Hello community, here is the log from the commit of package patchinfo.1167 for openSUSE:12.1:Update checked in at 2012-12-17 11:56:29 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:12.1:Update/patchinfo.1167 (Old) and /work/SRC/openSUSE:12.1:Update/.patchinfo.1167.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.1167", Maintainer is "" Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo incident="1167"> <packager>msmeissn</packager> <issue tracker="bnc" id="792926">VUL-0: CVE-2012-5688: bind: servers using DNS64 can be crashed by a crafted query</issue> <issue tracker="cve" id="CVE-2012-5688"></issue> <category>security</category> <rating>moderate</rating> <summary>bind: security and bugfix updates</summary> <description>bind received updates to fix bugs and security issues. On openSUSE 12.2, bind was updated to 9.9.2-P1. On openSUSE 12.1, bind was updated to 9.8.4-P1. Main security fix: CVE-2012-5688: Prevents named from aborting with a require assertion failure on servers with DNS64 enabled. These crashes might occur as a result of specific queries that are received. (Note that this fix is a subset of a series of updates that will be included in full in BIND 9.8.5 and 9.9.3 as change #3388, RT #30996). [CVE-2012-5688] [RT #30792]</description> </patchinfo> -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
