Author: renodr
Date: Tue May 19 10:51:31 2020
New Revision: 1562
Log:
Errata: Add errata for BIND security issues
Errata: Add errata for Unbound security issues
Errata: Add errata for sharutils security issue (heap buffer overflow)
Modified:
html/trunk/blfs/errata/9.1-systemd/index.html
html/trunk/blfs/errata/9.1/index.html
Modified: html/trunk/blfs/errata/9.1-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1-systemd/index.html Sat May 16 20:04:05
2020 (r1561)
+++ html/trunk/blfs/errata/9.1-systemd/index.html Tue May 19 10:51:31
2020 (r1562)
@@ -180,6 +180,21 @@
were discovered in the urllib module. To fix these, update to
Python-3.8.3 using the instructions in
<a
href="../../view/systemd/general/python3.html">Python-3.8.3</a>.</li>
+ <li>After release, multiple high severity vulnerabilities were disclosed
+ in the ISC BIND DNS Server. These vulnerabilities were fixed in
+ BIND-9.16.3. To fix these vulnerabilities, update to BIND-9.16.3
+ or later using the instructions in
+ <a href="../../view/systemd/server/bind.html">BIND-9.16.3</a>.</li>
+ <li>After release, multiple security vulnerabilities were discovered in
+ the Unbound DNS Server. To fix these, update to Unbound-1.10.1 or
+ later using the instructions in
+ <a
href="../../view/systemd/server/unbound.html">Unbound-1.10.1</a>.</li>
+ <li>While adapting Sharutils to GCC-10, it was discovered that there was
+ a security issue that was missed in Sharutils. To fix this security
+ issue, use the following sed and then rebuild sharutils:
+ sed -i 's/BUFSIZ/rw_base_size/' src/unshar.c</li>
+
+
</ul>
Modified: html/trunk/blfs/errata/9.1/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1/index.html Sat May 16 20:04:05 2020
(r1561)
+++ html/trunk/blfs/errata/9.1/index.html Tue May 19 10:51:31 2020
(r1562)
@@ -178,6 +178,19 @@
were discovered in the urllib module. To fix these, update to
Python-3.8.3 using the instructions in
<a href="../../view/svn/general/python3.html">Python-3.8.3</a>.</li>
+ <li>After release, multiple high severity vulnerabilities were disclosed
+ in the ISC BIND DNS Server. These vulnerabilities were fixed in
+ BIND-9.16.3. To fix these vulnerabilities, update to BIND-9.16.3
+ or later using the instructions in
+ <a href="../../view/svn/server/bind.html">BIND-9.16.3</a>.</li>
+ <li>After release, multiple security vulnerabilities were discovered in
+ the Unbound DNS Server. To fix these, update to Unbound-1.10.1 or
+ later using the instructions in
+ <a href="../../view/svn/server/unbound.html">Unbound-1.10.1</a>.</li>
+ <li>While adapting Sharutils to GCC-10, it was discovered that there was
+ a security issue that was missed in Sharutils. To fix this security
+ issue, use the following sed and then rebuild sharutils:
+ sed -i 's/BUFSIZ/rw_base_size/' src/unshar.c</li>
</ul>
--
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
