summaryrefslogtreecommitdiff
path: root/source/n/bind
diff options
context:
space:
mode:
authorPatrick J Volkerding <volkerdi@slackware.com>2021-02-24 20:34:08 +0000
committerEric Hameleers <alien@slackware.com>2021-02-25 08:59:53 +0100
commitfb4e47bf7839f6e2552e0e22ab9b891af79e26a9 (patch)
tree9cb214ee611423b0a289ee92c0b009b29b0ddd2a /source/n/bind
parent5a128f821e17f1ef3a58d49ccaadacd9da565049 (diff)
downloadcurrent-fb4e47bf7839f6e2552e0e22ab9b891af79e26a9.tar.gz
Wed Feb 24 20:34:08 UTC 202120210224203408
ap/nano-5.6-x86_64-1.txz: Upgraded. ap/qpdf-10.2.0-x86_64-1.txz: Upgraded. d/cmake-3.19.6-x86_64-1.txz: Upgraded. kde/bluedevil-5.21.1-x86_64-1.txz: Upgraded. kde/breeze-5.21.1-x86_64-1.txz: Upgraded. kde/breeze-grub-5.21.1-x86_64-1.txz: Upgraded. kde/breeze-gtk-5.21.1-x86_64-1.txz: Upgraded. kde/drkonqi-5.21.1-x86_64-1.txz: Upgraded. kde/kactivitymanagerd-5.21.1-x86_64-1.txz: Upgraded. kde/kde-cli-tools-5.21.1-x86_64-1.txz: Upgraded. kde/kde-gtk-config-5.21.1-x86_64-1.txz: Upgraded. kde/kdecoration-5.21.1-x86_64-1.txz: Upgraded. kde/kdeplasma-addons-5.21.1-x86_64-1.txz: Upgraded. kde/kgamma5-5.21.1-x86_64-1.txz: Upgraded. kde/khotkeys-5.21.1-x86_64-1.txz: Upgraded. kde/kinfocenter-5.21.1-x86_64-1.txz: Upgraded. kde/kmenuedit-5.21.1-x86_64-1.txz: Upgraded. kde/kscreen-5.21.1-x86_64-1.txz: Upgraded. kde/kscreenlocker-5.21.1-x86_64-1.txz: Upgraded. kde/ksshaskpass-5.21.1-x86_64-1.txz: Upgraded. kde/ksysguard-5.21.1-x86_64-1.txz: Upgraded. kde/kwallet-pam-5.21.1-x86_64-1.txz: Upgraded. kde/kwayland-integration-5.21.1-x86_64-1.txz: Upgraded. kde/kwayland-server-5.21.1-x86_64-1.txz: Upgraded. kde/kwin-5.21.1-x86_64-1.txz: Upgraded. kde/kwrited-5.21.1-x86_64-1.txz: Upgraded. kde/libkscreen-5.21.1-x86_64-1.txz: Upgraded. kde/libksysguard-5.21.1-x86_64-1.txz: Upgraded. kde/milou-5.21.1-x86_64-1.txz: Upgraded. kde/oxygen-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-browser-integration-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-desktop-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-disks-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-firewall-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-integration-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-nm-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-pa-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-sdk-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-systemmonitor-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-vault-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-workspace-5.21.1-x86_64-1.txz: Upgraded. kde/plasma-workspace-wallpapers-5.21.1-x86_64-1.txz: Upgraded. kde/polkit-kde-agent-1-5.21.1-x86_64-1.txz: Upgraded. kde/powerdevil-5.21.1-x86_64-1.txz: Upgraded. kde/qqc2-breeze-style-5.21.1-x86_64-1.txz: Upgraded. kde/sddm-kcm-5.21.1-x86_64-1.txz: Upgraded. kde/systemsettings-5.21.1-x86_64-1.txz: Upgraded. kde/xdg-desktop-portal-kde-5.21.1-x86_64-1.txz: Upgraded. n/bind-9.16.11-x86_64-3.txz: Rebuilt. Reverted to bind-9.16.11 plus a patch for CVE-2020-8625 to fix a regression in bind-9.16.12 that can cause the name server to crash. Thanks to nobodino. n/openvpn-2.5.1-x86_64-1.txz: Upgraded. n/s-nail-14.9.22-x86_64-1.txz: Upgraded. x/libinput-1.16.5-x86_64-1.txz: Upgraded. x/libwacom-1.9-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-78.8.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/78.8.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2021-09/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23969 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23968 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23973 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23978 (* Security fix *)
Diffstat (limited to 'source/n/bind')
-rw-r--r--source/n/bind/bind-9.16.11.CVE-2020-8625.diff12
-rwxr-xr-xsource/n/bind/bind.SlackBuild6
2 files changed, 17 insertions, 1 deletions
diff --git a/source/n/bind/bind-9.16.11.CVE-2020-8625.diff b/source/n/bind/bind-9.16.11.CVE-2020-8625.diff
new file mode 100644
index 00000000..419b5bea
--- /dev/null
+++ b/source/n/bind/bind-9.16.11.CVE-2020-8625.diff
@@ -0,0 +1,12 @@
+diff -u -r --new-file bind-9.16.11.orig/lib/dns/spnego.c bind-9.16.11/lib/dns/spnego.c
+--- bind-9.16.11.orig/lib/dns/spnego.c 2021-01-11 07:23:31.000000000 -0600
++++ bind-9.16.11/lib/dns/spnego.c 2021-02-24 13:57:17.199873321 -0600
+@@ -848,7 +848,7 @@
+ return (ASN1_OVERRUN);
+ }
+
+- data->components = malloc(len * sizeof(*data->components));
++ data->components = malloc((len + 1) * sizeof(*data->components));
+ if (data->components == NULL) {
+ return (ENOMEM);
+ }
diff --git a/source/n/bind/bind.SlackBuild b/source/n/bind/bind.SlackBuild
index 1b7af895..a77c5317 100755
--- a/source/n/bind/bind.SlackBuild
+++ b/source/n/bind/bind.SlackBuild
@@ -24,7 +24,7 @@ cd $(dirname $0) ; CWD=$(pwd)
PKGNAM=bind
VERSION=${VERSION:-$(echo ${PKGNAM}-[0-9]*.tar.?z | rev | cut -f 3- -d . | cut -f 1 -d - | rev)}
-BUILD=${BUILD:-1}
+BUILD=${BUILD:-3}
# Automatically determine the architecture we're building on:
if [ -z "$ARCH" ]; then
@@ -82,6 +82,10 @@ else
GSSAPI=" "
fi
+# Fix a security vulnerability. This is fixed in 9.16.12, but we can't use
+# that version due to other regressions.
+zcat $CWD/bind-9.16.11.CVE-2020-8625.diff.gz | patch -p1 --verbose || exit 1
+
# Configure:
CFLAGS="$SLKCFLAGS" \
./configure \