[Buildroot] [PATCH] bind: security bump to version 9.10.3-P3
Peter Korsgaard
peter at korsgaard.com
Tue Jan 26 21:47:12 UTC 2016
>>>>> "Gustavo" == Gustavo Zacarias <gustavo at zacarias.com.ar> writes:
> Fixes:
> CVE-2015-8704 - apl_42.c in ISC BIND 9.x before 9.9.8-P3 and 9.9.x and
> 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a
> denial of service (INSIST assertion failure and daemon exit) via a
> malformed Address Prefix List (APL) record.
> CVE-2015-8705 - buffer.c in named in ISC BIND 9.10.x before 9.10.3-P3,
> when debug logging is enabled, allows remote attackers to cause a denial
> of service (REQUIRE assertion failure and daemon exit, or daemon crash)
> or possibly have unspecified other impact via (1) OPT data or (2) an ECS
> option.
> Signed-off-by: Gustavo Zacarias <gustavo at zacarias.com.ar>
Committed, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list