ports/137374: dns/bind9-sdb-postgresql needs base bind version bump for DoS vulnerability

Josh Carroll josh.carroll at gmail.com
Mon Aug 3 00:40:07 UTC 2009 

>Number:         137374
>Category:       ports
>Synopsis:       dns/bind9-sdb-postgresql needs base bind version bump for DoS vulnerability
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Aug 03 00:40:06 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator:     Josh Carroll
>Release:        7.2-RELEASE
>Organization:
n/a
>Environment:
FreeBSD pflog.net 7.2-RELEASE-p1 FreeBSD 7.2-RELEASE-p1 #11: Wed Jun 10 10:25:37 EDT 2009     root at pflog.net:/usr/obj/usr/src/sys/PFLOG  amd64
>Description:
Per the announcement at isc.org, there is a remotely exploitable DoS vulnerability in bind 9, including the 9.4.3-P2 version.

Attached is a path for the dns/bind9-sdb-postgresql port to bump it to the 9.4.3-P3 version, which addresses this vulnerability.

Details about the problem can be found here:

https://www.isc.org/node/474

Thanks,
Josh
>How-To-Repeat:
https://www.isc.org/node/474 has details
>Fix:
Patch attached to bump from 9.4.3-P2 to 9.4.3-P3.

Patch attached with submission follows:

diff -urN bind9-sdb-postgresql/Makefile bind9-sdb-postgresql.new/Makefile
--- bind9-sdb-postgresql/Makefile	2009-03-25 20:44:56.000000000 -0400
+++ bind9-sdb-postgresql.new/Makefile	2009-07-28 18:35:03.000000000 -0400
@@ -6,7 +6,7 @@
 #
 
 PORTNAME=	bind9
-PORTVERSION=	9.4.3.2
+PORTVERSION=	9.4.3.3
 CATEGORIES=	dns net ipv6
 MASTER_SITES=	${MASTER_SITE_ISC}
 MASTER_SITE_SUBDIR=	bind9/${ISCVERSION}
@@ -21,7 +21,7 @@
 CONFLICTS=	bind9-9.* bind9-sdb-ldap-* host-*
 
 # ISC releases things like 9.3.0rc1, which our versioning doesn't like
-ISCVERSION=	9.4.3-P2
+ISCVERSION=	9.4.3-P3
 
 GNU_CONFIGURE=	yes
 CONFIGURE_ARGS=	--localstatedir=/var --disable-linux-caps --with-openssl \
diff -urN bind9-sdb-postgresql/distinfo bind9-sdb-postgresql.new/distinfo
--- bind9-sdb-postgresql/distinfo	2009-03-25 20:44:56.000000000 -0400
+++ bind9-sdb-postgresql.new/distinfo	2009-07-28 18:35:30.000000000 -0400
@@ -1,6 +1,6 @@
-MD5 (bind-9.4.3-P2.tar.gz) = 91dff2af18475e14863051c93255a59a
-SHA256 (bind-9.4.3-P2.tar.gz) = fb7c9964942ecc07606bb8d4361bf9d9bd8091e059fea1b56e6a0972f99b1ba1
-SIZE (bind-9.4.3-P2.tar.gz) = 6544865
-MD5 (bind-9.4.3-P2.tar.gz.asc) = 354aebc01f95440506d5de50305f0b9d
-SHA256 (bind-9.4.3-P2.tar.gz.asc) = f8c6e3f749affdfd042929abab40d3a83dec74d0271555c2bdbb72d24a954477
-SIZE (bind-9.4.3-P2.tar.gz.asc) = 479
+MD5 (bind-9.4.3-P3.tar.gz) = ed357d3d18dcfa97723f91d9219caa8c
+SHA256 (bind-9.4.3-P3.tar.gz) = cf1186b9f9bb993053e49f7c9bc22a1f218266cc6112d4e668a56ab8861a2b6d
+SIZE (bind-9.4.3-P3.tar.gz) = 6544968
+MD5 (bind-9.4.3-P3.tar.gz.asc) = af8615dadd69bc94dbfa41a0dbff37ef
+SHA256 (bind-9.4.3-P3.tar.gz.asc) = c973d143a49e585a3cb9cf8f2019f234317593d7a7be76b52dc83e127dd10208
+SIZE (bind-9.4.3-P3.tar.gz.asc) = 481


>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-ports-bugs mailing list