-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Security release addresses the security issues described in CVE-2015-8704 and CVE-2015-8705.

CentOS 7 being out in the wild for a while already, I decided that I should carry on with bind 9.10.x on CentOS 7. So, here are the packets for CentOS 7.

Security Fixes

CVE-2015-8704:	A buffer size check used to guard against overflow could cause named to exit with an INSIST failure In apl_42.c.
CVE-2015-8705: In versions of BIND 9.10, errors can occur when OPT pseudo-RR data or ECS options are formatted to text.  In 9.10.3 through 9.10.3-P2, the issue may result in a REQUIRE assertion failure in buffer.c. In prior 9.10 versions, it may result in named crashing (such as with a segmentation fault) or other misbehavior due to a buffer overrun.

The files are available in the file repository 9.10.3-P3.

Import GPG Key

rpm --import http://bkraft.fr/files/RPM%20stuff/RPM-GPG-KEY-benjaminkraft

File listing for 9.10.3-P3

http://bkraft.fr/files/RPM.el7/bind-9.10.3-3.el7.x86_64
[8.3M] | noarch
[8.2M] |--bind-9.10.3-3.el7.centos.src.rpm
[ 84K] `--bind-license-9.10.3-3.el7.centos.noarch.rpm
[ 14M] |x86_64
[1.8M] |--bind-9.10.3-3.el7.centos.x86_64.rpm
[ 85K] |--bind-chroot-9.10.3-3.el7.centos.x86_64.rpm
[8.4M] |--bind-debuginfo-9.10.3-3.el7.centos.x86_64.rpm
[159K] |--bind-devel-9.10.3-3.el7.centos.x86_64.rpm
[146K] |--bind-libs-9.10.3-3.el7.centos.x86_64.rpm
[1.0M] |--bind-libs-lite-9.10.3-3.el7.centos.x86_64.rpm
[358K] |--bind-lite-devel-9.10.3-3.el7.centos.x86_64.rpm
[315K] |--bind-pkcs11-9.10.3-3.el7.centos.x86_64.rpm
[103K] |--bind-pkcs11-devel-9.10.3-3.el7.centos.x86_64.rpm
[1006K] |--bind-pkcs11-libs-9.10.3-3.el7.centos.x86_64.rpm
[198K] |--bind-pkcs11-utils-9.10.3-3.el7.centos.x86_64.rpm
[371K] |--bind-sdb-9.10.3-3.el7.centos.x86_64.rpm
[ 85K] |--bind-sdb-chroot-9.10.3-3.el7.centos.x86_64.rpm
[396K] `--bind-utils-9.10.3-3.el7.centos.x86_64.rpm

Download everything

for i in noarch/bind-license-9.10.3-3.el7.noarch.rpm x86_64/bind-9.10.3-3.el7.x86_64.rpm x86_64/bind-chroot-9.10.3-3.el7.x86_64.rpm x86_64/bind-debuginfo-9.10.3-3.el7.x86_64.rpm x86_64/bind-devel-9.10.3-3.el7.x86_64.rpm x86_64/bind-libs-9.10.3-3.el7.x86_64.rpm x86_64/bind-libs-lite-9.10.3-3.el7.x86_64.rpm x86_64/bind-lite-devel-9.10.3-3.el7.x86_64.rpm x86_64/bind-pkcs11-9.10.3-3.el7.x86_64.rpm x86_64/bind-sdb-9.10.3-3.el7.x86_64.rpm x86_64/bind-utils-9.10.3-3.el7.x86_64.rpm;
do
	wget http://bkraft.fr/files/RPM.el7/bind-9.10.3-P3.el6.x86_64/$i
done

-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
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=yCui
-----END PGP SIGNATURE-----

Hint: To validate signature, please view page source and copy html code between BEGIN PGP Signed message and END PGP Signature anchors.

Created the 2016-01-21

Share this


Replacement notice

×

This package has been replaced by a new version of the software.

refer to Bind 9.10.3-P4 for CentOS 7

Resources

10 last articles

blog comments powered by Disqus