You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa bind

Sigurnosni nedostatak programskog paketa bind

——————————————————————————–
Fedora Update Notification
FEDORA-2015-11483
2015-07-13 16:47:47
——————————————————————————–

Name : bind
Product : Fedora 22
Version : 9.10.2
Release : 3.P2.fc22
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

——————————————————————————–
Update Information:

– update to 9.10.2-P2
– fix for CVE-2015-4620
——————————————————————————–
ChangeLog:

* Thu Jul 9 2015 Tomas Hozza <thozza@redhat.com> – 32:9.10.2-3.P2
– Update to 9.10.2-P2
* Fri Jun 19 2015 Tomas Hozza <thozza@redhat.com> – 32:9.10.2-2.P1
– Update to 9.10.2-P1
——————————————————————————–
References:

[ 1 ] Bug #1237258 – CVE-2015-4620 bind: abort DoS caused by uninitialized value use in isselfsigned()
https://bugzilla.redhat.com/show_bug.cgi?id=1237258
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update bind’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

——————————————————————————–
Fedora Update Notification
FEDORA-2015-11484
2015-07-13 16:47:49
——————————————————————————–

Name : bind
Product : Fedora 21
Version : 9.9.6
Release : 9.P1.fc21
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

——————————————————————————–
Update Information:

fix for CVE-2015-4620
——————————————————————————–
ChangeLog:

* Thu Jul 9 2015 Tomas Hozza <thozza@redhat.com> – 32:9.9.6-9.P1
– Include fix for CVE-2015-4620
* Mon Feb 23 2015 Tomas Hozza <thozza@redhat.com> – 32:9.9.6-8.P1
– Include fix for CVE-2015-1349
* Mon Feb 2 2015 Tomas Hozza <thozza@redhat.com> – 32:9.9.6-7.P1
– Fix nsupdate server auto-detection (#1184151)
* Fri Dec 12 2014 Tomas Hozza <thozza@redhat.com> – 32:9.9.6-6.P1
– Fix host/nslookup crash when remote server could not be reached (#1172935)
* Tue Dec 9 2014 Tomas Hozza <thozza@redhat.com> – 32:9.9.6-5.P1
– Update to 9.9.6-P1 (CVE-2014-8500)
——————————————————————————–
References:

[ 1 ] Bug #1237258 – CVE-2015-4620 bind: abort DoS caused by uninitialized value use in isselfsigned()
https://bugzilla.redhat.com/show_bug.cgi?id=1237258
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update bind’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

Top
More in Preporuke
Sigurnosni nedostaci programskog paketa httpd

Otkriveni su sigurnosni nedostaci u programskom paketu httpd. Otkriveni nedostaci potencijalnim napadačima omogućuju pokretanje proizvoljnog programskog koda, izvođenje napada uskraćivanjem...

Close