oss-sec mailing list archives
Re: Multiple BIND vulnerabilities disclosed (CVE-2018-5743, CVE-2019-6467, and CVE-2019-6468)
From: andreas () rammhold de
Date: Sat, 27 Apr 2019 18:38:28 +0200
On 12:13 25.04.19, Peter Korsgaard wrote:
It is a bit unfortunate that these security fixes now use isc_atomic_xadd() which are not available on all architectures: .libs/client.o: In function `mark_tcp_active': client.c:(.text+0xc7c): undefined reference to `isc_atomic_xadd' client.c:(.text+0xca0): undefined reference to `isc_atomic_xadd' .libs/client.o: In function `client_accept': client.c:(.text+0x2210): undefined reference to `isc_atomic_xadd' client.c:(.text+0x230c): undefined reference to `isc_atomic_xadd' .libs/client.o: In function `exit_check': client.c:(.text+0x2958): undefined reference to `isc_atomic_xadd' .libs/client.o:client.c:(.text+0x5cb4): more undefined references to `isc_atomic_xadd' follow collect2: error: ld returned 1 exit status
There is a commit [1] on ISCs GitLab that removes the atomic operations in favor of refcounting and thus fixes the aarch64 (and other archs?) build error. I applied that commit for NixOS. Looks good so far [2]. cheers, andi- [1] https://gitlab.isc.org/isc-projects/bind9/commit/d72f436b7d7c697b262968c48c2d7643069ab17f [2] https://github.com/NixOS/nixpkgs/pull/60330/checks
Attachment:
signature.asc
Description:
Current thread:
- Multiple BIND vulnerabilities disclosed (CVE-2018-5743, CVE-2019-6467, and CVE-2019-6468) Michael McNally (Apr 24)
- Re: Multiple BIND vulnerabilities disclosed (CVE-2018-5743, CVE-2019-6467, and CVE-2019-6468) Peter Korsgaard (Apr 25)
- Re: Multiple BIND vulnerabilities disclosed (CVE-2018-5743, CVE-2019-6467, and CVE-2019-6468) andreas (Apr 27)
- Re: Multiple BIND vulnerabilities disclosed (CVE-2018-5743, CVE-2019-6467, and CVE-2019-6468) Peter Korsgaard (Apr 25)