From f33b07e7289a938249658a099c72b92a41bb0b9a Mon Sep 17 00:00:00 2001 From: Martin Weinelt Date: Fri, 20 May 2022 01:19:21 +0200 Subject: [PATCH] bind: 9.18.1 -> 9.18.3 > An assertion failure can be triggered if a TLS connection to a > configured http TLS listener with a defined endpoint is destroyed too > early. https://kb.isc.org/v1/docs/cve-2022-1183 Fixes: CVE-2022-1183 --- pkgs/servers/dns/bind/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/servers/dns/bind/default.nix b/pkgs/servers/dns/bind/default.nix index 435e3ae45fb..7b56061a4aa 100644 --- a/pkgs/servers/dns/bind/default.nix +++ b/pkgs/servers/dns/bind/default.nix @@ -9,11 +9,11 @@ stdenv.mkDerivation rec { pname = "bind"; - version = "9.18.1"; + version = "9.18.3"; src = fetchurl { url = "https://downloads.isc.org/isc/bind9/${version}/${pname}-${version}.tar.xz"; - sha256 = "sha256-V8ev2HFpTWFctN77HBvW7QIzUJQ9dFhBTbjUk+9WBCc="; + sha256 = "sha256-CtjadzvZPLoO9mzIGZlpjr35w+UfrtXlyMHrdcrSrm8="; }; outputs = [ "out" "lib" "dev" "man" "dnsutils" "host" ];