projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2a1c0e1) | patch
bind: bump to 9.17.12
authorNoah Meyerhans <frodo@morgul.net>
Thu, 29 Apr 2021 16:05:26 +0000 (09:05 -0700)
committerJosef Schlehofer <pepe.schlehofer@gmail.com>
Fri, 7 May 2021 23:05:42 +0000 (01:05 +0200)
commit1b6abeb46f1f8fe9a5864722fef8c52a0fe492b1
treedddc51352814243c98008cd7e879f1c9d2ce7635tree | snapshot
parent2a1c0e11d40d89367a6520fed7d1dc462ef8faf4commit | diff
bind: bump to 9.17.12

Fixes the following security issues:

* CVE-2021-25215 - named crashed when a DNAME record placed in the ANSWER
                   section during DNAME chasing turned out to be the final
                   answer to a client query.
* CVE-2021-25214 - Insufficient IXFR checks could result in named serving a
                   zone without an SOA record at the apex, leading to a
                   RUNTIME_CHECK assertion failure when the zone was
                   subsequently refreshed. This has been fixed by adding an
                   owner name check for all SOA records which are included
                   in a zone transfer.

Signed-off-by: Noah Meyerhans <frodo@morgul.net>
(cherry picked from commit ccb1e8923e6e0269e2443c37362b2b27c121d956)
net/bind/Makefile diff | blob | history
net/bind/patches/010-openssl-deprecated.patch [deleted file] blob | history
Mirror of packages feed