rpm/bind
SHA256
1
0
Fork 0
forked from pool/bind
Code Pull Requests Activity

Commit Graph

  • 67378e3874 - moved dnssec-* helpers to bind-utils package. bnc#813911 Marcus Meissner 2013-06-27 09:27:34 +00:00
  • 7f803cee73 - Updated to current rate limiting + rpz patch from http://ss.vix.su/~vjs/rrlrpz.html Marcus Meissner 2013-06-26 12:27:48 +00:00
  • 306b1609e0 Security and maintenance issues: Marcus Meissner 2013-06-26 10:51:54 +00:00
  • 7dbe78dc6a - Use updated config.guess/sub in the embedded idnkit sources Marcus Meissner 2013-06-26 10:50:57 +00:00
  • 8591e27de2 - Updated to 9.9.3-P1 Various bugfixes and some feature fixes. (see CHANGES files) Security and maintenance issues: - [security] Caching data from an incompletely signed zone could trigger an assertion failure in resolver.c [RT #33690] - [security] Support NAPTR regular expression validation on all platforms without using libregex, which can be vulnerable to memory exhaustion attack (CVE-2013-2266). [RT #32688] - [security] RPZ rules to generate A records (but not AAAA records) could trigger an assertion failure when used in conjunction with DNS64 (CVE-2012-5689). [RT #32141] - [bug] Fixed several Coverity warnings. Note: This change includes a fix for a bug that was subsequently determined to be an exploitable security vulnerability, CVE-2012-5688: named could die on specific queries with dns64 enabled. [RT #30996] - [maint] Added AAAA for D.ROOT-SERVERS.NET. - [maint] D.ROOT-SERVERS.NET is now 199.7.91.13. Marcus Meissner 2013-06-26 10:50:27 +00:00
  • adb3422044 Accepting request 174827 from network Stephan Kulow 2013-05-13 12:43:11 +00:00
  • e2db8fe61f Accepting request 174818 from devel:ARM:AArch64:Factory Marcus Meissner 2013-05-08 13:45:12 +00:00
  • 65bfa5b3d2 Accepting request 161413 from network Stephan Kulow 2013-03-28 12:09:59 +00:00
  • eec4a4f40d - Updated to 9.9.2-P2 (bnc#811876) Fix for: https://kb.isc.org/article/AA-00871 CVE-2013-2266 * Security Fixes Removed the check for regex.h in configure in order to disable regex syntax checking, as it exposes BIND to a critical flaw in libregex on some platforms. [RT #32688] - added gpg key source verification Marcus Meissner 2013-03-27 12:36:47 +00:00
  • 00ba642f3d Accepting request 144433 from network Ismail Dönmez 2012-12-07 13:06:47 +00:00
  • 4d43181a2f OBS-URL: https://build.opensuse.org/package/show/network/bind?expand=0&rev=109 Marcus Meissner 2012-12-06 15:46:53 +00:00
  • d414c6c46e OBS-URL: https://build.opensuse.org/package/show/network/bind?expand=0&rev=108 Marcus Meissner 2012-12-06 15:46:13 +00:00
  • 636c118d37 - Updated to 9.9.2-P1 (bnc#792926) https://kb.isc.org/article/AA-00828 * Security Fixes Prevents named from aborting with a require assertion failure on servers with DNS64 enabled. These crashes might occur as a result of specific queries that are received. (Note that this fix is a subset of a series of updates that will be included in full in BIND 9.8.5 and 9.9.3 as change #3388, RT #30996). [CVE-2012-5688] [RT #30792] A deliberately constructed combination of records could cause named to hang while populating the additional section of a response. [CVE-2012-5166] [RT #31090] Prevents a named assert (crash) when queried for a record whose RDATA exceeds 65535 bytes. [CVE-2012-4244] [RT #30416] Prevents a named assert (crash) when validating caused by using "Bad cache" data before it has been initialized. [CVE-2012-3817] [RT #30025] A condition has been corrected where improper handling of zero-length RDATA could cause undesirable behavior, including termination of the named process. [CVE-2012-1667] [RT #29644] ISC_QUEUE handling for recursive clients was updated to address a race condition that could cause a memory leak. This rarely occurred with UDP clients, but could be a significant problem for a server handling a steady rate of TCP queries. [CVE-2012-3868] [RT #29539 & #30233] New Features Elliptic Curve Digital Signature Algorithm keys and signatures in DNSSEC are now supported per RFC 6605. [RT #21918] Introduces a new tool "dnssec-checkds" command that checks a zone to determine which DS records should be published in the parent zone, or which DLV records should be published in a DLV zone, and queries the DNS to ensure that it exists. (Note: This tool depends on python; Marcus Meissner 2012-12-06 08:05:49 +00:00
  • 2f2a5e17d4 Accepting request 141805 from network Stephan Kulow 2012-11-20 09:15:16 +00:00
  • 4161728e00 - added a ratelimiting (draft RFC) patch from Paul Vixie. see http://www.redbarn.org/dns/ratelimits suggested by Stefan Schaefer <stefan@invis-server.org> Marcus Meissner 2012-11-18 18:12:17 +00:00
  • 13cb2fb5aa Accepting request 141386 from network Stephan Kulow 2012-11-17 06:19:12 +00:00
  • 720e0417f1 - unfuzzed patches: perl-path.diff pie_compile.diff workaround-compile-problem.diff Marcus Meissner 2012-11-15 09:54:51 +00:00
  • d0bcf798bc Accepting request 141301 from home:msmeissn:branches:network Marcus Meissner 2012-11-14 14:01:06 +00:00
  • 96ef1056ef freshed patches Marcus Meissner 2012-11-14 10:31:31 +00:00
  • d3e988aaee - updated to 9.9.2 https://kb.isc.org/article/AA-00798 Security: * A deliberately constructed combination of records could cause named to hang while populating the additional section of a response. [CVE-2012-5166] [RT #31090] * Prevents a named assert (crash) when queried for a record whose RDATA exceeds 65535 bytes. [CVE-2012-4244] [RT #30416] * Prevents a named assert (crash) when validating caused by using "Bad cache" data before it has been initialized. [CVE-2012-3817] [RT #30025] * A condition has been corrected where improper handling of zero-length RDATA could cause undesirable behavior, including termination of the named process. [CVE-2012-1667] [RT #29644] * ISC_QUEUE handling for recursive clients was updated to address a race condition that could cause a memory leak. This rarely occurred with UDP clients, but could be a significant problem for a server handling a steady rate of TCP queries. [CVE-2012-3868] [RT #29539 & #30233] New Features * Elliptic Curve Digital Signature Algorithm keys and signatures in DNSSEC are now supported per RFC 6605. [RT #21918] * Introduces a new tool "dnssec-checkds" command that checks a zone to determine which DS records should be published in the parent zone, or which DLV records should be published in a DLV zone, and queries the DNS to ensure that it exists. (Note: This tool depends on python; it will not be built or installed on systems that do not have a python interpreter.) [RT #28099] * Introduces a new tool "dnssec-verify" that validates a signed zone, checking for the correctness of signatures and NSEC/NSEC3 chains. [RT #23673] * Adds configuration option "max-rsa-exponent-size <value>;" that can Marcus Meissner 2012-11-14 10:25:52 +00:00
  • 4f0c7a2ced Accepting request 138821 from network Ismail Dönmez 2012-10-25 08:59:07 +00:00
  • c9d0046524 - Specially crafted DNS data can cause a lockup in named. CVE-2012-5166, bnc#784602. - 9.9.1-P4 Marcus Meissner 2012-10-19 12:14:00 +00:00
  • 5f51f43efe Accepting request 134434 from network Stephan Kulow 2012-09-17 11:47:56 +00:00
  • a16486cc98 - Named could die on specially crafted record. [RT #30416] (bnc#780157) CVE-2012-4244 - 9.9.1-P3 - updated dnszone-schema.txt from upstream. Marcus Meissner 2012-09-15 16:23:25 +00:00
  • 864a31b0ad Accepting request 128983 from network Stephan Kulow 2012-07-31 11:27:12 +00:00
  • 9d3afd5a9e security fix Uwe Gansert 2012-07-26 09:55:26 +00:00
  • 9aea24ec0b Accepting request 127699 from home:babelworx:ldig:branches:network Uwe Gansert 2012-07-12 07:46:55 +00:00
  • bd05b44c92 Accepting request 123696 from network Stephan Kulow 2012-06-06 14:05:36 +00:00
  • d65e10ef0f updates ldap schema Uwe Gansert 2012-06-05 14:30:53 +00:00
  • 878d773563 changes file was broken Uwe Gansert 2012-06-04 15:26:56 +00:00
  • 6b1a93e719 VUL-0: bind remote DoS via zero length rdata field Uwe Gansert 2012-06-04 15:26:08 +00:00
  • d524784deb Accepting request 121732 from network Stephan Kulow 2012-05-23 07:21:39 +00:00
  • 8a196b5476 version 9.9.1 Uwe Gansert 2012-05-22 08:08:00 +00:00
  • 2a2be8bcc1 Accepting request 120594 from network Stephan Kulow 2012-05-10 13:13:10 +00:00
  • 766b6fb925 assertion failure fix added Uwe Gansert 2012-05-10 11:45:20 +00:00
  • 7a81ccba38 Accepting request 116455 from network Stephan Kulow 2012-05-08 10:25:28 +00:00
  • 91f038d7f6 version 9.9.0 Uwe Gansert 2012-05-04 15:07:18 +00:00
  • f510d24e52 Accepting request 106242 from network Stephan Kulow 2012-03-01 16:18:46 +00:00
  • a40cfc49bd Accepting request 104301 from devel:openSUSE:Factory:patch-license Uwe Gansert 2012-02-13 13:54:04 +00:00
  • a3097226b3 Accepting request 98618 from home:lmuelle:branches:network Uwe Gansert 2012-01-03 15:16:12 +00:00
  • e15a83c164 root.hint updated Uwe Gansert 2011-12-05 15:49:16 +00:00
  • 7fa43cec68 added managed-keys-directory to named.conf Uwe Gansert 2011-12-05 11:55:53 +00:00
  • e0cc3ad3e3 fixed apparmor profile for lib and lib64 in chroot Uwe Gansert 2011-11-22 10:38:06 +00:00
  • d4710ab62f Accepting request 91958 from home:fteodori:branches:network Uwe Gansert 2011-11-17 13:46:40 +00:00
  • a0157c5696 reverted last changes Uwe Gansert 2011-10-27 11:22:47 +00:00
  • 10e1739870 Accepting request 89487 from home:varkoly:branches:network Uwe Gansert 2011-10-27 09:28:17 +00:00
  • 5ecf1796d3 Accepting request 89350 from network Stephan Kulow 2011-10-26 13:21:07 +00:00
  • f8aa6fe93d bnc#716745 Uwe Gansert 2011-10-26 09:15:48 +00:00
  • 7e559b6e71 Accepting request 86242 from network Ruediger Oertel 2011-10-04 14:54:13 +00:00
  • 5d9eec831c Accepting request 85954 from home:coolo:removelibtool Pavol Rusnak 2011-10-03 11:38:53 +00:00
  • 68b70aa623 Accepting request 82899 from home:jengelh:bl-b Lars Vogdt 2011-10-02 00:09:30 +00:00
  • eba2cba972 Accepting request 82468 from network Lars Vogdt 2011-09-19 19:04:54 +00:00
  • 60deb7c4d8 bnc#718441 Uwe Gansert 2011-09-16 13:48:57 +00:00
  • 8651331685 Accepting request 80897 from network Lars Vogdt 2011-09-05 14:20:29 +00:00
  • fe71b72655 SSL in chroot fixed Uwe Gansert 2011-09-05 09:42:44 +00:00
  • 2c942a86bd 9.8.1 Uwe Gansert 2011-09-05 08:24:07 +00:00
  • 126b9649b9 Autobuild autoformatter for 80484 Sascha Peilicke 2011-09-01 14:59:03 +00:00
  • ecc7b8fc2d Updating link to change in openSUSE:Factory/bind revision 69.0 OBS User buildservice-autocommit 2011-09-01 14:59:03 +00:00
  • d19a6fd383 Accepting request 80484 from network Sascha Peilicke 2011-09-01 14:58:53 +00:00
  • 184ce3adff Accepting request 80345 from home:rhafer:branches:network Ralf Haferkamp 2011-09-01 09:58:02 +00:00
  • d30d95179f Autobuild autoformatter for 77846 Sascha Peilicke 2011-08-03 14:09:08 +00:00
  • c61a563321 Updating link to change in openSUSE:Factory/bind revision 67.0 OBS User buildservice-autocommit 2011-08-03 14:09:08 +00:00
  • 1b33f9edb9 Accepting request 77846 from network Sascha Peilicke 2011-08-03 14:08:56 +00:00
  • 2aaf0b182b version 9.8.0-P4 Uwe Gansert 2011-07-05 14:12:05 +00:00
  • 8748c87af2 fixed SLE10 build Uwe Gansert 2011-06-10 14:09:53 +00:00
  • 8253ee2640 version to 9.8.0-P2 Uwe Gansert 2011-06-07 14:38:49 +00:00
  • eea4d184b6 Autobuild autoformatter for 71177 Sascha Peilicke 2011-05-26 08:22:01 +00:00
  • 32d56c34f2 Updating link to change in openSUSE:Factory/bind revision 65.0 OBS User buildservice-autocommit 2011-05-26 08:22:01 +00:00
  • 6411f3327f Accepting request 71177 from network Sascha Peilicke 2011-05-26 08:21:50 +00:00
  • 53283310fb Accepting request 71091 from home:elvigia:branches:network Pavol Rusnak 2011-05-24 15:52:01 +00:00
  • 24043d4711 Accepting request 70812 from network Sascha Peilicke 2011-05-23 08:07:44 +00:00
  • c233137225 Accepting request 70688 from home:msmeissn:branches:network Pavol Rusnak 2011-05-20 13:34:53 +00:00
  • 9472436310 version to 9.8.0 Uwe Gansert 2011-05-05 15:02:32 +00:00
  • 87ef585a4f bind-chrootenv requires bind now Uwe Gansert 2011-04-15 11:24:35 +00:00
  • 119c0b9548 fixed rcnamed status for missing config files Uwe Gansert 2011-04-15 08:57:56 +00:00
  • e87db8f097 Autobuild autoformatter for 62687 Sascha Peilicke 2011-02-24 11:36:18 +00:00
  • 6e6006119d Updating link to change in openSUSE:Factory/bind revision 62.0 OBS User buildservice-autocommit 2011-02-24 11:36:18 +00:00
  • 428fade0d0 Accepting request 62687 from network Sascha Peilicke 2011-02-24 11:36:09 +00:00
  • 796b7a3cb6 fixed security issue (bnc#674431) Uwe Gansert 2011-02-24 10:17:20 +00:00
  • bf38bca620 - ifdef the sysvinit specific prereqs for openSUSE 11.4 and later Marcus Meissner 2011-01-05 15:58:35 +00:00
  • 7fdee224bc Autobuild autoformatter for 56204 Lars Vogdt 2010-12-19 14:17:35 +00:00
  • 006052e4e5 Updating link to change in openSUSE:Factory/bind revision 59.0 OBS User buildservice-autocommit 2010-12-19 14:17:35 +00:00
  • a7cdc4854c Accepting request 56204 from network Lars Vogdt 2010-12-19 14:17:26 +00:00
  • fb1221a33a Accepting request 55676 from home:coolo:branches:openSUSE:Factory Marcus Meissner 2010-12-16 14:32:05 +00:00
  • 4207cef43a Accepting request 55394 from home:mvyskocil:branches:network Uwe Gansert 2010-12-09 15:33:29 +00:00
  • 81bf43684f Autobuild autoformatter for 54349 Lars Vogdt 2010-12-05 22:06:57 +00:00
  • 27f61a6c69 Updating link to change in openSUSE:Factory/bind revision 57.0 OBS User buildservice-autocommit 2010-12-05 22:06:57 +00:00
  • e8da6dc7fa Accepting request 54349 from network Lars Vogdt 2010-12-05 22:06:50 +00:00
  • 35409ae5b9 security fixes Uwe Gansert 2010-12-02 16:48:21 +00:00
  • 97fc8f1d91 Autobuild autoformatter for 53778 Marcus Rueckert 2010-11-23 13:54:25 +00:00
  • d0847e119f Updating link to change in openSUSE:Factory/bind revision 55.0 OBS User buildservice-autocommit 2010-11-23 13:54:25 +00:00
  • 113002d64a Accepting request 53778 from network Marcus Rueckert 2010-11-23 13:54:15 +00:00
  • 9e0b3911e0 fixed 'rcnamed status' Uwe Gansert 2010-11-23 13:39:48 +00:00
  • 983a11ec43 Autobuild autoformatter for 53765 Berthold Gunreben 2010-11-23 13:00:14 +00:00
  • 3fcb4563d6 Updating link to change in openSUSE:Factory/bind revision 53.0 OBS User buildservice-autocommit 2010-11-23 13:00:14 +00:00
  • b1a822c29c Accepting request 53765 from network Berthold Gunreben 2010-11-23 13:00:07 +00:00
  • c1b812b3d8 added gssapi (bnc#618023) Uwe Gansert 2010-11-23 11:53:22 +00:00
  • 789e266dc9 version update Uwe Gansert 2010-10-13 07:45:36 +00:00
  • be38d10d28 Accepting request 43979 from network OBS User autobuild 2010-07-30 13:59:46 +00:00
  • baf7a897f0 Updating link to change in openSUSE:Factory/bind revision 51.0 OBS User buildservice-autocommit 2010-07-30 13:59:46 +00:00