[SECURITY] Fedora 13 Update: bind-9.7.2-1.P3.fc13

updates at fedoraproject.org updates at fedoraproject.org
Tue Dec 7 20:10:13 UTC 2010 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-18521
2010-12-03 20:21:58
--------------------------------------------------------------------------------

Name        : bind
Product     : Fedora 13
Version     : 9.7.2
Release     : 1.P3.fc13
URL         : http://www.isc.org/products/BIND/
Summary     : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

--------------------------------------------------------------------------------
Update Information:

Update to 9.7.2-P3 release which contains various security fixes.

This update also provides bind-dyndb-ldap and dnsperf packages rebuild against updated bind.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Dec  2 2010 Adam Tkac <atkac redhat com> 32:9.7.2-1.P3
- update to 9.7.2-P3
* Mon Nov 29 2010 Jan Görig <jgorig redhat com> 32:9.7.1-3.P2
- added root zone DNS key
* Mon Jul 19 2010 Adam Tkac <atkac redhat com> 32:9.7.1-2.P2
- update to 9.7.1-P2 (CVE-2010-0213)
* Mon Jun 28 2010 Adam Tkac <atkac redhat com> 32:9.7.1-1
- update to 9.7.1
- patches merged
  - bind97-managed-keyfile.patch
  - bind97-rh554316.patch
- improve the "dnssec-conf" trigger
- set "managed-keys-directory" to /var/named/dynamic to avoid incompatibility
  in the stable Fedora release
* Thu May 20 2010 Adam Tkac <atkac redhat com> 32:9.7.0-10.P2
- update to 9.7.0-P2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #658974 - CVE-2010-3613 bind: failure to clear existing RRSIG records when a NO DATA is negatively cached could DoS named
        https://bugzilla.redhat.com/show_bug.cgi?id=658974
  [ 2 ] Bug #658977 - CVE-2010-3614 bind: key algorithm rollover may mark secure answers as insecure
        https://bugzilla.redhat.com/show_bug.cgi?id=658977
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list