-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-18521 2010-12-03 20:21:58 --------------------------------------------------------------------------------
Name : bind Product : Fedora 13 Version : 9.7.2 Release : 1.P3.fc13 URL : http://www.isc.org/products/BIND/ Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server Description : BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating properly. -------------------------------------------------------------------------------- Update Information: Update to 9.7.2-P3 release which contains various security fixes. This update also provides bind-dyndb-ldap and dnsperf packages rebuild against updated bind. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 2 2010 Adam Tkac <atkac redhat com> 32:9.7.2-1.P3 - update to 9.7.2-P3 * Mon Nov 29 2010 Jan Görig <jgorig redhat com> 32:9.7.1-3.P2 - added root zone DNS key * Mon Jul 19 2010 Adam Tkac <atkac redhat com> 32:9.7.1-2.P2 - update to 9.7.1-P2 (CVE-2010-0213) * Mon Jun 28 2010 Adam Tkac <atkac redhat com> 32:9.7.1-1 - update to 9.7.1 - patches merged - bind97-managed-keyfile.patch - bind97-rh554316.patch - improve the "dnssec-conf" trigger - set "managed-keys-directory" to /var/named/dynamic to avoid incompatibility in the stable Fedora release * Thu May 20 2010 Adam Tkac <atkac redhat com> 32:9.7.0-10.P2 - update to 9.7.0-P2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #658974 - CVE-2010-3613 bind: failure to clear existing RRSIG records when a NO DATA is negatively cached could DoS named https://bugzilla.redhat.com/show_bug.cgi?id=658974 [ 2 ] Bug #658977 - CVE-2010-3614 bind: key algorithm rollover may mark secure answers as insecure https://bugzilla.redhat.com/show_bug.cgi?id=658977 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update bind' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
