aports issueshttps://gitlab.alpinelinux.org/alpine/aports/-/issues2019-07-23T14:27:02Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/1666[v2.3] Multiple vulnerabilities in php < 5.3.22 allows remote information dis...2019-07-23T14:27:02ZLeonardo Arena[v2.3] Multiple vulnerabilities in php < 5.3.22 allows remote information disclosurehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1635
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1643
Solution:
- Upgrade to 5.3.22
*(from redmine: issue id 1666, created on 2013-03-19, closed on 2013-04-12)*
* ...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1635
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1643
Solution:
- Upgrade to 5.3.22
*(from redmine: issue id 1666, created on 2013-03-19, closed on 2013-04-12)*
* Changesets:
* Revision f5b55e3ab4dd0db33562854107a7393e8e75db6d by Natanael Copa on 2013-04-11T16:31:58Z:
```
main/php: security upgrade to 5.3.23 (CVE-2013-1635,CVE-2013-1643)
fixes #1666
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1661[v2.3] Vulnerability in libxml2 allows remote denial of service2019-07-23T14:27:07ZLeonardo Arena[v2.3] Vulnerability in libxml2 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0338
https://bugzilla.redhat.com/show\_bug.cgi?id=912400
Solution:
- Patch:
https://git.gnome.org/browse/libxml2/patch/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
*(from redm...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0338
https://bugzilla.redhat.com/show\_bug.cgi?id=912400
Solution:
- Patch:
https://git.gnome.org/browse/libxml2/patch/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
*(from redmine: issue id 1661, created on 2013-03-19, closed on 2013-04-11)*
* Relations:
* duplicates #1725
* Changesets:
* Revision 592e6b4954307395e9a29ca70a3ccec7f1f3221f on 2013-04-11T14:34:55Z:
```
main/libxml2: fix (CVE-2013-0338)
fixes #1661
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1656[v2.3] Vulnerability in various gnutls versions2019-07-23T14:27:11ZLeonardo Arena[v2.3] Vulnerability in various gnutls versionshttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1619
Solution:
\- Upgrade to 3.1.7 or later (v2.5)
\- Upgrade to 3.0.28 (v2.4)
- Upgrade to 2.12.23 (v2.3, v2.2)
*(from redmine: issue id 1656, created on 2013-03-19, closed o...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1619
Solution:
\- Upgrade to 3.1.7 or later (v2.5)
\- Upgrade to 3.0.28 (v2.4)
- Upgrade to 2.12.23 (v2.3, v2.2)
*(from redmine: issue id 1656, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision cc886f2ba7fe3142721ca39008a137f4d1d342ea on 2013-04-08T13:08:14Z:
```
main/gnutls: security upgrade to 2.12.23 (CVE-2013-1619). Fixes #1656
```
* Revision 0657af0fc3b75fb7a5ba99b45021991c7fcda84b on 2013-04-08T13:36:23Z:
```
Revert "main/gnutls: security upgrade to 2.12.23 (CVE-2013-1619). Fixes #1656"
This reverts commit cc886f2ba7fe3142721ca39008a137f4d1d342ea.
```
* Revision 80f504157551d1a473a083b20253452cbb71bb0c by Natanael Copa on 2013-04-11T15:06:23Z:
```
main/gnutls: security fix (CVE-2013-1619)
Patch from ubuntu:
https://launchpadlibrarian.net/132499570/gnutls26_2.12.14-5ubuntu3.1_2.12.14-5ubuntu3.2.diff.gz
fixes #1656
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1652[v2.3] Vulnerability in sudo < 1.8.6p7 allows privilege excalation2019-07-23T14:27:15ZLeonardo Arena[v2.3] Vulnerability in sudo < 1.8.6p7 allows privilege excalationhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1775
Solution:
- Upgrade to 1.8.6p7
*(from redmine: issue id 1652, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 9b4f0ccdcff9eba79c8538a9075d3876d912...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1775
Solution:
- Upgrade to 1.8.6p7
*(from redmine: issue id 1652, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 9b4f0ccdcff9eba79c8538a9075d3876d912a35d by Natanael Copa on 2013-03-26T01:03:33Z:
```
main/sudo: security upgrade to 1.8.6_p7 (CVE-2013-1775)
fixes #1652
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1648[v2.3] Vulnerability in privoxy < 3.0.1 allows information disclosure2019-07-23T14:27:19ZLeonardo Arena[v2.3] Vulnerability in privoxy < 3.0.1 allows information disclosurehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2503
Solution:
- Upgrade to 3.0.21
*(from redmine: issue id 1648, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision 7551906b7e0ca8a591575c3c67b4bcdbcae46...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2503
Solution:
- Upgrade to 3.0.21
*(from redmine: issue id 1648, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision 7551906b7e0ca8a591575c3c67b4bcdbcae46dba on 2013-04-08T11:34:34Z:
```
security upgrade to 3.0.21 (CVE-2013-2503). Fixes #1648
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1645[v2.3] Vulnerability in squid < 3.2.9 allow remote denial of service2019-07-23T14:27:21ZLeonardo Arena[v2.3] Vulnerability in squid < 3.2.9 allow remote denial of servicehttp://www.squid-cache.org/Advisories/SQUID-2013\_1.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1839
Solution:
- Upgrade to 3.2.9
*(from redmine: issue id 1645, created on 2013-03-19, closed on 2013-04-17)*
* Chang...http://www.squid-cache.org/Advisories/SQUID-2013\_1.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1839
Solution:
- Upgrade to 3.2.9
*(from redmine: issue id 1645, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 8380617123add6f54ab6b69952b3bc92533ff5f1 by Natanael Copa on 2013-03-26T01:02:20Z:
```
main/squid: security upgrade to 3.2.9 (CVE-2013-1839)
fixes #1645
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1641[v2.3] Multiple vulnerabilities in wirshark < 1.6.14, 1.8.6 allows remote den...2019-07-23T14:27:25ZLeonardo Arena[v2.3] Multiple vulnerabilities in wirshark < 1.6.14, 1.8.6 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2478
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2478
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2483
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2484
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2488
Solution:
- Upgrade to 1.6.14/1.8.6
*(from redmine: issue id 1641, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 3332eba0f0f106097722b1401907a239001bb4bd by Natanael Copa on 2013-03-26T00:50:53Z:
```
main/wireshark: security upgrade to 1.6.14 (CVE-2013-2478,CVE-2013-2480,CVE-2013-2481,CVE-2013-2483,CVE-2013-2484,CVE-2013-2488)
fixes #1641
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1637[v2.3] Vulnerability in perl < 5.12.5, 5.14.3 allows remote code execution2019-07-23T14:27:28ZLeonardo Arena[v2.3] Vulnerability in perl < 5.12.5, 5.14.3 allows remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5195
Solution:
- Upgrade to 5.12.5 (v2.2) or 5.14.3 (v2.3, v2.4)
*(from redmine: issue id 1637, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 29aaa3b...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5195
Solution:
- Upgrade to 5.12.5 (v2.2) or 5.14.3 (v2.3, v2.4)
*(from redmine: issue id 1637, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 29aaa3b1df0480eca7eb2edd7e8394c765b061f0 by Natanael Copa on 2013-03-26T00:38:13Z:
```
main/perl: security upgrade to 5.14.3 (CVE-2012-5195)
fixes #1637
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1614[v2.3] pidgin: upgrade to 2.10.72019-07-23T14:27:46ZNatanael Copa[v2.3] pidgin: upgrade to 2.10.7*(from redmine: issue id 1614, created on 2013-02-14, closed on 2013-02-15)*
* Relations:
* parent #1610
* Changesets:
* Revision 75698847c89da429e623aa8da25455ea1c351fcd by Natanael Copa on 2013-02-14T17:07:55Z:
```
main/pidgin: s...*(from redmine: issue id 1614, created on 2013-02-14, closed on 2013-02-15)*
* Relations:
* parent #1610
* Changesets:
* Revision 75698847c89da429e623aa8da25455ea1c351fcd by Natanael Copa on 2013-02-14T17:07:55Z:
```
main/pidgin: security upgrade to 2.10.7 (CVE-2013-0271,CVE-2013-0272,CVE-2013-0273,CVE-2013-0274)
fixes #1614
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1594[v2.3] openssl: CVE-2013-0169, CVE-2012-2686, CVE-2013-01662019-07-23T14:28:06ZNatanael Copa[v2.3] openssl: CVE-2013-0169, CVE-2012-2686, CVE-2013-0166Upgrade to openssl-1.0.1d.
*(from redmine: issue id 1594, created on 2013-02-06, closed on 2013-02-06)*
* Changesets:
* Revision f8559a6507d371d02c48f885aa56fcd97f6e0d51 by Natanael Copa on 2013-02-06T10:15:29Z:
```
main/openssl: s...Upgrade to openssl-1.0.1d.
*(from redmine: issue id 1594, created on 2013-02-06, closed on 2013-02-06)*
* Changesets:
* Revision f8559a6507d371d02c48f885aa56fcd97f6e0d51 by Natanael Copa on 2013-02-06T10:15:29Z:
```
main/openssl: security upgrade to 1.0.0k (CVE-2013-0169,CVE-2012-2686,CVE-2013-0166)
fixes #1594
```Alpine 2.3.7Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/1575[v2.3] Vulnerability in rails < 2.3.15 allows remote denial of service2022-08-31T08:03:12ZLeonardo Arena[v2.3] Vulnerability in rails < 2.3.15 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0156
Solution:
\- Upgrade to 2.3.15
*(from redmine: issue id 1575, created on 2013-01-17, closed on 2013-01-18)*http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0156
Solution:
\- Upgrade to 2.3.15
*(from redmine: issue id 1575, created on 2013-01-17, closed on 2013-01-18)*Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1572[v2.3] Vulnerability in rails < [3.0.18,3.1.9,3.2.10] allows SQL injection2019-07-23T14:28:17ZLeonardo Arena[v2.3] Vulnerability in rails < [3.0.18,3.1.9,3.2.10] allows SQL injectionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6496
https://bugzilla.redhat.com/show\_bug.cgi?id=889649
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=672189
*(from redmine: issue id 1572, created on 2013...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6496
https://bugzilla.redhat.com/show\_bug.cgi?id=889649
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=672189
*(from redmine: issue id 1572, created on 2013-01-17, closed on 2013-01-18)*
* Changesets:
* Revision 5c0165ecba49a95be1fe22d960bcea4557352cdb by Natanael Copa on 2013-01-18T09:44:31Z:
```
main/ruby-activerecord: security upgrade to 2.3.15 (CVE-2012-6496)
fixes #1572
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1568[v2.3] Multiple vulnerabilities in asterisk < [1.8.19.1|10.11.1] allow remote...2019-07-23T14:28:21ZLeonardo Arena[v2.3] Multiple vulnerabilities in asterisk < [1.8.19.1|10.11.1] allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5976
Solution:
\- Upgrade to 10.11.1 (2.4), 1.18.19.1 (2.3, 2.2)
*(from redmine: issue id 1568, created on 2013-01-17, closed on 2013-01-18)*
* Changesets:
* Revision fc7abae7...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5976
Solution:
\- Upgrade to 10.11.1 (2.4), 1.18.19.1 (2.3, 2.2)
*(from redmine: issue id 1568, created on 2013-01-17, closed on 2013-01-18)*
* Changesets:
* Revision fc7abae786417ca037a0cf24018000656d27aa74 by Natanael Copa on 2013-01-18T09:55:36Z:
```
main/asterisk: security upgrade to 1.8.19.1 (CVE-2012-5976,CVE-2012-5977)
fixes #1568
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1565[v2.3] Vulnerability in ghostscript <= 9.06 allows remote code execution2019-07-23T14:28:24ZLeonardo Arena[v2.3] Vulnerability in ghostscript <= 9.06 allows remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4405
https://bugzilla.redhat.com/show\_bug.cgi?id=854227
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=609986
*(from redmine: issue id 1565, created on 2013...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4405
https://bugzilla.redhat.com/show\_bug.cgi?id=854227
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=609986
*(from redmine: issue id 1565, created on 2013-01-17, closed on 2013-01-18)*
* Changesets:
* Revision e5a0173efa2f67b5f4a11490312e6cef5541a0fb by Natanael Copa on 2013-01-18T09:42:51Z:
```
main/ghostscript: upgrade to 9.06 and fix CVE-2012-4405
fixes #1565
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1560[v2.3] Vulnerability in tiff < 4.0.3 may allow remote code execution2019-07-23T14:28:29ZLeonardo Arena[v2.3] Vulnerability in tiff < 4.0.3 may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5581
https://bugzilla.redhat.com/show\_bug.cgi?id=867235
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=640578
*(from redmine: issue id 1560, created on 2013...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5581
https://bugzilla.redhat.com/show\_bug.cgi?id=867235
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=640578
*(from redmine: issue id 1560, created on 2013-01-17, closed on 2013-01-18)*
* Changesets:
* Revision 46d7133ffe4b7a2b9e425f5e40e745d19b4f7cd1 by Natanael Copa on 2013-01-17T16:28:31Z:
```
main/tiff: fix CVE-2012-5581
fixes #1560
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1554[v2.3] Multiple vulnerabilities in Xen 4.1/4.2 allow remote denial of service2019-07-23T14:28:36ZLeonardo Arena[v2.3] Multiple vulnerabilities in Xen 4.1/4.2 allow remote denial of serviceI’m reporting here a several Xen SAs. They are just too many to be
reported one by one, and I’m not sure if they have been fixed yet or
not. I could not find any reference to CVEs or XSA numbers in the commit
messages.
Thanks!
cVE-2012...I’m reporting here a several Xen SAs. They are just too many to be
reported one by one, and I’m not sure if they have been fixed yet or
not. I could not find any reference to CVEs or XSA numbers in the commit
messages.
Thanks!
cVE-2012-4535 (XSA 20): Timer overflow DoS vulnerability
A guest which sets a VCPU with an inappropriate deadline can cause an
infinite loop in Xen, blocking the affected physical CPU indefinitely.
CVE-2012-4537 (XSA 22): Memory mapping failure DoS vulnerability
When set\_p2m\_entry fails, Xen’s internal data structures (the p2m and
m2p
tables) can get out of sync. This failure can be triggered by unusual
guest
behaviour exhausting the memory reserved for the p2m table. If it
happens,
subsequent guest-invoked memory operations can cause Xen to fail an
assertion
and crash.
CVE-2012-4538 (XSA 23): Unhooking empty PAE entries DoS vulnerability
The HVMOP\_pagetable\_dying hypercall does not correctly check the
caller’s pagetable state, leading to a hypervisor crash.
CVE-2012-4539 (XSA 24): Grant table hypercall infinite loop DoS
vulnerability
Due to inappropriate duplicate use of the same loop control variable,
passing bad arguments to GNTTABOP\_get\_status\_frames can cause an
infinite loop in the compat hypercall handler.
CVE-2012-5510 (XSA 26): Grant table version switch list corruption
vulnerability
Downgrading the grant table version of a guest involves freeing its
status
pages. This freeing was incomplete - the page(s) are freed back to the
allocator, but not removed from the domain’s tracking list. This would
cause
list corruption, eventually leading to a hypervisor crash.
CVE-2012-5513 (XSA 29): XENMEM\_exchange may overwrite hypervisor memory
The handler for XENMEM\_exchange accesses guest memory without range
checking
the guest provided addresses, thus allowing these accesses to include
the
hypervisor reserved range.
.
A malicious guest administrator can cause Xen to crash. If the out of
address
space bounds access does not lead to a crash, a carefully crafted
privilege
escalation cannot be excluded, even though the guest doesn’t itself
control
the values written.
*(from redmine: issue id 1554, created on 2013-01-17, closed on 2013-01-17)*
* Relations:
* relates #1555Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1550[v2.3] Vulnerability in xen 4.1/4.2 may allow remote denial of service2019-07-23T14:28:41ZLeonardo Arena[v2.3] Vulnerability in xen 4.1/4.2 may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5514
http://www.openwall.com/lists/oss-security/2012/12/03/12
Is this already applied? I could not find any reference in commits to
this CVE or XSA.
Thanks!
*(from redmine: iss...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5514
http://www.openwall.com/lists/oss-security/2012/12/03/12
Is this already applied? I could not find any reference in commits to
this CVE or XSA.
Thanks!
*(from redmine: issue id 1550, created on 2013-01-17, closed on 2013-01-17)*Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1546[v2.3] Vulnerability in xen 4.2/4.1 may allow remote denial of service2019-07-23T14:28:45ZLeonardo Arena[v2.3] Vulnerability in xen 4.2/4.1 may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5515
http://lists.xen.org/archives/html/xen-announce/2012-12/msg00001.html
Is this already applied? I could not find any reference in commits to
this CVE or XSA.
Thanks!
*(from...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5515
http://lists.xen.org/archives/html/xen-announce/2012-12/msg00001.html
Is this already applied? I could not find any reference in commits to
this CVE or XSA.
Thanks!
*(from redmine: issue id 1546, created on 2013-01-17, closed on 2013-01-17)*Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1544[v2.3] Vulnerability in ruby < 1.8.7-p357 allows remote denial of service2019-07-23T14:28:46ZLeonardo Arena[v2.3] Vulnerability in ruby < 1.8.7-p357 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4815
http://www.ruby-lang.org/en/news/2011/12/28/denial-of-service-attack-was-found-for-rubys-hash-algorithm-cve-2011-4815/
Solution:
\- Upgrade to 1.8.7-p357 (2.4, 2.3, 2.2)
*...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4815
http://www.ruby-lang.org/en/news/2011/12/28/denial-of-service-attack-was-found-for-rubys-hash-algorithm-cve-2011-4815/
Solution:
\- Upgrade to 1.8.7-p357 (2.4, 2.3, 2.2)
*(from redmine: issue id 1544, created on 2013-01-17, closed on 2013-01-18)*
* Changesets:
* Revision 99662c2c900022a7c8f602278d10dac9282b8dc7 by Natanael Copa on 2013-01-17T15:12:42Z:
```
main/ruby: security upgrade to 1.8.7_p357 (CVE-2011-4815)
fixes #1544
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1521[v2.3] Vulnerability in bind < 9.9.1-P4,9.8.3-P4 allows remote denial of service2019-07-23T14:29:02ZLeonardo Arena[v2.3] Vulnerability in bind < 9.9.1-P4,9.8.3-P4 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5166
Solution:
\- Upgrade to 9.9.1-P4 (2.4)
- Upgrade to 9.8.3-P4 (2.3/2.2)
*(from redmine: issue id 1521, created on 2012-12-05, closed on 2012-12-17)*
* Changesets:
* Revi...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5166
Solution:
\- Upgrade to 9.9.1-P4 (2.4)
- Upgrade to 9.8.3-P4 (2.3/2.2)
*(from redmine: issue id 1521, created on 2012-12-05, closed on 2012-12-17)*
* Changesets:
* Revision c2bb0a793c999d482e8be33cc3eab8ed16eeb03e by Natanael Copa on 2012-12-07T09:50:12Z:
```
main/bind: security upgrade to 9.8.4_p1 (CVE-2012-5166)
fixes #1521
```Alpine 2.3.7