Accepting request 852423 from home:stroeder:branches:server:dns

New upstream release 4.3.4 with fix for CVE-2020-28935

OBS-URL: https://build.opensuse.org/request/show/852423
OBS-URL: https://build.opensuse.org/package/show/server:dns/nsd?expand=0&rev=79

nsd-4.3.3.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:5fc6d81a977c0246b741da691acaab5c62830a8b38ce696021c26f372d8eed51
-size 1181082

nsd-4.3.3.tar.gz.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCAAdFiEE7fqj8spObrBWga+On28cLX4EX40FAl9+vFcACgkQn28cLX4E
-X41pvg//QEDFkXzV/r05s0FOzYKPV29JyROMEDZdvzDD8V7W3XtVLXPoQd/sdPYR
-gZ7T5WsAOKDXyOhMK3gkDvpaNYv7PaGMYOB6P5Tzo3iSRiC5F7DH2sf1an2VAK5z
-N1paFgxZOgrZrhtoeG05bPtVqEwi3Ov8Jiq3d4Tb+Uc17PxUu+XValFNwa7GRFa0
-16HZWF1REBZozEvmhPjDxs4qMoBHoO3SAq0WJGAlu5dystk9VLBzMJPPaw+Jr4pr
-NOQrzx6a2nidAIm3dKLaJEgSEV0CoHV8Y7WKWKFNHvYkTwpQPsvPuHhqR6oCRDHz
-boQVxfOflJguKKALqWpHrtT20N/zRNbm3jK73TzUckaki6sedE4dQ7WEIoFOZm+Z
-k7BwXP8YLKLBZWFtN6803mKfxBg1ragQkIjUZGCPy5PUVrIXKrxeWCb6fU4dDcUd
-ZS8zwiqYKYukET5C4Ijoj6SJPYKhyyq3ntLT4LO3EjFGxRf7a+2qtYeElbEBGn/1
-f7Itc7CVo+kIRCObBlb0A7gj9BQPGb1GMH8iqHbRwuRD6K9qvdqD7ijPs0n/Ac5U
-sDOtsJEH1pIwnAajdABjc0wt4R+AloPVR2i5FI6ARIykZZP+3WYhEjM0kPmBA5gP
-PfEWhft6GmiUgMEcjPOoZ17Jjtuhe/q7jHlj3Pf7S9URhb7FVEk=
-=38Fq
------END PGP SIGNATURE-----

nsd-4.3.4.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3be834a97151a7ba8185e46bc37ff12c2f25f399755ae8a2d0e3711801528b50
+size 1182467

nsd-4.3.4.tar.gz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=gdu6
+-----END PGP SIGNATURE-----

nsd.changes

@@ -1,3 +1,31 @@
+-------------------------------------------------------------------
+Tue Dec  1 18:26:51 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- New upstream release 4.3.4
+
+FEATURES:
+- Merge PR #141: ZONEMD RR type.
+
+BUG FIXES:
+- Fix #129: ambiguous use of errno, in log message if sendmmsg fails.
+- Fix #128: Fix that the invalid port number is logged for sendmmsg
+  failed: Invalid argument.
+- Fix #127: two minor `-Wcast-qual` cleanups
+- Fix #126: minor header hygiene
+- Fix #125: include config.h in compat/setproctitle.c and fix
+  prototype of `setproctitle`
+- Fix #133: fix 0-init of local ( stack ) buffer.
+- Fix missing parenthesis on size of fix to init buffer.
+- Fix #134: IPV4_MINIMAL_RESPONSE_SIZE vs EDNS_MAX_MESSAGE_LEN.
+- Fix to add missing closest encloser NSEC3 for wildcard nodata type
+  DS answer.
+- Remove unused init_cfg_parse routine from configlexer.
+- Fix #138: NSD returns non-EDNS answer when QUESTION is empty.
+- Fix #142: NODATA answers missin SOA in authority section after
+  CNAME chain.
+- Fix for CVE-2020-28935 : Fix that symlink does not interfere
+  with chown of pidfile.
+
 -------------------------------------------------------------------
 Thu Oct  8 19:28:21 UTC 2020 - Michael Ströder <michael@stroeder.com>
 

nsd.spec

@@ -23,7 +23,7 @@
 %define zonesdir   %{configdir}/zones
 %define pidfile    %{_rundir}/nsd/nsd.pid
 Name:           nsd
-Version:        4.3.3
+Version:        4.3.4
 Release:        0
 #
 Summary:        An authoritative-only domain name server