Evan Hunt
cd79df85a2
added querytrace documentation in README
...
also rearranged things a little, adding a "dependencies" section
(cherry picked from commit 51048ca06e87b0098b4e
2019-01-29 14:25:32 -08:00
Evan Hunt
2d7235e1f1
warn, rather than failing, if kyua is not present
...
(cherry picked from commit 6cfb2249e1
2018-11-16 12:42:39 -08:00
Ondřej Surý
bf23e17e7c
Remove the traces of ATF from documentation
...
(cherry picked from commit fa33b4ee23
2018-11-16 09:17:59 -08:00
Tinderbox User
186cf94c9a
prep 9.11.5rc1
2018-09-29 03:57:26 +00:00
Evan Hunt
a4717005b1
9.11.4 was incorrectly referred to as 9.11.3
2018-07-02 17:14:25 -07:00
Evan Hunt
a1690b24bc
prepare 9.11.4rc1
2018-06-21 18:54:43 +02:00
Ondřej Surý
b02bf3b8a2
Update documentation to remove obsolete bind9-bugs@isc.org email address
...
(cherry picked from commit efc9bc5d8d486e79050f
2018-03-08 10:40:12 -08:00
Evan Hunt
06908ef2df
[v9_11] add missing release note, update README
2018-02-17 20:01:17 -08:00
Evan Hunt
ad309e8dfa
[v9_11] prep 9.11.3b1
2018-01-24 10:21:04 -08:00
Tinderbox User
06dca180fb
regen v9_11
2017-12-21 01:23:49 +00:00
Tinderbox User
350e5eecad
regen v9_11
2017-12-16 01:27:21 +00:00
Evan Hunt
e609b6b32b
[v9_11] README and relnote fixes
...
(cherry picked from commit 30419509dd
2017-10-17 13:50:49 -07:00
Evan Hunt
4100890e5a
[v9_11] specify correct license
2017-09-19 12:59:26 -07:00
Evan Hunt
a03f4b1ea4
[v9_11] address TSIG bypass/forgery vulnerabilities
...
4643. [security] An error in TSIG handling could permit unauthorized
zone transfers or zone updates. (CVE-2017-3142)
(CVE-2017-3143) [RT #45383 ]
(cherry picked from commit 581c1526ab
2017-06-27 11:39:33 -07:00
Evan Hunt
c28e44f3f8
[v9_11] quote service registry paths
...
4532. [security] The BIND installer on Windows used an unquoted
service path, which can enable privilege escalation.
(CVE-2017-3141) [RT #45229 ]
(cherry picked from commit 967a3b9419
2017-05-30 13:38:22 -07:00
Evan Hunt
3440cf9c60
[v9_11] fix rpz formerr loop
...
4531. [security] Some RPZ configurations could go into an infinite
query loop when encountering responses with TTL=0.
(CVE-2017-3140) [RT #45181 ]
2017-05-30 12:35:06 -07:00
Evan Hunt
59663800d2
[v9_11] change markdown comment style for pandoc
2017-04-27 23:44:00 -07:00
Tinderbox User
0fc4b96b2b
regen v9_11
2017-04-26 23:29:27 +00:00
Tinderbox User
b06265857b
regen v9_11
2017-04-25 01:10:35 +00:00
Evan Hunt
0d24df5c0b
[v9_11] allow parallel make
...
4609. [cleanup] Rearrange makefiles to enable parallel execution
(i.e. "make -j"). [RT #45078 ]
2017-04-23 23:04:34 -07:00
Tinderbox User
164ade1482
regen v9_11
2017-04-23 01:10:00 +00:00
Evan Hunt
0d7548ee34
[v9_11] update README, remove FAQ
...
4593. [doc] Update README using markdown, remove outdated FAQ
file in favor of the knowledge base.
2017-04-20 19:30:41 -07:00
Evan Hunt
d15af1c3c2
[v9_11] README was missing CVE-2016-9444
2017-04-17 21:05:47 -07:00
Evan Hunt
62b5dd5b09
[v9_11] prep 9.11.1
2017-04-13 20:41:42 -07:00
Evan Hunt
cf710c81ae
[v9_11] document that delv should be used instead of sigchase
...
(cherry picked from commit db93f3d4b3
2017-03-25 12:23:14 -07:00
Evan Hunt
559cbe04e7
[v9_11] remove unnecessary INSIST and prep 9.11.1rc2
...
4578. [security] Some chaining (CNAME or DNAME) responses to upstream
queries could trigger assertion failures.
(CVE-2017-3137) [RT #44734 ]
(cherry picked from commit a1365a0042
2017-02-23 14:55:10 -08:00
Mark Andrews
6ef61e7645
9.11.1
2017-02-16 12:27:40 +11:00
Evan Hunt
43769594c0
[v9_11] prep 9.11.1rc1
2017-02-04 22:30:16 -08:00
Evan Hunt
971d346eae
[v9_11] README
2016-12-28 20:39:00 -08:00
Mark Andrews
b243aa40f9
4508. [security] Named incorrectly tried to cache TKEY records which
...
could trigger a assertion failure when there was
a class mismatch. (CVE-2016-9131) [RT #43522 ]
(cherry picked from commit 2c1c4b99a1
2016-12-29 11:17:14 +11:00
Mark Andrews
76af83c9ad
4497. [port] Add support for OpenSSL 1.1.0. [RT #41284 ]
...
(cherry picked from commit 1fce0951ed
2016-10-31 10:05:55 +11:00
Mark Andrews
97222baa4e
add CVE-2016-2776
...
(cherry picked from commit 1090e198c4
2016-09-09 11:39:47 +10:00
Evan Hunt
756b54c8ff
[v9_11] add missing release notes and fix other doc nits
...
(cherry picked from commit 864dc79dce
2016-08-24 16:25:51 -07:00
Mark Andrews
b740318a42
add CVE-2016-2775
...
(cherry picked from commit 909d442cc0
2016-07-12 01:09:37 +10:00
Evan Hunt
d977bc3504
[master] reorder README, add catalog zones and minimal-any
2016-05-31 15:10:35 -07:00
Mark Andrews
704e905831
document python requirements
2016-05-26 15:38:32 +10:00
Mark Andrews
47d19078de
note RNDC module
2016-05-24 10:47:58 +10:00
Mark Andrews
889a2f078e
move 9.10.0 to HISTORY
2016-05-24 10:20:36 +10:00
Evan Hunt
aa5506eda8
[master] update README
2016-04-28 00:29:25 -07:00
Jeremy C. Reed
5816d36671
minor grammar
2016-03-15 07:52:16 -04:00
Mark Andrews
7ffbf189be
s/grand/grant/
2016-03-15 12:35:37 +11:00
Evan Hunt
1a849dab19
[master] add missing functional changes to README
2016-03-14 18:00:15 -07:00
Mark Andrews
3d8078255f
document --with-zlib
2016-03-10 16:38:14 +11:00
Mark Andrews
d9ec4ca4b6
add CVE-2016-2088
2016-02-27 13:24:56 +11:00
Evan Hunt
5828f08714
[master] add [performance]
2016-02-01 09:52:06 -08:00
Mark Andrews
77daae1a07
add CVE-2015-8000
2015-11-17 15:29:10 +11:00
Evan Hunt
b66b333f59
[master] dnstap
...
4235. [func] Added support in named for "dnstap", a fast method of
capturing and logging DNS traffic, and a new command
"dnstap-read" to read a dnstap log file. Use
"configure --enable-dnstap" to enable this
feature (note that this requires libprotobuf-c
and libfstrm). See the ARM for configuration details.
Thanks to Robert Edmonds of Farsight Security.
[RT #40211 ]
2015-10-02 12:32:42 -07:00
Evan Hunt
afc3103851
[master] add CVE number
2015-08-13 15:30:49 -07:00
Evan Hunt
ce9f893e21
[master] address buffer accounting error
...
4168. [security] A buffer accounting error could trigger an
assertion failure when parsing certain malformed
DNSSEC keys. (CVE-2015-5722) [RT #40212 ]
2015-08-07 13:16:10 -07:00
Evan Hunt
53b5a0377d
[master] add fetchlimit to README
2015-08-03 12:48:05 -07:00
