upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-04-25 08:07:28 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/contrib/bind9/bin/named
History
Doug Barton 56a78b5211 Vendor import of 9.4.1-P1, which has fixes for the following: 
1. The default access control lists (acls) are not being
correctly set. If not set anyone can make recursive queries
and/or query the cache contents.

See also:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2925

2. The DNS query id generation is vulnerable to cryptographic
analysis which provides a 1 in 8 chance of guessing the next
query id for 50% of the query ids. This can be used to perform
cache poisoning by an attacker.

This bug only affects outgoing queries, generated by BIND 9 to
answer questions as a resolver, or when it is looking up data
for internal uses, such as when sending NOTIFYs to slave name
servers.

All users are encouraged to upgrade.

See also:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2926

Approved by:	re (kensmith, implicit)
2007-07-25 08:12:36 +00:00
..
include/named Remove from the vendor branch files that are no longer 2007-06-02 23:29:48 +00:00
unix Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
builtin.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
client.c Vendor import of 9.4.1-P1, which has fixes for the following: 2007-07-25 08:12:36 +00:00
config.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
control.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
controlconf.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
interfacemgr.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
listenlist.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
log.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
logconf.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwaddr.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwdclient.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwderror.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwdgabn.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwdgnba.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwdgrbn.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwdnoop.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwresd.8 Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwresd.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwresd.docbook Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwresd.html Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
lwsearch.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
main.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
Makefile.in Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
named.8 Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
named.conf.5 Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
named.conf.docbook Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
named.conf.html Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
named.docbook Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
named.html Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
notify.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
query.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
server.c Vendor import of 9.4.1-P1, which has fixes for the following: 2007-07-25 08:12:36 +00:00
sortlist.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
tkeyconf.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
tsigconf.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
update.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
xfrout.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00
zoneconf.c Vendor import of BIND 9.4.1 2007-06-02 23:21:47 +00:00