Skip to content

Commit 3dadb59

Browse files
CBL-Mariner-BotCopilotkgodara912PawelWMSmbykhovtsev-ms
authored
[AUTO-CHERRYPICK] Upgrade bind to 9.20.9 for CVE-2025-40775 - branch 3.0-dev (#13988)
Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: kgodara912 <193572699+kgodara912@users.noreply.github.com> Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com> Co-authored-by: mbykhovtsev-ms <108374904+mbykhovtsev-ms@users.noreply.github.com> Co-authored-by: jslobodzian <joslobo@microsoft.com>
1 parent 2a5b11f commit 3dadb59

4 files changed

Lines changed: 16 additions & 13 deletions

File tree

SPECS/bind/bind.signatures.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"Signatures": {
3-
"bind-9.20.5.tar.xz": "19274fd739c023772b4212a0b6c201cf4364855fa7e6a7d3db49693f55db1ab8",
3+
"bind-9.20.9.tar.xz": "3d26900ed9c9a859073ffea9b97e292c1248dad18279b17b05fcb23c3091f86d",
44
"dlz-modules-main.tar.gz": "884bef3535317a7757ad0e3556a27e2ed1a80f5b1040bce4074780c8719667d0",
55
"generate-rndc-key.sh": "da0964516a9abe4074e262a1d0b7f63e63b2150c4cc2dddaaca029010383c422",
66
"named-chroot.files": "5dbc7bd2a21836fb86cb740a2d4d72eb9f2b4f341996cd0c8ae9c39e95c0d76c",

SPECS/bind/bind.spec

Lines changed: 6 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9,8 +9,8 @@
99

1010
Summary: Domain Name System software
1111
Name: bind
12-
Version: 9.20.5
13-
Release: 4%{?dist}
12+
Version: 9.20.9
13+
Release: 1%{?dist}
1414
License: ISC
1515
Vendor: Microsoft Corporation
1616
Distribution: Azure Linux
@@ -536,7 +536,10 @@ fi;
536536
%{_mandir}/man1/named-nzd2nzf.1*
537537

538538
%changelog
539-
* Tue Feb 11 2025 Andrew Phelps <anphel@microsoft.com> - 9.20.5-4
539+
* Mon May 26 2025 CBL-Mariner Servicing Account <cblmargh@microsoft.com> - 9.20.9-1
540+
- Auto-upgrade to 9.20.9 - for CVE-2025-40775
541+
542+
* Mon Mar 03 2025 Andrew Phelps <anphel@microsoft.com> - 9.20.5-4
540543
- Remove duplicate shared object files in base and devel packages
541544
- Remove duplicate files from utils package
542545
- Add requires for bind-libs from base package

SPECS/bind/nongit-fix.patch

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -1,18 +1,18 @@
1-
From a93a15295ac2690f587711b26af84d6292d2aa1b Mon Sep 17 00:00:00 2001
2-
From: Kanishk Bansal <kbkanishk975@gmail.com>
3-
Date: Tue, 4 Feb 2025 06:49:17 +0000
4-
Subject: [PATCH] Fix issue where bind directory isn't downloaded via git
1+
From 87098009404ea5d372be6268bd1d1ce356c1a4f5 Mon Sep 17 00:00:00 2001
2+
From: Kshitiz Godara <kgodara@microsoft.com>
3+
Date: Mon, 2 Jun 2025 16:33:19 +0000
4+
Subject: [PATCH 2/2] non-git download issue
55

66
---
77
configure.ac | 6 ++++--
88
1 file changed, 4 insertions(+), 2 deletions(-)
99

1010
diff --git a/configure.ac b/configure.ac
11-
index 168a77a..37c0acd 100644
11+
index 9701cdb..b7c84f6 100644
1212
--- a/configure.ac
1313
+++ b/configure.ac
1414
@@ -19,7 +19,7 @@ m4_define([bind_VERSION_MINOR], 20)dnl
15-
m4_define([bind_VERSION_PATCH], 5)dnl
15+
m4_define([bind_VERSION_PATCH], 9)dnl
1616
m4_define([bind_VERSION_EXTRA], )dnl
1717
m4_define([bind_DESCRIPTION], [(Stable Release)])dnl
1818
-m4_define([bind_SRCID], [m4_esyscmd_s([git rev-parse --short HEAD | cut -b1-7])])dnl
@@ -32,5 +32,5 @@ index 168a77a..37c0acd 100644
3232

3333
#
3434
--
35-
2.43.0
35+
2.45.3
3636

cgmanifest.json

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1097,8 +1097,8 @@
10971097
"type": "other",
10981098
"other": {
10991099
"name": "bind",
1100-
"version": "9.20.5",
1101-
"downloadUrl": "https://ftp.isc.org/isc/bind9/9.20.5/bind-9.20.5.tar.xz"
1100+
"version": "9.20.9",
1101+
"downloadUrl": "https://ftp.isc.org/isc/bind9/9.20.9/bind-9.20.9.tar.xz"
11021102
}
11031103
}
11041104
},

0 commit comments

Comments
 (0)