9.10.3-P2

README

@@ -51,6 +51,10 @@ BIND 9
 	For up-to-date release notes and errata, see
 	http://www.isc.org/software/bind9/releasenotes
 
+BIND 9.10.3-P2
+
+	BIND 9.10.3-P2 is a security release addressing the flaws
+	described in CVE-2015-3193 (OpenSSL) and CVE-2015-8461.
 
 BIND 9.10.3-P1
 

doc/arm/notes.xml

@@ -23,7 +23,8 @@
       This document summarizes changes since BIND 9.10.3:
     </para>
     <para>
-      BIND 9.9.8-P1 addresses a security issue described in CVE-2015-8000.
+      BIND 9.9.8-P2 addresses a security issue described in CVE-2015-3193
+      (OpenSSL), CVE-2015-8000 and CVE-2015-8461.
     </para>
   </sect2>
   <sect2 id="relnotes_download">
@@ -42,11 +43,8 @@
     <itemizedlist>
       <listitem>
 	<para>
-	  Insufficient testing when parsing a message allowed
-	  records with an incorrect class to be be accepted,
-	  triggering a REQUIRE failure when those records
-	  were subsequently cached.  This flaw is disclosed
-	  in CVE-2015-8000. [RT #40987]
+	  Named is potentially vulnerable to the OpenSSL vulnerabilty
+	  described in CVE-2015-3193.
 	</para>
       </listitem>
       <listitem>
@@ -56,6 +54,15 @@
 	  lookup.  This flaw is disclosed in CVE-2015-8461. [RT#40945]
 	</para>
       </listitem>
+      <listitem>
+	<para>
+	  Insufficient testing when parsing a message allowed
+	  records with an incorrect class to be be accepted,
+	  triggering a REQUIRE failure when those records
+	  were subsequently cached.  This flaw is disclosed
+	  in CVE-2015-8000. [RT #40987]
+	</para>
+      </listitem>
     </itemizedlist>
   </sect2>
   <sect2 id="relnotes_features">

lib/dns/api

@@ -6,5 +6,5 @@
 # 9.9-sub: 130-139, 150-159
 # 9.10: 140-149, 160-169
 LIBINTERFACE = 163
-LIBREVISION = 0
-LIBAGE = 0
+LIBREVISION = 1
+LIBAGE = 1

version

@@ -7,5 +7,5 @@ MAJORVER=9
 MINORVER=10
 PATCHVER=3
 RELEASETYPE=-P
-RELEASEVER=1
+RELEASEVER=2
 EXTENSIONS=