-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Security release addresses the security issues described in CVE-2015-8704 and CVE-2015-8705.

Here are the packets for CentOS

Security Fixes

CVE-2015-8704:	A buffer size check used to guard against overflow could cause named to exit with an INSIST failure In apl_42.c.
CVE-2015-8705: In versions of BIND 9.10, errors can occur when OPT pseudo-RR data or ECS options are formatted to text.  In 9.10.3 through 9.10.3-P2, the issue may result in a REQUIRE assertion failure in buffer.c. In prior 9.10 versions, it may result in named crashing (such as with a segmentation fault) or other misbehavior due to a buffer overrun.

The files are available in the file repository 9.10.3-P3, 9.9.8-P3.

Import GPG Key

rpm --import http://bkraft.fr/files/RPM%20stuff/RPM-GPG-KEY-benjaminkraft

File listing for 9.10.3-P3

http://bkraft.fr/files/RPM%20stuff/bind-9.10.3-2.el6.x86_64
[4.0K]  noarch
[8.0M]  bind-9.10.3-2.el6.src.rpm
[ 71K]  bind-license-9.10.3-2.el6.noarch.rpm
[4.0K]  x86_64
     [2.6M]  bind-9.10.3-2.el6.x86_64.rpm
     [ 70K]  bind-chroot-9.10.3-2.el6.x86_64.rpm
     [4.8M]  bind-debuginfo-9.10.3-2.el6.x86_64.rpm
     [439K]  bind-devel-9.10.3-2.el6.x86_64.rpm
     [1.1M]  bind-libs-9.10.3-2.el6.x86_64.rpm
     [ 69K]  bind-lite-devel-9.10.3-2.el6.x86_64.rpm
     [ 86K]  bind-pkcs11-9.10.3-2.el6.x86_64.rpm
     [337K]  bind-sdb-9.10.3-2.el6.x86_64.rpm
     [211K]  bind-utils-9.10.3-2.el6.x86_64.rpm

Download everything

for i in noarch/bind-license-9.10.3-2.el6.noarch.rpm x86_64/bind-9.10.3-2.el6.x86_64.rpm x86_64/bind-chroot-9.10.3-2.el6.x86_64.rpm x86_64/bind-debuginfo-9.10.3-2.el6.x86_64.rpm x86_64/bind-devel-9.10.3-2.el6.x86_64.rpm x86_64/bind-libs-9.10.3-2.el6.x86_64.rpm x86_64/bind-libs-lite-9.10.3-2.el6.x86_64.rpm x86_64/bind-lite-devel-9.10.3-2.el6.x86_64.rpm x86_64/bind-pkcs11-9.10.3-2.el6.x86_64.rpm x86_64/bind-sdb-9.10.3-2.el6.x86_64.rpm x86_64/bind-utils-9.10.3-2.el6.x86_64.rpm;
do
	wget http://bkraft.fr/files/RPM%20stuff/bind-9.10.3-P3.el6.x86_64/$i
done

File listing for 9.9.8-P3

http://bkraft.fr/files/RPM%20stuff/bind-9.9.8-2.el6.x86_64
[4.0K]  noarch
[8.0M]  bind-9.9.8-2.el6.src.rpm
[ 71K]  bind-license-9.9.8-2.el6.noarch.rpm
[4.0K]  x86_64
     [2.6M]  bind-9.9.8-2.el6.x86_64.rpm
     [ 70K]  bind-chroot-9.9.8-2.el6.x86_64.rpm
     [4.8M]  bind-debuginfo-9.9.8-2.el6.x86_64.rpm
     [439K]  bind-devel-9.9.8-2.el6.x86_64.rpm
     [1.1M]  bind-libs-9.9.8-2.el6.x86_64.rpm
     [ 69K]  bind-lite-devel-9.9.8-2.el6.x86_64.rpm
     [ 86K]  bind-pkcs11-9.9.8-2.el6.x86_64.rpm
     [337K]  bind-sdb-9.9.8-2.el6.x86_64.rpm
     [211K]  bind-utils-9.9.8-2.el6.x86_64.rpm

Download everything

for i in noarch/bind-license-9.9.8-2.el6.noarch.rpm x86_64/bind-9.9.8-2.el6.x86_64.rpm x86_64/bind-chroot-9.9.8-2.el6.x86_64.rpm x86_64/bind-debuginfo-9.9.8-2.el6.x86_64.rpm x86_64/bind-devel-9.9.8-2.el6.x86_64.rpm x86_64/bind-libs-9.9.8-2.el6.x86_64.rpm x86_64/bind-libs-lite-9.9.8-2.el6.x86_64.rpm x86_64/bind-lite-devel-9.9.8-2.el6.x86_64.rpm x86_64/bind-pkcs11-9.9.8-2.el6.x86_64.rpm x86_64/bind-sdb-9.9.8-2.el6.x86_64.rpm x86_64/bind-utils-9.9.8-2.el6.x86_64.rpm;
do
	wget http://bkraft.fr/files/RPM%20stuff/bind-9.9.8-P3.el6.x86_64/$i
done

-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
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=I/is
-----END PGP SIGNATURE-----

Hint: To validate signature, please view page source and copy html code between BEGIN PGP Signed message and END PGP Signature anchors.

Created the 2016-01-20

Share this


Replacement notice

×

This package has been replaced by a new version of the software.

refer to Bind 9.10.3-P4, Bind 9.9.8-P4 for CentOS 6

Resources

10 last articles

blog comments powered by Disqus