Hello,

I have a RedHat machine (version 5.11) and i need to install BIND version version 9.9.7-P2 in order to fix a known BIND vulnerability CVE-2015-5477.

I downloaded the tar file from isc website but i am having trouble to install the file.

Does anybody knows a link for the rpm package of this version? i cannot find the rpm and it would be much easier to update it this way.



Thank you

If you installed bind from RedHat: https://access.redhat.com/security/cve/CVE-2015-5477
If you installed bind from source, you're on your own

yes thats why i need a link for the rpm. cause the bind package that i use is not from RedHat.
i know that i cannot use RedHat package. i downloaded the package from isc but they dont have the rpm there.

Was fixed `Jul 27 2015' : See `changelog' in the file bind.spec,
from bind-9.3.6-25.P1.el5_11.4.src.rpm
ftp://ftp.redhat.com/redhat/linux/en...r/en/os/SRPMS/
>> ftp://ftp.redhat.com/redhat/linux/en...5_11.4.src.rpm

>>>

this is the RedHat fix for bind. i cannot use this package because the one that i have installed on my machine is not a RedHat shipping.

Redhat Machine with a bind package not from Redhat... let's see...
tar.gz from http://www.isc.org/downloads/

Re #5.

? Which bind version have you got now ?
Please show the output from rpm -qi bind

? Where did you get bind-9.0.7-P2 ? A link, please.


P.S. : The bugfix version bind-9.9.7-P3 compiles OK, CentOS 5.11 .
https://www.isc.org/downloads/file/b...version=tar-gz


-

1 members found this post helpful.

Your goal may be to fix a CVE but your question isn't about security aspects but installing a RPM package or compiling ISC BIND on RHEL 5.11. So I moved your thread to the proper forum (Red Hat) so it gets the attention it deserves.
*Also please reply to above questions, post solution when done and mark thread "solved"|, thanks in advance.

@habitual: yes this is the link where i downloaded my package. however as i mentioned before this is not an rpm thus i need to build bind.
@knudfl: i downloaded 9.9.7-P2 from isc download page. hmm did you tried that command and worked for you? i will give it a try and let you know about that.
thank you guys for your response.

Re #9.
See post #7 :
"... bind-9.9.7-P3 compiles OK, CentOS 5.11" :
Means that it was tested OK with :
$ ./configure --prefix=/usr --with-libtool --localstatedir=/var --enable-threads --with-pic && make


? So you actually don't know the link ?
""A link, please."" :
Means you must copy the link adress, and post the link in a new post here.


-

they have removed the package now. they replaced it with version 9.9.7-P3. i guess that probably they make a fix on 9.9.7-P2 and replaced it with a newer version.
anyway i downloaded version 9.9.7-P3 and tried the command
but now the service cannot start.
here is the output of command that you requested before:
Name : bind Relocations: (not relocatable)
Version : 9.7.4 Vendor: (none)
Release : 1.P1.el5 Build Date: Thu 17 Nov 2011 02:24:34 PM EET
Install Date: Thu 03 Nov 2011 07:18:38 PM EET Build Host: localhost.localdomain
Group : System Environment/Daemons Source RPM: bind-9.7.4-1.P1.el5.src.rpm
Size : 7395891 License: ISC
Signature : (none)
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server.

Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly


i think i will just uninstall bind and install the RedHat version.