The following defect(s) have been fixed in this cumulative patch for the Wind River bind:
WIND00319168 Security Advisory - bind - CVE-2011-4313
WIND00355891 Security Advisory - bind - CVE-2012-1667
WIND00376774 Security Advisory - bind - CVE-2012-4244
WIND00382754 Security Advisory - bind - CVE-2012-5166
----------------------------------------------------------------------------------------
Change List:
/layers/wrll-wrlinux/dist/bind/Makefile
/layers/wrll-wrlinux/dist/bind/bind.spec
/layers/wrll-wrlinux/dist/bind/patches/bind97-CVE-2012-1667.patch
/layers/wrll-wrlinux/dist/bind/patches/bind-Fix-CVE-2012-5166.patch
/layers/wrll-wrlinux/dist/bind/patches/bind-Fix-CVE-2012-4244.patch
/layers/wrll-wrlinux/dist/bind/patches/bind-9.5.0-CVE-2011-4313.patch
Requires Wind River Linux Secure 1.0 to be installed
1. Unzip this patch under [install_dir]/updates
2. From the [install_dir]/updates directory, run the command "../maintenance/wrInstaller/x86-linux2/wrInstaller"
3. Follow the instructions for installing the point patch.
4. This is a source only patch so you will have to rebuild the bind package. This can be done by executing the command "make -C build bind.distclean" followed by "make -C build bind.rebuild"
5. Run "make fs" next
6. Upload the kernel and rootfs into the target and boot it up.
DATE: 27 Nov 2012
REVISION: file WRLS_1_0-base-tgt-bind-20121010-spin1.zip replaced with WRLS_1_0-base-tgt-bind-20121118-spin1.zip and includes fix to defect WIND00382754
DATE: 23 Oct 2012
REVISION: file WRLS_1_0-base-tgt-bind-20120801-spin1.zip replaced with WRLS_1_0-base-tgt-bind-20121010-spin1.zip and includes fix to defect WIND00376774
DATE: 09 Oct 2012
REVISION: file WRLS_1_0-base-tgt-bind-20120219-spin2.zip replaced with WRLS_1_0-base-tgt-bind-20120801-spin1.zip and includes fix to defect WIND00355891
DATE: 22 Feb 2012
REVISION: Add file WRLS_1_0-base-tgt-bind-20120219-spin2.zip and includes fix to defect WIND00319168
