Bump the bind version to 9.16.37 to fix CVE-2022-3924, CVE-2022-3094, CVE-2022-3736 (#6195)

Bump the bind version to 9.16.37 to fix CVE-2022-3924, CVE-2022-3094, CVE-2022-3736 (#6195) --------- Co-authored-by: Betty Lakes <bettylakes@microsoft.com>
2023-09-08 09:48:02 -07:00 · 2023-09-08 09:48:02 -07:00 · e1230ee0b5
parent f78a6f5eb2
commit e1230ee0b5
3 changed files with 8 additions and 5 deletions
--- a/SPECS/bind/bind.signatures.json
+++ b/SPECS/bind/bind.signatures.json
@ -14,6 +14,6 @@
    "named.sysconfig": "8f8eff846667b7811358e289e9fe594de17d0e47f2b8cebf7840ad8db7f34816",
    "setup-named-chroot.sh": "786fbc88c7929fadf217cf2286f2eb03b6fba14843e5da40ad43c0022dd71c3a",
    "setup-named-softhsm.sh": "3b243d9e48577acb95a08ae5dd7288c5eec4830bc02bd29b1f1724c497d12864",
-    "bind-9.16.33.tar.xz": "ec4fbea4b2e368d1824971509e33fa159224ad14b436034c6bcd46104c328d91"
+    "bind-9.16.37.tar.xz": "0e4661d522a2fe1f111c1f0685e7d6993d657f81dae24e7a75dbd8db3ef2e2ab"
  }
 }
--- a/SPECS/bind/bind.spec
+++ b/SPECS/bind/bind.spec
@ -9,8 +9,8 @@

 Summary:        Domain Name System software
 Name:           bind
-Version:        9.16.33
-Release:        2%{?dist}
+Version:        9.16.37
+Release:        1%{?dist}
 License:        ISC
 Vendor:         Microsoft Corporation
 Distribution:   Mariner
@ -615,6 +615,9 @@ fi;
 %{_mandir}/man8/named-nzd2nzf.8*

 %changelog
+* Thu Sep 07 2023 Betty Lakes <bettylakes@microsoft.com> - 9.16.37-1
+- Bump the version to 9.16.37 to fix CVE-2022-3924, CVE-2022-3094, CVE-2022-3736
+
 * Wed Jul 26 2023 Suresh Thelkar <sthelkar@microsoft.com> - 9.16.33-2
 - Patch to fix CVE-2023-2828

--- a/cgmanifest.json
+++ b/cgmanifest.json
@ -1087,8 +1087,8 @@
        "type": "other",
        "other": {
          "name": "bind",
-          "version": "9.16.33",
-          "downloadUrl": "https://ftp.isc.org/isc/bind9/9.16.33/bind-9.16.33.tar.xz"
+          "version": "9.16.37",
+          "downloadUrl": "https://ftp.isc.org/isc/bind9/9.16.37/bind-9.16.37.tar.xz"
        }
      }
    },