regen v9_9_8_patch

This commit is contained in:
Tinderbox User
2016-02-22 21:14:13 +00:00
parent 77ed2f0a53
commit 76092c95e5
2 changed files with 26 additions and 24 deletions

View File

@@ -68,7 +68,8 @@
This document summarizes changes since BIND 9.9.8:
</p>
<p>
BIND 9.9.8-P4 addresses the security issue described in CVE-2016-1285.
BIND 9.9.8-P4 addresses the security issues described in
CVE-2016-1285 and CVE-2016-1286.
</p>
<p>
BIND 9.9.8-P3 addresses the security issue described in CVE-2015-8704.
@@ -98,12 +99,22 @@
<div class="titlepage"><div><div><h3 class="title">
<a name="relnotes_security"></a>Security Fixes</h3></div></div></div>
<div class="itemizedlist"><ul type="disc">
<li><p>
The resolver could abort with an assertion failure due to
improper DNAME handling when parsing fetch reply
messages. This flaw is disclosed in CVE-2016-1286. [RT #41753]
</p></li>
<li><p>
Malformed control messages can trigger assertions in named
and rndc. This flaw is disclosed in CVE-2016-1285. [RT
#41666]
</p></li>
<li><p>
Specific APL data could trigger an INSIST. This flaw
is disclosed in CVE-2015-8704. [RT #41396]
</p></li>
<li><p>
Named is potentially vulnerable to the OpenSSL vulnerabilty
Named is potentially vulnerable to the OpenSSL vulnerability
described in CVE-2015-3193.
</p></li>
<li><p>
@@ -118,16 +129,6 @@
failure if a socket error occurred while performing a
lookup. This flaw is disclosed in CVE-2015-8461. [RT#40945]
</p></li>
<li><p>
Malformed control messages can trigger assertions in named
and rndc. This flaw is disclosed in CVE-2016-1285. [RT
#41666]
</p></li>
<li><p>
The resolver could abort with an assertion failure due to
improper DNAME handling when parsing fetch reply
messages. This flaw is disclosed in CVE-2016-1286. [RT #41753]
</p></li>
</ul></div>
</div>
<div class="sect2" lang="en">

View File

@@ -29,7 +29,8 @@
This document summarizes changes since BIND 9.9.8:
</p>
<p>
BIND 9.9.8-P4 addresses the security issue described in CVE-2016-1285.
BIND 9.9.8-P4 addresses the security issues described in
CVE-2016-1285 and CVE-2016-1286.
</p>
<p>
BIND 9.9.8-P3 addresses the security issue described in CVE-2015-8704.
@@ -59,12 +60,22 @@
<div class="titlepage"><div><div><h3 class="title">
<a name="relnotes_security"></a>Security Fixes</h3></div></div></div>
<div class="itemizedlist"><ul type="disc">
<li><p>
The resolver could abort with an assertion failure due to
improper DNAME handling when parsing fetch reply
messages. This flaw is disclosed in CVE-2016-1286. [RT #41753]
</p></li>
<li><p>
Malformed control messages can trigger assertions in named
and rndc. This flaw is disclosed in CVE-2016-1285. [RT
#41666]
</p></li>
<li><p>
Specific APL data could trigger an INSIST. This flaw
is disclosed in CVE-2015-8704. [RT #41396]
</p></li>
<li><p>
Named is potentially vulnerable to the OpenSSL vulnerabilty
Named is potentially vulnerable to the OpenSSL vulnerability
described in CVE-2015-3193.
</p></li>
<li><p>
@@ -79,16 +90,6 @@
failure if a socket error occurred while performing a
lookup. This flaw is disclosed in CVE-2015-8461. [RT#40945]
</p></li>
<li><p>
Malformed control messages can trigger assertions in named
and rndc. This flaw is disclosed in CVE-2016-1285. [RT
#41666]
</p></li>
<li><p>
The resolver could abort with an assertion failure due to
improper DNAME handling when parsing fetch reply
messages. This flaw is disclosed in CVE-2016-1286. [RT #41753]
</p></li>
</ul></div>
</div>
<div class="sect2" lang="en">