news:2012:06:14:slackware64-13.1-changelog

Slackware64-13.1 ChangeLog (2012-06-14)

Thu Jun 14 05:02:39 UTC 2012

Packages

Upgraded

  • patches/packages/bind-9.7.6_P1-x86_64-1_slack13.1.txz
    This release fixes an issue that could crash BIND, leading to a denial of
    service. It also fixes the so-called “ghost names attack” whereby a
    remote attacker may trigger continued resolvability of revoked domain names.
    For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1033
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1667
    IMPORTANT NOTE: This is a upgraded version of BIND, _not_ a patched one.
    It is likely to be more strict about the correctness of configuration files.
    Care should be taken about deploying this upgrade on production servers to
    avoid an unintended interruption of service.
    (* Security fix *)
, , ,
  • news/2012/06/14/slackware64-13.1-changelog.txt
  • Last modified: 12 months ago
  • by Giuseppe Di Terlizzi