Fedora: 2009-0350 Moderate: BIND 9.5.1-P1 DNS Crash Resolution

BIND (Berkeley Internet Name Domain) is an implementation of the DNS

(Domain Name System) protocols. BIND includes a DNS server (named),

which resolves host names to IP addresses; a resolver library

(routines for applications to use when interfacing with DNS); and

tools for verifying that the DNS server is operating properly.

Update to 9.5.1-P1 maintenance release which includes fix for CVE-2009-0025.

This update also fixes rare crash of host utility.

* Thu Jan 8 2009 Adam Tkac 32:9.5.1-1.P1

- 9.5.1-P1 release (CVE-2009-0025)

- patches merged

- bind95-rh454783.patch

- bind-9.5-recv-race.patch

- bind-9.5-edns.patch

- bind95-rh457175.patch

* Tue Dec 2 2008 Adam Tkac 32:9.5.0-35.1.P2

- fixed rare use-after-free problem in host utility (#452060)

* Wed Aug 6 2008 Adam Tkac 32:9.5.0-35.P2

- 9.5.0-P2 release

- bind95-rh450995.patch was merged

- disable transfer stats on DLZ zones (#454783)

* Thu Jul 31 2008 Adam Tkac 32:9.5.0-34.1.P1

- IP acls weren't merged correctly (#457175)

* Fri Jul 18 2008 Dennis Gilmore 32:9.5.0-34.P1

- use fPIE on sparcv9/sparc64

- add sparc64 to list of 64bit arches in spec

* Tue Jul 8 2008 Adam Tkac 32:9.5.0-33.P1

- 9.5.0-P1 release (CVE-2008-1447)

- fixed typo in bind-sdb summary (#454436)

* Wed Jun 18 2008 Adam Tkac 32:9.5.0-32.2

- parse inner acls correctly (#450995)

* Thu May 29 2008 Adam Tkac 32:9.5.0-32.1

- 9.5.0 final

- bind-9.5-initialize.patch merged to upstream

* Thu May 22 2008 Adam Tkac 32:9.5.0-32.rc1

- 9.5.0rc1 release

- bind-9.5-libcap.patch merged to upstream

- initialize memory in ACL code correctly (#446848)

* Tue May 20 2008 Adam Tkac 32:9.5.0-31.1.b3

- bind-chroot now depends on bind (#446477)

* Tue May 13 2008 Adam Tkac 32:9.5.0-31.b3

- reverted "any" patch, upstream says not needed

- log EDNS failure only when we really switch to plain EDNS (#275091)

- detect configuration file better

* Tue May 6 2008 Adam Tkac 32:9.5.0-30.1.b3

- addresses 0.0.0.0 and ::0 really match any (#275091, comment #28)

* Mon May 5 2008 Adam Tkac 32:9.5.0-30.b3

- 9.5.0b3 release

- dropped patches (upstream)

- bind-9.5.0-generate-xml.patch

- bind-9.5-transfer-segv.patch

- bind-9.5-mudflap.patch

- updated bind-9.5-libcap.patch

- added bind-9.5-recv-race.patch from F8 branch (#400461)

* Wed Apr 2 2008 Adam Tkac 32:9.5.0-29.3.b2

- fixed named.conf.sample file (#437569)

* Fri Mar 14 2008 Adam Tkac 32:9.5.0-29.2.b2

- fixed URLs

* Mon Feb 25 2008 Adam Tkac 32:9.5.0-29.1.b2

- BuildRequires cleanup

[ 1 ] Bug #478984 - CVE-2009-0025 bind: DSA_do_verify() returns check issue

https://bugzilla.redhat.com/show_bug.cgi?id=478984

su -c 'yum update bind' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/