openSUSE Security Update: Security update for bind
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2019:2263-1
Rating:             important
References:         #1118367 #1118368 #1138687 
Cross-References:   CVE-2019-6471
Affected Products:
                    openSUSE Leap 15.0
______________________________________________________________________________

   An update that solves one vulnerability and has two fixes
   is now available.

Description:

   This update for bind fixes the following issues:

   Security issue fixed:

   - CVE-2019-6471: Fixed a reachable assert in dispatch.c. (bsc#1138687)

   Non-security issue fixed:

   - bind will no longer rely on /etc/insserv.conf (bsc#1118367, bsc#1118368)

   This update was imported from the SUSE:SLE-15:Update update project.


Patch Instructions:

   To install this openSUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - openSUSE Leap 15.0:

      zypper in -t patch openSUSE-2019-2263=1



Package List:

   - openSUSE Leap 15.0 (i586 x86_64):

      bind-9.11.2-lp150.8.16.1
      bind-chrootenv-9.11.2-lp150.8.16.1
      bind-debuginfo-9.11.2-lp150.8.16.1
      bind-debugsource-9.11.2-lp150.8.16.1
      bind-devel-9.11.2-lp150.8.16.1
      bind-lwresd-9.11.2-lp150.8.16.1
      bind-lwresd-debuginfo-9.11.2-lp150.8.16.1
      bind-utils-9.11.2-lp150.8.16.1
      bind-utils-debuginfo-9.11.2-lp150.8.16.1
      libbind9-160-9.11.2-lp150.8.16.1
      libbind9-160-debuginfo-9.11.2-lp150.8.16.1
      libdns169-9.11.2-lp150.8.16.1
      libdns169-debuginfo-9.11.2-lp150.8.16.1
      libirs-devel-9.11.2-lp150.8.16.1
      libirs160-9.11.2-lp150.8.16.1
      libirs160-debuginfo-9.11.2-lp150.8.16.1
      libisc166-9.11.2-lp150.8.16.1
      libisc166-debuginfo-9.11.2-lp150.8.16.1
      libisccc160-9.11.2-lp150.8.16.1
      libisccc160-debuginfo-9.11.2-lp150.8.16.1
      libisccfg160-9.11.2-lp150.8.16.1
      libisccfg160-debuginfo-9.11.2-lp150.8.16.1
      liblwres160-9.11.2-lp150.8.16.1
      liblwres160-debuginfo-9.11.2-lp150.8.16.1

   - openSUSE Leap 15.0 (noarch):

      bind-doc-9.11.2-lp150.8.16.1
      python3-bind-9.11.2-lp150.8.16.1

   - openSUSE Leap 15.0 (x86_64):

      bind-devel-32bit-9.11.2-lp150.8.16.1
      libbind9-160-32bit-9.11.2-lp150.8.16.1
      libbind9-160-32bit-debuginfo-9.11.2-lp150.8.16.1
      libdns169-32bit-9.11.2-lp150.8.16.1
      libdns169-32bit-debuginfo-9.11.2-lp150.8.16.1
      libirs160-32bit-9.11.2-lp150.8.16.1
      libirs160-32bit-debuginfo-9.11.2-lp150.8.16.1
      libisc166-32bit-9.11.2-lp150.8.16.1
      libisc166-32bit-debuginfo-9.11.2-lp150.8.16.1
      libisccc160-32bit-9.11.2-lp150.8.16.1
      libisccc160-32bit-debuginfo-9.11.2-lp150.8.16.1
      libisccfg160-32bit-9.11.2-lp150.8.16.1
      libisccfg160-32bit-debuginfo-9.11.2-lp150.8.16.1
      liblwres160-32bit-9.11.2-lp150.8.16.1
      liblwres160-32bit-debuginfo-9.11.2-lp150.8.16.1


References:

   https://www.suse.com/security/cve/CVE-2019-6471.html
   https://bugzilla.suse.com/1118367
   https://bugzilla.suse.com/1118368
   https://bugzilla.suse.com/1138687

--