SECURITY update to BIND 9.9.2-P1

A specific query can cause BIND nameservers using DNS64 to exit with a REQUIRE assertion failure. BIND nameservers that are not using DNS64 are not at risk. https://kb.isc.org/article/AA-00828 CVE-2012-5688
2012-12-04 21:48:27 +00:00 · 2012-12-04 21:48:27 +00:00 · fc9a44a25b
commit fc9a44a25b
parent c5876f4689
3 changed files with 10 additions and 8 deletions
--- a/net/isc-bind/Makefile
+++ b/net/isc-bind/Makefile
@ -1,9 +1,9 @@
-# $OpenBSD: Makefile,v 1.6 2012/10/09 22:46:17 sthen Exp $
+# $OpenBSD: Makefile,v 1.7 2012/12/04 21:48:27 sthen Exp $

 COMMENT=	Berkeley Internet Name Daemon

-V=		9.9.1-P4
-RV=		9.9.1-P2
+V=		9.9.2-P1
+RV=		9.9.2
 DISTNAME=	bind-$V
 PKGNAME=	isc-bind-${V:S/-P/pl/}

--- a/net/isc-bind/distinfo
+++ b/net/isc-bind/distinfo
@ -1,4 +1,4 @@
-SHA256 (bind-9.9.1-P4.tar.gz) = GPkHJ/2VZtoDfnFWnZs6SDTJawTZ51+YmeugvIjAhoo=
-SHA256 (rl-9.9.1-P2.patch) = me/ZUVgs55DidAguC+2uppi5t/Sc8d44d1JYOZPPIRU=
-SIZE (bind-9.9.1-P4.tar.gz) = 7227655
-SIZE (rl-9.9.1-P2.patch) = 80440
+SHA256 (bind-9.9.2-P1.tar.gz) = S858AgQCYjMztlW+UWeujFLzCmv+l1DKo6tw2n2QIZw=
+SHA256 (rl-9.9.2.patch) = C/GTXOd8+8fPb6m9s3mFRcYS1vow9rsJetIyWOqDrC0=
+SIZE (bind-9.9.2-P1.tar.gz) = 7277498
+SIZE (rl-9.9.2.patch) = 91993
--- a/net/isc-bind/pkg/PLIST
+++ b/net/isc-bind/pkg/PLIST
@ -1,4 +1,4 @@
-@comment $OpenBSD: PLIST,v 1.1.1.1 2012/07/19 08:36:45 sthen Exp $
+@comment $OpenBSD: PLIST,v 1.2 2012/12/04 21:48:27 sthen Exp $
@bin bin/dig
@bin bin/host
 bin/isc-config.sh
@ -315,6 +315,7 @@ lib/liblwres.la
@man man/man8/dnssec-revoke.8
@man man/man8/dnssec-settime.8
@man man/man8/dnssec-signzone.8
+@man man/man8/dnssec-verify.8
@man man/man8/genrandom.8
@man man/man8/isc-hmac-fixup.8
@man man/man8/lwresd.8
@ -334,6 +335,7 @@ lib/liblwres.la
@bin sbin/dnssec-revoke
@bin sbin/dnssec-settime
@bin sbin/dnssec-signzone
+@bin sbin/dnssec-verify
@bin sbin/genrandom
@bin sbin/isc-hmac-fixup
@bin sbin/lwresd