CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2020/05/19 03:32:38
Modified files:
net/isc-bind : Makefile distinfo
net/isc-bind/patches: patch-configure_ac
patch-lib_dns_openssldh_link_c
patch-lib_dns_opensslrsa_link_c
patch-lib_isc_unix_socket_c
net/isc-bind/pkg: PLIST
Log message:
update to BIND 9.16.3
CVE-2020-8616: BIND does not sufficiently limit the number of fetches
performed when processing referrals
CVE-2020-8617: A logic error in code which checks TSIG validity can be
used to trigger an assertion failure in tsig.c
More info on the referral problem in http://www.nxnsattack.com/dns-ns-paper.pdf
