Why is my BIND version 9.3.6 on CentOS 5.5 when 9.7.3 is out?

I have a couple bind servers running CentOS 5.5 and running BIND which is version 9.3.6-P1-RedHat-9.3.6-4.P1.el5_5.3. I just read about the newest BIND vulnterability and it says to upgrade to 9.7.3. When I do a "yum check-upgrade" there are no BIND updates.

I know distros provide what they feel is the stable release of applications. What I would like to know is why my BIND is so far behind and how (or if) I should upgrade to resolve the security issue.
LVL 10
ThorinOAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
ThorinOAuthor Commented:
Makes sense, so at some point I would hope to see a BIND update that would be the same upstream version but maybe have a higher number suffix on the package? It was just announced this morning so I don't expect to see an update yet but at some point soon I would I think.
0
 
Jan SpringerConnect With a Mentor Commented:
CentOS is the freely available RHEL.  Both distributions update/patch existing releases rather than provide a new release of a package.  Later releases are distributed with later versions of the OS.

I know that the bind updates for RHEL were available last week and I'm surprised to still see nothing out for CentOS.
0
 
savoneConnect With a Mentor Commented:
@ThorinO

This statement is correct "Makes sense, so at some point I would hope to see a BIND update that would be the same upstream version but maybe have a higher number suffix on the package"

They (the CentOS org) will use redhats backport so the actual version number will not change.  They are pretty good so I would say you will see some updates soon.

0
All Courses

From novice to tech pro — start learning today.