Skip to content

bind/9.18.26 package update #17077

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 17, 2024
Merged

bind/9.18.26 package update #17077

merged 1 commit into from
Apr 17, 2024

Conversation

octo-sts[bot]
Copy link
Contributor

@octo-sts octo-sts bot commented Apr 17, 2024

@octo-sts octo-sts bot added request-version-update request for a newer version of a package automated pr labels Apr 17, 2024
@github-actions GitHub Actions
Copy link
Contributor

Package bind: Click to expand/collapse

Package bind:
Modified: /usr/bin/named-checkconf
Modified: /usr/lib/libbind9.la
Modified: /usr/lib/libdns.la
Modified: /usr/lib/libirs.la
Modified: /usr/lib/libisc.la
Modified: /usr/lib/libisccc.la
Modified: /usr/lib/libisccfg.la
Modified: /usr/lib/libns.la
Modified: /usr/sbin/named
Modified: /usr/sbin/rndc

Package bind-doc: Click to expand/collapse

Package bind-doc:
Modified: /usr/share/man/man1/arpaname.1
Modified: /usr/share/man/man1/delv.1
Modified: /usr/share/man/man1/dig.1
Modified: /usr/share/man/man1/dnssec-cds.1
Modified: /usr/share/man/man1/dnssec-dsfromkey.1
Modified: /usr/share/man/man1/dnssec-importkey.1
Modified: /usr/share/man/man1/dnssec-keyfromlabel.1
Modified: /usr/share/man/man1/dnssec-keygen.1
Modified: /usr/share/man/man1/dnssec-revoke.1
Modified: /usr/share/man/man1/dnssec-settime.1
Modified: /usr/share/man/man1/dnssec-signzone.1
Modified: /usr/share/man/man1/dnssec-verify.1
Modified: /usr/share/man/man1/dnstap-read.1
Modified: /usr/share/man/man1/host.1
Modified: /usr/share/man/man1/mdig.1
Modified: /usr/share/man/man1/named-checkconf.1
Modified: /usr/share/man/man1/named-checkzone.1
Modified: /usr/share/man/man1/named-compilezone.1
Modified: /usr/share/man/man1/named-journalprint.1
Modified: /usr/share/man/man1/named-rrchecker.1
Modified: /usr/share/man/man1/nsec3hash.1
Modified: /usr/share/man/man1/nslookup.1
Modified: /usr/share/man/man1/nsupdate.1
Modified: /usr/share/man/man5/named.conf.5
Modified: /usr/share/man/man5/rndc.conf.5
Modified: /usr/share/man/man8/ddns-confgen.8
Modified: /usr/share/man/man8/filter-a.8
Modified: /usr/share/man/man8/filter-aaaa.8
Modified: /usr/share/man/man8/named.8
Modified: /usr/share/man/man8/rndc-confgen.8
Modified: /usr/share/man/man8/rndc.8
Modified: /usr/share/man/man8/tsig-keygen.8

Package bind-dev: Click to expand/collapse

Package bind-dev:
Modified: /usr/include/dns/db.h
Modified: /usr/include/dns/dnssec.h
Modified: /usr/include/dns/enumclass.h
Modified: /usr/include/dns/enumtype.h
Modified: /usr/include/dns/rdata.h
Modified: /usr/include/dns/rdatastruct.h
Modified: /usr/include/dns/zone.h
Modified: /usr/include/isc/mem.h
Modified: /usr/include/isc/stats.h
Modified: /usr/include/ns/interfacemgr.h

Package bind-libs: Click to expand/collapse

Package bind-libs:
Added: /usr/lib/libbind9-9.18.26.so
Added: /usr/lib/libdns-9.18.26.so
Added: /usr/lib/libirs-9.18.26.so
Added: /usr/lib/libisc-9.18.26.so
Added: /usr/lib/libisccc-9.18.26.so
Added: /usr/lib/libisccfg-9.18.26.so
Added: /usr/lib/libns-9.18.26.so
Deleted: /usr/lib/libbind9-9.18.25.so
Deleted: /usr/lib/libdns-9.18.25.so
Deleted: /usr/lib/libirs-9.18.25.so
Deleted: /usr/lib/libisc-9.18.25.so
Deleted: /usr/lib/libisccc-9.18.25.so
Deleted: /usr/lib/libisccfg-9.18.25.so
Deleted: /usr/lib/libns-9.18.25.so

Package bind-dnssec-root: Click to expand/collapse

Package bind-dnssec-root:
Unchanged

Package bind-dnssec-tools: Click to expand/collapse

Package bind-dnssec-tools:
Modified: /usr/bin/dnssec-cds
Modified: /usr/bin/dnssec-dsfromkey
Modified: /usr/bin/dnssec-importkey
Modified: /usr/bin/dnssec-keyfromlabel
Modified: /usr/bin/dnssec-keygen
Modified: /usr/bin/dnssec-revoke
Modified: /usr/bin/dnssec-settime
Modified: /usr/bin/dnssec-signzone
Modified: /usr/bin/dnssec-verify
Modified: /usr/bin/nsec3hash

Package bind-plugins: Click to expand/collapse

Package bind-plugins:
Unchanged

Package bind-tools: Click to expand/collapse

Package bind-tools:
Modified: /usr/bin/arpaname
Modified: /usr/bin/delv
Modified: /usr/bin/dig
Modified: /usr/bin/dnstap-read
Modified: /usr/bin/host
Modified: /usr/bin/mdig
Modified: /usr/bin/named-checkzone
Modified: /usr/bin/named-journalprint
Modified: /usr/bin/named-rrchecker
Modified: /usr/bin/nslookup
Modified: /usr/bin/nsupdate
Modified: /usr/sbin/ddns-confgen
Modified: /usr/sbin/rndc-confgen

bincapz found differences: Click to expand/collapse

Deleted: bind-libs/usr/lib/libdns-9.18.25.so

RISK KEY DESCRIPTION
-2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM net/ip/string converts IP address from byte to string
-2/MEDIUM ref/ip hardcoded IP address: "192.203.230.10
192.36.148.17
192.58.128.30
198.97.190.53
202.12.27.33"
-2/MEDIUM ref/words/server_address references a 'server address', possible C2 client: "stub_request_nameserver_address"
-1/LOW dylib/symbol/address get the address of a symbol
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW fs/file/delete deletes files
-1/LOW fs/file/truncate truncate a file to a specified length
-1/LOW fs/permission/modify modifies file permissions
-1/LOW net/dns/txt uses DNS TXT (text) records
-1/LOW net/hostport/parse network address and service translation
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/receive receive a message to a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW process/thread_local_storage uses glibc thread local storage: "__tls_get_addr"
-1/LOW secrets/private_key references private keys: "private_key"

Deleted: bind-libs/usr/lib/libns-9.18.25.so

RISK KEY DESCRIPTION
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-1/LOW dylib/symbol/address get the address of a symbol
-1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW net/socket/receive receive a message to a socket
-1/LOW net/socket/send send a message to a socket

Deleted: bind-libs/usr/lib/libisccc-9.18.25.so

RISK KEY DESCRIPTION
-1/LOW encoding/base64 supports base64 encoded strings

Deleted: bind-libs/usr/lib/libbind9-9.18.25.so

RISK KEY DESCRIPTION
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM ref/words/agent references an 'agent': "agents"
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW net/hostport/parse network address and service translation
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-sign"

Deleted: bind-libs/usr/lib/libirs-9.18.25.so

RISK KEY DESCRIPTION
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-1/LOW net/hostport/parse network address and service translation

Moved: bind-libs/usr/lib/libisccfg-9.18.25.so -> bind-libs/usr/lib/libisccc-9.18.26.so (score: 0.952632)

Previous Risk: ✅ 2/MEDIUM
New Risk: ✅ 1/LOW

RISK KEY DESCRIPTION
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM ref/words/agent references an 'agent': "agents"
+1/LOW encoding/base64 supports base64 encoded strings
-1/LOW net/socket/listen listen on a socket

Moved: bind-libs/usr/lib/libisccfg-9.18.25.so -> bind-libs/usr/lib/libirs-9.18.26.so (score: 0.905263)

RISK KEY DESCRIPTION
-2/MEDIUM ref/words/agent references an 'agent': "agents"
+1/LOW net/hostport/parse network address and service translation
-1/LOW net/socket/listen listen on a socket

Moved: bind-libs/usr/lib/libisc-9.18.25.so -> bind-libs/usr/lib/libdns-9.18.26.so (score: 0.931429)

RISK KEY DESCRIPTION
-2/MEDIUM fs/file/times/set change file last access and modification times
-2/MEDIUM net/dns/over/https supports DNS (Domain Name Service) over HTTPS
+2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/interface/list list network interfaces and their associated addresses
+2/MEDIUM ref/ip hardcoded IP address: "192.203.230.10
192.36.148.17
192.58.128.30
198.97.190.53
202.12.27.33"
-2/MEDIUM ref/path/relative references and possibly executes relative path: "./include"
+2/MEDIUM ref/words/server_address references a 'server address', possible C2 client: "stub_request_nameserver_address"
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
+1/LOW dylib/symbol/address get the address of a symbol
-1/LOW fs/directory/create creates directories
+1/LOW fs/file/truncate truncate a file to a specified length
+1/LOW fs/mount mounts file systems
+1/LOW fs/permission/modify modifies file permissions
+1/LOW net/dns/txt uses DNS TXT (text) records
+1/LOW net/hostport/parse network address and service translation
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/interface/get get network interfaces by name or index
-1/LOW net/ip/multicast/send send data to multiple nodes simultaneously
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW process/chroot change the location of root for the process
-1/LOW process/multithreaded uses pthreads

Moved: bind-libs/usr/lib/libisccfg-9.18.25.so -> bind-libs/usr/lib/libisccfg-9.18.26.so (score: 0.984211)

Moved: bind-libs/usr/lib/libisccfg-9.18.25.so -> bind-libs/usr/lib/libns-9.18.26.so (score: 0.905263)

RISK KEY DESCRIPTION
-2/MEDIUM ref/words/agent references an 'agent': "agents"
+1/LOW dylib/symbol/address get the address of a symbol
+1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW net/socket/listen listen on a socket
+1/LOW net/socket/receive receive a message to a socket
+1/LOW net/socket/send send a message to a socket

Moved: bind-libs/usr/lib/libisccfg-9.18.25.so -> bind-libs/usr/lib/libisc-9.18.26.so (score: 0.936842)

RISK KEY DESCRIPTION
+2/MEDIUM fs/file/times/set change file last access and modification times
+2/MEDIUM net/dns/over/https supports DNS (Domain Name Service) over HTTPS
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/interface/list list network interfaces and their associated addresses
+2/MEDIUM net/ip/string converts IP address from byte to string
+2/MEDIUM ref/path/relative references and possibly executes relative path: "./include"
-2/MEDIUM ref/words/agent references an 'agent': "agents"
+1/LOW crypto/aes supports AES (Advanced Encryption Standard)
+1/LOW encoding/base64 supports base64 encoded strings
+1/LOW fs/directory/create creates directories
+1/LOW fs/file/delete deletes files
+1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
+1/LOW net/http/request makes HTTP requests
+1/LOW net/http2 uses the HTTP/2 protocol
+1/LOW net/interface/get get network interfaces by name or index
+1/LOW net/ip/multicast/send send data to multiple nodes simultaneously
+1/LOW net/socket/local/address get local address of connected socket
+1/LOW net/socket/peer/address get peer address of connected socket
+1/LOW net/socket/receive receive a message to a socket
+1/LOW net/socket/send send a message to a socket
+1/LOW process/chroot change the location of root for the process
+1/LOW process/multithreaded uses pthreads
+1/LOW process/thread_local_storage uses glibc thread local storage: "__tls_get_addr"
+1/LOW secrets/private_key references private keys: "private_key"

Moved: bind-libs/usr/lib/libisc-9.18.25.so -> bind-libs/usr/lib/libbind9-9.18.26.so (score: 0.918919)

RISK KEY DESCRIPTION
-2/MEDIUM fs/file/times/set change file last access and modification times
-2/MEDIUM net/dns/over/https supports DNS (Domain Name Service) over HTTPS
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/interface/list list network interfaces and their associated addresses
-2/MEDIUM net/ip/string converts IP address from byte to string
-2/MEDIUM ref/path/relative references and possibly executes relative path: "./include"
+2/MEDIUM ref/words/agent references an 'agent': "agents"
-1/LOW fs/directory/create creates directories
-1/LOW fs/file/delete deletes files
+1/LOW net/hostport/parse network address and service translation
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/interface/get get network interfaces by name or index
-1/LOW net/ip/multicast/send send data to multiple nodes simultaneously
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW net/socket/receive receive a message to a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW process/chroot change the location of root for the process
-1/LOW process/multithreaded uses pthreads
-1/LOW process/thread_local_storage uses glibc thread local storage: "__tls_get_addr"
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-sign"
-1/LOW secrets/private_key references private keys: "private_key"

@ajayk ajayk enabled auto-merge April 17, 2024 23:32
@ajayk ajayk merged commit 71819a2 into main Apr 17, 2024
@ajayk ajayk deleted the wolfictl-58162de0-c894-4d73-b722-e1facab4958a branch April 17, 2024 23:33
@philroche philroche mentioned this pull request Sep 5, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ajayk ajayk ajayk approved these changes

Assignees
No one assigned
Labels
automated pr request-version-update request for a newer version of a package
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ajayk @wolfi-bot