[Buildroot] [PATCH] bind: security bump to version 9.11-P1
Peter Korsgaard
peter at korsgaard.com
Mon Jun 26 07:58:29 UTC 2017
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Fixes the following security issues:
> CVE-2017-3140 is a denial-of-service vulnerability affecting 9.9.10,
> 9.10.5, 9.11.0->9.11.1, 9.9.10-S1, and 9.10.5-S1 when configured with
> Response Policy Zones (RPZ) utilizing NSIP or NSDNAME rules.
> https://kb.isc.org/article/AA-01495/74/CVE-2017-3140
> CVE-2017-3141 is a Windows privilege escalation vector affecting
> 9.2.6-P2+, 9.3.2-P1+, 9.4.x, 9.5.x, 9.6.x, 9.7.x, 9.8.x, 9.9.0->9.9.10,
9.10.0-> 9.10.5, 9.11.0->9.11.1, 9.9.3-S1->9.9.10-S1, and 9.10.5-S1. The
> BIND Windows installer failed to properly quote the service paths,
> possibly allowing a local user to achieve privilege escalation, if
> allowed by file system permissions.
> https://kb.isc.org/article/AA-01496/74/CVE-2017-3141
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed to 2017.02.x and 2017.05.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list