Overview

File _patchinfo of Package patchinfo.19320

<patchinfo incident="19320">
  <issue tracker="bnc" id="1185073">/var/run in /usr/lib/tmpfiles.d/bind-chrootenv.conf is deprecated, please use /run instead</issue>
  <issue tracker="bnc" id="1183453">VUL-0: bind: /usr/bin/delv is not position independent</issue>
  <issue tracker="cve" id="2021-25214"/>
  <issue tracker="cve" id="2021-25215"/>
  <packager>jmoellers</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for bind</summary>
  <description>This update for bind fixes the following issues:


- CVE-2021-25214: Fixed a broken inbound incremental zone update (IXFR) which could have caused named to terminate unexpectedly (bsc#1185345).
- CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records that required the DNAME to be processed to resolve itself (bsc#1185345).
- Switched from /var/run to /run (bsc#1185073)
- Hardening: Compiled binary with PIE flags to make it position independent
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places