[SECURITY] Fedora 22 Update: bind-9.10.3-7.P2.fc22

updates at fedoraproject.org updates at fedoraproject.org
Tue Dec 22 07:25:05 UTC 2015


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-2df40de264
2015-12-22 07:00:25.108381
--------------------------------------------------------------------------------

Name        : bind
Product     : Fedora 22
Version     : 9.10.3
Release     : 7.P2.fc22
URL         : http://www.isc.org/products/BIND/
Summary     : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

--------------------------------------------------------------------------------
Update Information:

security update
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1291176 - CVE-2015-8000 bind: responses with a malformed class attribute can trigger an assertion failure in db.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1291176
  [ 2 ] Bug #1291186 - CVE-2015-8461 bind: race condition when handling socket errors can lead to an assertion failure in resolver.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1291186
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program. Use
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list