diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2014-12-23 08:49:28 +0100 |
---|---|---|
committer | Tudor Florea <tudor.florea@enea.com> | 2015-07-06 20:19:36 +0200 |
commit | 2ee2433765a3502a61af09bdd183cd60300948dc (patch) | |
tree | ca08cd8e2c2088854dfbf0a5e797a2592625600f /meta/recipes-connectivity/bind/bind_9.9.5.bb | |
parent | 68e1d0057391ad64603e8fd824c16b58a2d88b19 (diff) | |
download | poky-2ee2433765a3502a61af09bdd183cd60300948dc.tar.gz |
bind: fix for CVE-2014-8500
A denial of service flaw was found in the way BIND followed DNS
delegations. A remote attacker could use a specially crafted zone
containing a large number of referrals which, when looked up and
processed, would cause named to use excessive amounts of memory
or crash.
External References:
===================
https://kb.isc.org/article/AA-01216/74/CVE-2014-8500%3A-A-Defect-in-\
Delegation-Handling-Can-Be-Exploited-to-Crash-BIND.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8500
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Diffstat (limited to 'meta/recipes-connectivity/bind/bind_9.9.5.bb')
-rw-r--r-- | meta/recipes-connectivity/bind/bind_9.9.5.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/bind/bind_9.9.5.bb b/meta/recipes-connectivity/bind/bind_9.9.5.bb index 604deb6236..a261d78695 100644 --- a/meta/recipes-connectivity/bind/bind_9.9.5.bb +++ b/meta/recipes-connectivity/bind/bind_9.9.5.bb | |||
@@ -13,6 +13,7 @@ SRC_URI = "ftp://ftp.isc.org/isc/bind9/${PV}/${BPN}-${PV}.tar.gz \ | |||
13 | file://make-etc-initd-bind-stop-work.patch \ | 13 | file://make-etc-initd-bind-stop-work.patch \ |
14 | file://mips1-not-support-opcode.diff \ | 14 | file://mips1-not-support-opcode.diff \ |
15 | file://dont-test-on-host.patch \ | 15 | file://dont-test-on-host.patch \ |
16 | file://bind9_9_5-CVE-2014-8500.patch \ | ||
16 | " | 17 | " |
17 | 18 | ||
18 | SRC_URI[md5sum] = "e676c65cad5234617ee22f48e328c24e" | 19 | SRC_URI[md5sum] = "e676c65cad5234617ee22f48e328c24e" |