CVSROOT:        /cvs
Module name:    ports
Changes by:     [email protected]   2017/02/08 17:04:40

Modified files:
        net/isc-bind   : Makefile distinfo 

Log message:
update to BIND 9.10.4-P6

* If a server is configured with a response policy zone (RPZ) that
rewrites an answer with local data, and is also configured for DNS64
address mapping, a NULL pointer can be read triggering a server crash.
This flaw is disclosed in CVE-2017-3135. [RT #44434]

* A synthesized CNAME record appearing in a response before the associated
DNAME could be cached, when it should not have been. This was a
regression introduced while addressing CVE-2016-8864. [RT #44318]

Reply via email to