package/bind: security bump to version 9.11.6-P1

Fixes the following security issues: - CVE-2018-5743: Limiting simultaneous TCP clients is ineffective https://kb.isc.org/docs/cve-2018-5743 - CVE-2019-6467: An error in the nxdomain redirect feature can cause BIND to exit with an INSIST assertion failure in query.c https://kb.isc.org/docs/cve-2019-6467 - CVE-2019-6468: BIND Supported Preview Edition can exit with an assertion failure if nxdomain-redirect is used https://kb.isc.org/docs/cve-2019-6468 Add an upstream patch to fix building on architectures where bind does not implement isc_atomic_*. Upstream moved to a 2019 signing key, so update comment in .hash file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2026-01-04 06:10:16 +03:00 · 2019-04-26 13:32:56 +02:00
parent b7650ae940
commit fc8ace0938
3 changed files with 137 additions and 4 deletions
--- a/package/bind/bind.mk
+++ b/package/bind/bind.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################

-BIND_VERSION = 9.11.5-P4
+BIND_VERSION = 9.11.6-P1
 BIND_SITE = https://ftp.isc.org/isc/bind9/$(BIND_VERSION)
 # bind does not support parallel builds.
 BIND_MAKE = $(MAKE1)