-01-14 23:35:00
--------------------------------------------------------------------------------

Name        : bind
Product     : Fedora 9
Version     : 9.5.1
Release     : 1.P1.fc9
URL         : http://www.isc.org/products/BIND/
Summary     : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

--------------------------------------------------------------------------------
Update Information:

Update to 9.5.1-P1 maintenance release which includes fix for CVE-2009-0025.
This update also fixes rare crash of host utility.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jan  8 2009 Adam Tkac  32:9.5.1-1.P1
- 9.5.1-P1 release (CVE-2009-0025)
- patches merged
  - bind95-rh454783.patch
  - bind-9.5-recv-race.patch
  - bind-9.5-edns.patch
  - bind95-rh457175.patch
* Tue Dec  2 2008 Adam Tkac  32:9.5.0-35.1.P2
- fixed rare use-after-free problem in host utility (#452060)
* Wed Aug  6 2008 Adam Tkac  32:9.5.0-35.P2
- 9.5.0-P2 release
  - bind95-rh450995.patch was merged
- disable transfer stats on DLZ zones (#454783)
* Thu Jul 31 2008 Adam Tkac  32:9.5.0-34.1.P1
- IP acls weren't merged correctly (#457175)
* Fri Jul 18 2008 Dennis Gilmore  32:9.5.0-34.P1
- use fPIE on sparcv9/sparc64
- add sparc64 to list of 64bit arches in spec
* Tue Jul  8 2008 Adam Tkac  32:9.5.0-33.P1
- 9.5.0-P1 release (CVE-2008-1447)
- fixed typo in bind-sdb summary (#454436)
* Wed Jun 18 2008 Adam Tkac  32:9.5.0-32.2
- parse inner acls correctly (#450995)
* Thu May 29 2008 Adam Tkac  32:9.5.0-32.1
- 9.5.0 final
- bind-9.5-initialize.patch merged to upstream
* Thu May 22 2008 Adam Tkac  32:9.5.0-32.rc1
- 9.5.0rc1 release
- bind-9.5-libcap.patch merged to upstream
- initialize memory in ACL code correctly (#446848)
* Tue May 20 2008 Adam Tkac  32:9.5.0-31.1.b3
- bind-chroot now depends on bind (#446477)
* Tue May 13 2008 Adam Tkac  32:9.5.0-31.b3
- reverted "any" patch, upstream says not needed
- log EDNS failure only when we really switch to plain EDNS (#275091)
- detect configuration file better
* Tue May  6 2008 Adam Tkac  32:9.5.0-30.1.b3
- addresses 0.0.0.0 and ::0 really match any (#275091, comment #28)
* Mon May  5 2008 Adam Tkac  32:9.5.0-30.b3
- 9.5.0b3 release
- dropped patches (upstream)
  - bind-9.5.0-generate-xml.patch
  - bind-9.5-transfer-segv.patch
  - bind-9.5-mudflap.patch
- updated bind-9.5-libcap.patch
- added bind-9.5-recv-race.patch from F8 branch (#400461)
* Wed Apr  2 2008 Adam Tkac  32:9.5.0-29.3.b2
- fixed named.conf.sample file (#437569)
* Fri Mar 14 2008 Adam Tkac  32:9.5.0-29.2.b2
- fixed URLs
* Mon Feb 25 2008 Adam Tkac  32:9.5.0-29.1.b2
- BuildRequires cleanup
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #478984 - CVE-2009-0025 bind: DSA_do_verify() returns check issue
        https://bugzilla.redhat.com/show_bug.cgi?id=478984
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce
 
< Prev   Next >
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Shellshock makes Heartbleed look insignificant
Hacker Group Lizard Squad Takes Down Destiny, Call of Duty, FIFA And More
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.