| bind-9.8.2-0.68.rc1.an2.1.src
[8.5 MiB] |
Changelog
by Petr Menšík (2018-08-09):
- Fix CVE-2018-5740
|
| bind-9.8.2-0.68.rc1.an2.src
[8.5 MiB] |
Changelog
by Petr Menšík (2018-01-16):
- Fix CVE-2017-3145
|
| bind-9.8.2-0.62.rc1.an2.5.src
[8.5 MiB] |
Changelog
by Petr Menšík (2018-01-17):
- Fix CVE-2017-3145
|
| bind-9.8.2-0.62.rc1.an2.4.src
[8.5 MiB] |
Changelog
by Petr Menšík (2017-06-29):
- Fix CVE-2017-3142 and CVE-2017-3143
|
| bind-9.8.2-0.62.rc1.an2.2.src
[8.5 MiB] |
Changelog
by Petr Menšík (2017-05-03):
- Fix DNSKEY that encountered a CNAME (#1447869, ISC change 3391)
|
| bind-9.8.2-0.62.rc1.an2.1.src
[8.5 MiB] |
Changelog
by Petr Menšík (2017-04-18):
- Fix CVE-2017-3136 (ISC change 4575)
- Fix CVE-2017-3137 (ISC change 4578)
|
| bind-9.8.2-0.62.rc1.an2.src
[8.5 MiB] |
Changelog
by Petr Menšík (2017-02-08):
- Fix and test caching CNAME before DNAME (ISC change 4558)
|
| bind-9.8.2-0.47.rc1.an2.4.src
[8.5 MiB] |
Changelog
by Petr Menšík (2017-01-10):
- Fix CVE-2016-9147 (ISC change 4510)
- Fix regression introduced by CVE-2016-8864 (ISC change 4530)
|
| bind-9.8.2-0.47.rc1.an2.3.src
[8.5 MiB] |
Changelog
by Tomas Hozza (2016-10-31):
- Fix CVE-2016-8864
A denial of service flaw was found in the way BIND handled responses
containing a DNAME answer. A remote attacker could use this flaw to make
named exit unexpectedly with an assertion failure via a specially crafted
DNS response.
|
| bind-9.8.2-0.47.rc1.an2.2.src
[8.5 MiB] |
Changelog
by Tomas Hozza (2016-10-17):
- Fix CVE-2016-2848
allows remote attackers to cause a denial of service (assertion failure and
daemon exit) via malformed options data in an OPT resource record.
|
| bind-9.8.2-0.47.rc1.an2.1.src
[8.5 MiB] |
Changelog
by Tomas Hozza (2016-09-23):
- Fix CVE-2016-2776
|
| bind-9.8.2-0.42.rc1.an2.src
[8.5 MiB] |
Changelog
by Tomas Hozza (2016-03-09):
- security issues
. Fix CVE-2016-1285
named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
remote attackers to cause a denial of service (assertion failure and daemon
exit) via a malformed packet to the rndc (aka control channel) interface,
related to alist.c and sexpr.c.
. Fix CVE-2016-1286
named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
remote attackers to cause a denial of service (assertion failure and daemon
exit) via a crafted signature record for a DNAME record, related to db.c and
resolver.c.
|
| bind-9.8.2-0.37.rc1.an2.7.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2016-03-09):
- security issues
. Fix CVE-2016-1285
named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
remote attackers to cause a denial of service (assertion failure and daemon
exit) via a malformed packet to the rndc (aka control channel) interface,
related to alist.c and sexpr.c.
. Fix CVE-2016-1286
named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
remote attackers to cause a denial of service (assertion failure and daemon
exit) via a crafted signature record for a DNAME record, related to db.c and
resolver.c.
|
| bind-9.8.2-0.37.rc1.an2.6.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2016-01-18):
- security issues
. Fix CVE-2015-8704
apl_42.c in ISC BIND 9.x before 9.9.8-P3 and 9.9.x and 9.10.x before
9.10.3-P3 allows remote authenticated users to cause a denial of service
(INSIST assertion failure and daemon exit) via a malformed Address Prefix
List (APL) record.
|
| bind-9.8.2-0.37.rc1.an2.5.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2015-12-14):
- security issues
. Fix CVE-2015-8000
A denial of service flaw was found in the way BIND processed certain
records with malformed class attributes. A remote attacker could use this
flaw to send a query to request a cached record with a malformed class
attribute that would cause named functioning as an authoritative or
recursive server to crash.
|
| bind-9.8.2-0.37.rc1.an2.4.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2015-09-02):
- security issues
. Fix CVE-2015-5722
A flaw was found in the way BIND handled requests for TKEY DNS resource
records. A remote attacker could use this flaw to make named (functioning
as an authoritative DNS server or a DNS resolver) exit unexpectedly with
an assertion failure via a specially crafted DNS request packet.
- Apply previously not applied patch for CVE-2015-5722
|
| bind-9.8.2-0.37.rc1.an2.2.src
[8.4 MiB] |
Changelog
by Florian Weimer (2015-07-27):
- security issues
. Fix CVE-2015-5477
named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows
remote attackers to cause a denial of service (REQUIRE assertion failure
and daemon exit) via TKEY queries.
|
| bind-9.8.2-0.37.rc1.an2.1.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2015-07-09):
- security issues
. Fix CVE-2015-4620
name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x
before 9.10.2-P2, when configured as a recursive resolver with DNSSEC
validation, allows remote attackers to cause a denial of service (REQUIRE
assertion failure and daemon exit) by constructing crafted zone data and
then making a query for a name in that zone.
|
| bind-9.8.2-0.30.rc1.an2.4.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2015-05-11):
- DNS resolution failure in high load environment with SERVFAIL and "out of memory/success" in the log (#1220366)
|
| bind-9.8.2-0.30.rc1.an2.3.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2015-03-02):
- security issues
. CVE-2015-1349
named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before
9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled,
allows remote attackers to cause a denial of service (assertion failure and
daemon exit, or daemon crash) by triggering an incorrect trust-anchor
management scenario in which no key is ready for use.
|
| bind-9.8.2-0.30.rc1.an2.2.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2014-12-09):
- security issues
. CVE-2014-8500 (#1171973)
ISC BIND 9.0.x through 9.8.x, 9.9.0 through 9.9.6, and 9.10.0 through
9.10.1 does not limit delegation chaining, which allows remote attackers
to cause a denial of service (memory consumption and named crash) via a
large or infinite number of referrals.
|
| bind-9.8.2-0.30.rc1.an2.1.src
[8.4 MiB] |
Changelog
by JoungKyun.Kim (2014-10-27):
- add geodns patch
GEOIP_NOCHK="no" in /etc/sysconfig/named
https://code.google.com/p/bind-geoip/wiki/UsageGuide
|
| bind-9.8.2-0.30.rc1.an2.src
[8.4 MiB] |
Changelog
by JoungKyun.Kim (2014-10-20):
- rebuild for AnNyung 2.4
- https://rhn.redhat.com/errata/RHBA-2014-1373.html
|
| bind-9.8.2-0.23.rc1.an2.1.src
[8.4 MiB] |
Changelog
by JoungKyun.Kim (2014-01-21):
- Refix gssapictx memory leak (#911167)
- security issues
. CVE-2014-0591 named crash when handling malformed NSEC3-signed zones
|
| bind-9.8.2-0.17.rc1.an2.6.src
[8.4 MiB] |
Changelog
by Tomas Hozza (2013-08-14):
- Fix gssapictx memory leak (#996955)
|
| bind-9.8.2-0.17.rc1.an2.5.src
[8.4 MiB] |
Changelog
by JoungKyun.Kim (2013-07-28):
- security issues
. CVE-2013-4854 crash with an assertion failure on parsing malformed rdata
|
| bind-9.8.2-0.17.rc1.an2.4.src
[8.4 MiB] |
Changelog
by JoungKyun.Kim (2013-04-18):
- ship dns/rrl.h in -devel subpkg
- security issues
. CVE-2013-2266 libdns regular expressions excessive resource consumption DoS
|
| bind-9.8.2-0.17.rc1.an2.3.src
[8.4 MiB] |
Changelog
by JoungKyun.Kim (2013-03-11):
- add response rate limit patch (#873624)
- remove one bogus file from /usr/share/doc, introduced by RRL patch
- security issues
. CVE-2012-5689
denial of service when processing queries and with both DNS64 and RPZ enabled
|
| bind-9.8.2-0.10.rc1.an2.6.src
[8.4 MiB] |
Changelog
by JoungKyun.Kim (2012-12-12):
- repackaging only chroot mode
|
| bind-9.8.2-0.10.rc1.an2.5.src
[8.3 MiB] |
Changelog
by JoungKyun.Kim (2012-10-16):
- repackaging only chroot mode
|
| bind-9.8.2-0.10.rc1.an2.3.src
[8.3 MiB] |
Changelog
by JoungKyun.Kim (2012-09-15):
- repackaging only chroot mode
|
| bind-9.8.2-0.10.rc1.an2.2.src
[8.3 MiB] |
Changelog
by JoungKyun.Kim (2012-08-07):
- repackaging only chroot mode
|
| bind-9.7.3-8.P3.an2.3.src
[7.3 MiB] |
Changelog
by JoungKyun.Kim (2012-06-08):
- fix CVE-2012-1667 and CVE-2012-1033
|
| bind-9.7.3-8.P3.an2.1.src
[7.3 MiB] |
Changelog
by JoungKyun.Kim (2012-01-08):
- rebuild based on RHEL 6.2 32:9.7.3-8.P3.1
- applied on chroot
- support idn on named.conf and zone files
- support multi cname
|