CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2017/06/15 03:02:53
Modified files:
net/isc-bind : Tag: OPENBSD_6_1 Makefile distinfo
net/isc-bind/patches: Tag: OPENBSD_6_1 patch-bin_dig_dig_c
patch-bin_dig_nslookup_c
patch-lib_isc_unix_net_c
patch-lib_isc_unix_socket_c
net/isc-bind/pkg: Tag: OPENBSD_6_1 PLIST
Log message:
update to BIND 9.10.5-P1
* With certain RPZ configurations, a response with TTL 0 could cause
named to go into an infinite query loop. This flaw is disclosed in
CVE-2017-3140. [RT #45181]
A server is potentially vulnerable to degradation of service if
1. the server is configured to use RPZ,
2. the server uses NSDNAME or NSIP policy rules, and
3. an attacker can cause the server to process a specific query
