Mark Andrews
51fe40fd59
4504. [security] Allow the maximum number of records in a zone to
...
be specified. This provides a control for issues
raised in CVE-2016-6170. [RT #42143 ]
(cherry picked from commit 5f8412a4cb
2016-11-03 10:46:37 +11:00
Mark Andrews
fa1f25ce83
add CVE-2016-2776
2016-09-09 11:53:18 +10:00
Mark Andrews
00e7b6dcca
grammar
...
(cherry picked from commit 8f7881684b
2016-07-14 09:43:04 +10:00
Mark Andrews
e0f5ce3bad
add [RT #42694 ]
2016-07-13 11:36:13 +10:00
Mark Andrews
eca42d74ef
whitespace
2016-07-13 11:25:32 +10:00
Mark Andrews
d05f0b2479
add CVE-2016-2775
2016-07-12 01:19:20 +10:00
Mark Andrews
8491339284
add note for rt42694
...
(cherry picked from commit aacf0753e9
2016-07-07 13:55:57 +10:00
Evan Hunt
08da9c0bc0
[v9_9] spelling
2016-05-25 18:45:49 -07:00
Evan Hunt
767c85f45a
[v9_9] extend release notes
2016-05-25 18:43:56 -07:00
Evan Hunt
d5ebc757a6
[v9_9] log message when using ISC DLV
...
4352. [cleanup] The ISC DNSSEC Lookaside Validation (DLV) service
is scheduled to be disabled in 2017. A warning is
now logged when named is configured to use it,
either explicitly or via "dnssec-lookaside auto;"
[RT #42207 ]
2016-05-04 14:40:17 -07:00
Tinderbox User
046e66c891
update copyright notice / whitespace
2016-03-30 23:45:53 +00:00
Jeremy C. Reed
a2f067c7b5
[v9_9] some release notes updates
...
mention that the document summarizes "significant" changes
since obviously it misses a lot.
Also refer to the CHANGES file.
Added a few bugs. Wording some discussed via email, phone call, and jabber.
2016-03-30 13:36:55 -04:00
Evan Hunt
7d5c94236b
[v9_9] more release note corrections
2016-03-24 16:40:54 -07:00
Evan Hunt
7e76a21929
[v9_9] fixes for release notes
2016-03-24 14:43:05 -07:00
Mark Andrews
ef0a86dfad
note rrsig regeneration
...
(cherry picked from commit 98c5690bd9
2016-03-11 12:28:11 +11:00
Jeremy C. Reed
4943482c81
minor updates and a typo fix
...
mention SMIMEA, new contrib, and named -V
2016-03-08 08:52:45 -05:00
Mark Andrews
c85aaaaf17
9.9.9b1
2016-03-08 16:14:23 +11:00
Mark Andrews
cb3e40e655
add AVC
2016-03-04 18:17:39 +11:00
Evan Hunt
b5957e6c2d
[v9_9] recursively clean empty interior nodes when deleting database records
...
4324. [bug] When deleting records from a zone database, interior
nodes could be left empty but not deleted, damaging
search performance afterward. [RT #40997 ]
(cherry picked from commit 44c86318eddb06cd726c
2016-03-03 21:19:59 -08:00
Mark Andrews
885b3a09f2
re-order security list into reverse order
2016-02-29 12:47:03 +11:00
Mukund Sivaraman
76c3c9fe9f
Fix resolver assertion failure due to improper DNAME handling (CVE-2016-1286) ( #41753 )
...
(cherry picked from commit 5995fec51c456e1eadd2
2016-02-22 12:25:46 +05:30
Mark Andrews
31e4657cf2
4318. [security] Malformed control messages can trigger assertions
...
in named and rndc. (CVE-2016-1285) [RT #41666 ]
(cherry picked from commit a2b15b3305
2016-02-18 12:18:00 +11:00
Evan Hunt
b23d9e68e9
[v9_9] remove reporter's name per his request
2016-01-29 10:36:17 -08:00
Evan Hunt
e1997cc26e
[v9_9] update EOL date
2016-01-27 12:08:08 -08:00
Evan Hunt
75214d0c59
[v9_9] fix use after free on xfr timeout
...
4289. [bug] The server could crash due to memory being used
after it was freed if a zone transfer timed out.
[RT #41297 ]
2016-01-04 22:06:35 -08:00
Evan Hunt
97efa261cb
[v9_9] Merge branch 'v9_9' of ssh://repo/proj/git/prod/bind9 into v9_9
2016-01-04 16:10:15 -08:00
Evan Hunt
f6ab9b3a28
[v9_9] fixed bogus server regression
...
4288. [bug] Fixed a regression in resolver.c:possibly_mark()
which caused known-bogus servers to be queried
anyway. [RT #41321 ]
2016-01-04 16:06:27 -08:00
Evan Hunt
7128c44787
[v9_9] clean up relnotes to include only things added since 9.9.8
2016-01-04 16:05:44 -08:00
Tinderbox User
c40fa54eab
update copyright notice / whitespace
2016-01-04 23:46:16 +00:00
Evan Hunt
717129f35a
[v9_9] clean up notes
2016-01-03 21:23:52 -08:00
Mark Andrews
435ab2044a
4285. [security] Specific APL data could trigger a INSIST.
...
(CVE-2015-8704) [RT #41396 ]
(cherry picked from commit 1b3d211802
2015-12-31 13:47:08 +11:00
Mukund Sivaraman
15faf2a1fd
Update notes.xml for #40996
...
(cherry picked from commit 6960e7fd12f2d05dbb6f
2015-12-15 18:07:37 +05:30
Mark Andrews
22e8c09a00
update description
...
(cherry picked from commit 7bde79b32a
2015-12-03 15:43:21 +11:00
Mark Andrews
f3896ba963
Add CVE-2015-8461
...
(cherry picked from commit ff2f98076c
2015-12-03 15:33:06 +11:00
Mark Andrews
a7f8c044ee
spelling
...
(cherry picked from commit cbc660172d
2015-11-20 14:55:54 +11:00
Mark Andrews
8735803562
note the address changes for H.ROOT-SERVERS.NET
...
(cherry picked from commit b57276f89e
2015-11-18 11:09:24 +11:00
Evan Hunt
000165a414
[v9_9] typo
2015-11-16 18:21:59 -08:00
Mark Andrews
9631d0769e
4260. [security] Insufficient testing when parsing a message allowed
...
records with an incorrect class to be be accepted,
triggering a REQUIRE failure when those records
were subsequently cached. (CVE-2015-8000) [RT #4098 ]
(cherry picked from commit c8821d124c
2015-11-16 13:28:28 +11:00
Mark Andrews
abe4242926
cleanup trailing white space in SGML like files
2015-10-22 16:11:37 +11:00
Tinderbox User
b88cd03904
update copyright notice / whitespace
2015-10-06 23:46:15 +00:00
Evan Hunt
d6e0d893be
[v9_9] upgrade doc toolchain
...
4237. [doc] Upgraded documentation toolchain to use DocBook 5
and dblatex. [RT #40766 ]
2015-10-05 22:01:25 -07:00
Mukund Sivaraman
d7f3a35b30
Fix notes and CHANGES for #40761
...
(cherry picked from commit 56ebb560a1450f4f0ef8
2015-10-06 05:46:24 +05:30
Mukund Sivaraman
2f1b6c0ed7
Update the default value for number of UDP listeners ( #40761 )
...
(cherry picked from commit 930719e8764039647930
2015-10-03 07:16:45 +05:30
Mark Andrews
80f453032b
4217. [protocol] Add support for CSYNC. [RT #40532 ]
...
(cherry picked from commit f6e45a5c54
2015-09-18 23:54:33 +10:00
Mark Andrews
478070a3f2
4214. [protocol] Add support for TALINK. [RT #40544 ]
...
(cherry picked from commit e0a30050c8
2015-09-18 07:46:29 +10:00
Mark Andrews
3f08efe54a
4199. [protocol] Add support for NINFO, RKEY, SINK, TA.
...
[RT #40545 ] [RT #40547 ] [RT #40561 ] [RT #40563 ]
(cherry picked from commit f7ec0518c3270bd72887b23a209b83437e7a1473)
2015-09-11 17:32:43 +10:00
Mark Andrews
33eddc9bc0
4201. [func] The default preferred-glue is now the address record
...
type of the transport the query was received
over. [RT #40468 ]
(cherry picked from commit a0ef8211d3
2015-09-11 13:28:31 +10:00
Mark Andrews
0cfc7d124d
4200. [cleanup] win32: update BINDinstall to be BIND release
...
independent. [RT #38915 ]
(cherry picked from commit 3fa134363f
2015-09-11 12:45:32 +10:00
Mark Andrews
5b15652954
4199. [protocol] Add support for NINFO, RKEY, TA.
...
[RT #40545 ] [RT #40547 ] [RT #40563 ]
(cherry picked from commit 3dd63ba00f
2015-09-10 18:12:32 +10:00
Mark Andrews
c6501326e7
4199. [protocol] Add support for NINFO, RKEY. [RT #40547 ] [RT #40563 ]
...
(cherry picked from commit 63874956de
2015-09-10 17:08:48 +10:00
