projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: eeb1e0f) | patch
bind: bump to 9.18.19
authorNoah Meyerhans <frodo@morgul.net>
Wed, 27 Sep 2023 17:42:59 +0000 (10:42 -0700)
committerNoah Meyerhans <frodo@morgul.net>
Wed, 27 Sep 2023 23:00:56 +0000 (16:00 -0700)
commit835b1051511b592d69bc0b8a7d5d993337f890da
treed38531a33aee3145f5985cdefd2adc406d3de9bbtree | snapshot
parenteeb1e0f057ea9463a99aa3f49cbd64ce69906713commit | diff
bind: bump to 9.18.19

Fixes CVEs:

CVE-2023-3341 - Previously, sending a specially crafted message over the
control channel could cause the packet-parsing code to run out of available
stack memory, causing named to terminate unexpectedly.

CVE-2023-4236 - A flaw in the networking code handling DNS-over-TLS queries
could cause named to terminate unexpectedly due to an assertion failure under
significant DNS-over-TLS query load.

Signed-off-by: Noah Meyerhans <frodo@morgul.net>
net/bind/Makefile diff | blob | history
Mirror of packages feed