[packages/bind] Up to 9.18.28; fixes: CVE-2024-0760, CVE-2024-1737, CVE-2024-1975, CVE-2024-4076. Disable bind jmall
arekm
arekm at pld-linux.org
Tue Jul 23 22:48:34 CEST 2024
commit a9e1ca87e336ab9dc06cd90f7d4a28100e237823
Author: Arkadiusz Miśkiewicz <arekm at maven.pl>
Date: Tue Jul 23 22:45:56 2024 +0200
Up to 9.18.28; fixes: CVE-2024-0760, CVE-2024-1737, CVE-2024-1975, CVE-2024-4076. Disable bind jmalloc hack (it conflicts with out mangled jemalloc)
bind.spec | 6 +++---
jemalloc.patch | 11 +++++++++++
2 files changed, 14 insertions(+), 3 deletions(-)
---
diff --git a/bind.spec b/bind.spec
index 4e80a97..7ebc536 100644
--- a/bind.spec
+++ b/bind.spec
@@ -24,7 +24,7 @@
%bcond_without epoll # disable epoll support
%endif
-%define ver 9.18.25
+%define ver 9.18.28
%if 0
%define pverdot .P0
%define pverdir -P0
@@ -49,7 +49,7 @@ Epoch: 7
License: MPL 2.0
Group: Networking/Daemons
Source0: ftp://ftp.isc.org/isc/bind9/%{ver}%{pverdir}/%{name}-%{ver}%{pverdir}.tar.xz
-# Source0-md5: 05385c9873e499356d0461b1d13ca4f8
+# Source0-md5: 8fc27fb04e6760aee166a05c6ffd19d5
Source1: named.init
Source2: named.sysconfig
Source3: named.logrotate
@@ -58,7 +58,7 @@ Source4: http://www.mif.pg.gda.pl/homepages/ankry/man-PLD/%{name}-non-english-ma
Source6: %{name}-hip.tar.gz
# Source6-md5: 62a8a67f51ff8db9fe815205416a1f62
Source7: https://www.internic.net/domain/named.root
-# Source7-md5: a551fabe906ec055e7f563276dad9c35
+# Source7-md5: ae5167ad4a3d5feb134e59730194a545
Source8: %{name}-127.0.0.zone
Source9: %{name}-localhost.zone
Source10: %{name}-named.conf
diff --git a/jemalloc.patch b/jemalloc.patch
index 36c36bd..8978e67 100644
--- a/jemalloc.patch
+++ b/jemalloc.patch
@@ -9,3 +9,14 @@
#define JEMALLOC_API_SUPPORTED 1
+--- bind-9.18.28/lib/isc/include/isc/mem.h~ 2024-07-08 17:20:32.000000000 +0200
++++ bind-9.18.28/lib/isc/include/isc/mem.h 2024-07-23 22:40:27.816664863 +0200
+@@ -189,7 +189,7 @@ extern unsigned int isc_mem_defaultflags
+ * see https://github.com/jemalloc/jemalloc/issues/2566
+ * for more information.
+ */
+-#if HAVE_JEMALLOC
++#if HAVE_JEMALLOC && 0
+
+ /*
+ * cmocka.h has confliction definitions with the jemalloc header but we only
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/bind.git/commitdiff/a9e1ca87e336ab9dc06cd90f7d4a28100e237823
More information about the pld-cvs-commit
mailing list