Summary: | <net-dns/bind-9.14.4: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | D'juan McDonald (domhnall) <flopwiki> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | blackace, idl0r, voron1 |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://kb.isc.org/docs/aa-00913 | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=688388 | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: |
net-dns/bind-tools-9.14.4
net-dns/bind-9.14.4
|
Runtime testing required: | --- |
Description
D'juan McDonald (domhnall)
2019-04-29 07:45:40 UTC
>CVE-2019-6468: BIND Supported Preview Edition can exit with an assertion failure >if nxdomain-redirect is used
Sorry, doesn't apply to Gentoo's version. Removing alias.
sec bug should not depend on requests for ebuilds to be bumped. We will handle it all here. BIND 9.14.2 is upstream's Current-Stable and contains fixes for both CVE-2018-5743 and CVE-2019-6467. arm64 stable (required a new dep, but our profiles will go stable soon... better CI checks) amd64 stable alpha stable arm stable ia64 stable ppc stable ppc64 stable hppa stable sparc stable x86 stable |