[v9_9_8_patch] clean up notes, prep 9.9.8-P3

author Evan Hunt <each@isc.org>

Mon, 4 Jan 2016 05:20:53 +0000 (21:20 -0800)

committer Evan Hunt <each@isc.org>

Mon, 4 Jan 2016 05:20:53 +0000 (21:20 -0800)
author Evan Hunt <each@isc.org>
Mon, 4 Jan 2016 05:20:53 +0000 (21:20 -0800)
committer Evan Hunt <each@isc.org>
Mon, 4 Jan 2016 05:20:53 +0000 (21:20 -0800)
diff --git a/CHANGES b/CHANGES

index dbc385c7b9c5aefb153f42a16389f1b76fecbfb2..74d0384b5cf3cccb171be8ff3bd4bbd98e737e36 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,5 @@
+       --- 9.9.8-P3 released ---
+
  4285.  [security]      Specific APL data could trigger a INSIST.
                         (CVE-2015-8704) [RT #41396]
  
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index 40ed46997518c7a717dcabd3b12dca6087b89c30..4b32237f1c2ca0f56248637ae1b8cab78323abf0 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -22,9 +22,12 @@
      <para>
        This document summarizes changes since BIND 9.9.8:
      </para>
+    <para>
+      BIND 9.9.8-P3 addresses the security issue described in CVE-2015-8704.
+    </para>
      <para>
        BIND 9.9.8-P2 addresses security issues described in CVE-2015-3193
-      (OpenSSL), CVE-2015-8000, CVE-2015-8461 and CVE-2015-8704.
+      (OpenSSL), CVE-2015-8000 and CVE-2015-8461.
      </para>
      <para>
        BIND 9.9.8-P1 was incomplete and was withdrawn prior to publication.
@@ -46,15 +49,15 @@
      <itemizedlist>
        <listitem>
         <para>
-         Named is potentially vulnerable to the OpenSSL vulnerabilty
-         described in CVE-2015-3193.
+         Specific APL data could trigger an INSIST.  This flaw
+         was discovered by Brian Mitchell and is disclosed in
+         CVE-2015-8704. [RT #41396]
         </para>
        </listitem>
        <listitem>
         <para>
-         Incorrect reference counting could result in an INSIST
-         failure if a socket error occurred while performing a
-         lookup.  This flaw is disclosed in CVE-2015-8461. [RT#40945]
+         Named is potentially vulnerable to the OpenSSL vulnerabilty
+         described in CVE-2015-3193.
         </para>
        </listitem>
        <listitem>
@@ -68,8 +71,9 @@
        </listitem>
        <listitem>
         <para>
-         Specfic APL data could trigger a INSIST.  This flaw was discovered
-         by Brian Mitchell and is disclosed in CVE-2015-8704. [RT #41396]
+         Incorrect reference counting could result in an INSIST
+         failure if a socket error occurred while performing a
+         lookup.  This flaw is disclosed in CVE-2015-8461. [RT#40945]
         </para>
        </listitem>
      </itemizedlist>
diff --git a/lib/dns/api b/lib/dns/api

index 0d52f39a7a0bb32b0d24975ede507842dd3b948d..1a6ae8d86d83b264eba66fc0d73a5232a9fceca6 100644 (file)
--- a/lib/dns/api
+++ b/lib/dns/api
@@ -7,5 +7,5 @@
  # 9.10: 140-149
  # 9.11: 160-169
  LIBINTERFACE = 170
-LIBREVISION = 1
+LIBREVISION = 2
  LIBAGE = 1
diff --git a/version b/version

index 3711d026bab265b33461cbea8ba676afcd1dc2ba..51e71791600756869c3a2221f90fe6daff05f21e 100644 (file)
--- a/version
+++ b/version
@@ -7,5 +7,5 @@ MAJORVER=9
  MINORVER=9
  PATCHVER=8
  RELEASETYPE=-P
-RELEASEVER=2
+RELEASEVER=3
  EXTENSIONS=
author	Evan Hunt <each@isc.org>
	Mon, 4 Jan 2016 05:20:53 +0000 (21:20 -0800)
committer	Evan Hunt <each@isc.org>
	Mon, 4 Jan 2016 05:20:53 +0000 (21:20 -0800)
CHANGES		patch \| blob \| blame \| history
doc/arm/notes.xml		patch \| blob \| blame \| history
lib/dns/api		patch \| blob \| blame \| history
version		patch \| blob \| blame \| history