upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-03-16 15:44:00 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
25223 commits 18 branches 854 tags 440 MiB
Commit graph

265 commits

Author SHA1 Message Date
Evan Hunt
28a8cce45f [v9_10] typo 2018-01-24 18:04:32 -08:00
Evan Hunt
9109dccd02 [v9_10] prep 9.10.7b1 2018-01-24 10:15:05 -08:00
Tinderbox User
6e9243db22 regen v9_10 2017-12-21 01:30:48 +00:00
Tinderbox User
046eb2d1ac regen v9_10 2017-12-16 01:34:53 +00:00
Evan Hunt
04f334e4b0 [v9_10] README and relnote fixes 
(cherry picked from commit 30419509dd)
(cherry picked from commit e609b6b32b)
 2017-10-17 13:52:35 -07:00
Evan Hunt
6da5ebd9bf [v9_10] correct the license info 2017-09-19 13:00:12 -07:00
Tinderbox User
457145b797 regen v9_10 2017-07-08 01:34:20 +00:00
Evan Hunt
88dc9d367d [v9_10] address TSIG bypass/forgery vulnerabilities 
4643.	[security]	An error in TSIG handling could permit unauthorized
			zone transfers or zone updates. (CVE-2017-3142)
			(CVE-2017-3143) [RT #45383]

(cherry picked from commit 581c1526ab)
(cherry picked from commit a03f4b1ea4)
 2017-06-27 11:40:31 -07:00
Evan Hunt
f5dd7776e1 [v9_10] quote service registry paths 
4532.	[security]	The BIND installer on Windows used an unquoted
                        service path, which can enable privilege escalation.
			(CVE-2017-3141) [RT #45229]

(cherry picked from commit 967a3b9419)
(cherry picked from commit c28e44f3f8)
 2017-05-30 13:38:59 -07:00
Evan Hunt
a57b289ed0 [v9_10] fix rpz formerr loop 
4531.	[security]	Some RPZ configurations could go into an infinite
			query loop when encountering responses with TTL=0.
			(CVE-2017-3140) [RT #45181]

(cherry picked from commit 3440cf9c60)
 2017-05-30 12:35:59 -07:00
Evan Hunt
cdb08d61f7 [v9_10] change markdown comment style for pandoc 2017-04-27 23:44:25 -07:00
Tinderbox User
03cd3db02d regen v9_10 2017-04-26 23:35:43 +00:00
Tinderbox User
1376fb702f regen v9_10 2017-04-25 01:14:51 +00:00
Evan Hunt
7e5ab67300 [v9_10] allow parallel make 
4609.	[cleanup]	Rearrange makefiles to enable parallel execution
			(i.e. "make -j"). [RT #45078]
 2017-04-23 23:04:46 -07:00
Tinderbox User
6f7d5b7835 regen v9_10 2017-04-23 01:14:12 +00:00
Evan Hunt
e9c9b9396a [v9_10] remove references to compile options that aren't in 9.10 2017-04-20 20:13:22 -07:00
Evan Hunt
dc35ff9ec6 [v9_10] update README, remove FAQ 
4593.	[doc]		Update README using markdown, remove outdated FAQ
			file in favor of the knowledge base.
 2017-04-20 19:39:06 -07:00
Evan Hunt
a779842da4 [v9_10] prep 9.10.5 2017-04-13 20:42:21 -07:00
Evan Hunt
646b17251d [v9_10] document that delv should be used instead of sigchase 
(cherry picked from commit db93f3d4b3)
 2017-03-25 12:23:36 -07:00
Evan Hunt
69fd759b4a [v9_10] remove unnecessary INSIST and prep 9.10.5rc2 
4578.	[security]	Some chaining (CNAME or DNAME) responses to upstream
			queries could trigger assertion failures.
			(CVE-2017-3137) [RT #44734]

(cherry picked from commit a1365a0042)
(cherry picked from commit 559cbe04e7)
 2017-02-23 15:01:30 -08:00
Mark Andrews
2a32d6cce1 9.10.5; copyrights 2017-02-16 12:38:53 +11:00
Evan Hunt
0f3d3f825f [v9_10] prep 9.10.5rc1 2017-02-04 22:33:09 -08:00
Evan Hunt
6e537b245e [v9_10] README 2016-12-28 20:41:27 -08:00
Mark Andrews
2cfd915235 4508. [security] Named incorrectly tried to cache TKEY records which 
could trigger a assertion failure when there was
                            a class mismatch. (CVE-2016-9131) [RT #43522]

(cherry picked from commit 2c1c4b99a1)
 2016-12-29 11:29:41 +11:00
Mark Andrews
4bee9dcc78 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] 
(cherry picked from commit 1fce0951ed)
 2016-10-31 10:08:08 +11:00
Mark Andrews
49f80e0fc5 add CVE-2016-2776 2016-09-09 11:41:12 +10:00
Mark Andrews
8dbe2bedce add CVE-2016-2775 2016-07-12 01:17:44 +10:00
Mark Andrews
2c4cca7e24 document python requirements 2016-05-26 15:40:30 +10:00
Jeremy C. Reed
8c7161702b add missing comma 2016-04-13 19:24:52 -04:00
Mark Andrews
235151bad7 reorder cve list 2016-03-09 07:03:42 +11:00
Jeremy C. Reed
b1bc013634 misspelling 2016-03-08 09:41:40 -05:00
Mark Andrews
b5c239dcdc add CVE-2016-2088 2016-02-27 13:21:55 +11:00
Mark Andrews
3b4b57bb4f add CVE-2016-1286 2016-02-24 13:16:25 +11:00
Evan Hunt
16f69da352 [v9_10] add [performance] 2016-02-01 09:52:19 -08:00
Mark Andrews
2d8617416f add CVE-2015-8000 2015-11-17 15:27:54 +11:00
Evan Hunt
96f318b0c6 [v9_10] add CVE number 2015-08-13 15:31:15 -07:00
Evan Hunt
7163ce122d [v9_10] address buffer accounting error 
4168.	[security]	A buffer accounting error could trigger an
			assertion failure when parsing certain malformed
			DNSSEC keys. (CVE-2015-5722) [RT #40212]

(cherry picked from commit ce9f893e21)
 2015-08-07 13:23:03 -07:00
Evan Hunt
bc66dfc5ce [v9_10] add fetchlimit to README 2015-08-03 12:53:36 -07:00
Mark Andrews
fba94b205b add CVE-2015-5477 2015-07-15 07:55:52 +10:00
Mark Andrews
dd696539d3 3812. [func] Dig now supports sending arbitary EDNS options from 
the command line (+ednsopt=code[:value]). [RT #35584]

(cherry picked from commit e560fbdf77)
 2015-05-21 11:10:51 +10:00
Mark Andrews
f96e5c9d50 add CVE-2015-1349 2015-02-11 16:33:57 +11:00
Mark Andrews
e2b3755218 s/9.10.1/9.10.2/ 2014-12-31 11:08:53 +11:00
Evan Hunt
8a64e078d1 [v9_10] prep 9.10.2b1 2014-12-18 13:51:12 -08:00
Evan Hunt
fe66c6b152 [v9_10] update contact info in README and confiure --help 2014-09-16 12:27:15 -07:00
Evan Hunt
0770913a4c [v9_10] grammar fix 2014-09-03 12:50:37 -07:00
Evan Hunt
1058966060 [v9_10] backport doc fixes from master 2014-08-18 14:01:40 -07:00
Mark Andrews
7fc20db578 plural 2014-06-25 00:22:02 +10:00
Mark Andrews
c6f891732d add CVE-2014-3859 2014-05-26 13:13:20 +10:00
Mark Andrews
c681ba9398 Add CVE-2014-3214 to README 2014-05-09 13:43:24 +10:00
Evan Hunt
ab5ba6b1c3 [v9_10] typo 2014-04-23 15:55:36 -07:00