lp:~kernevil/ubuntu/saucy/bind9/sdlz-hmac-keys
- Get this branch:
- bzr branch lp:~kernevil/ubuntu/saucy/bind9/sdlz-hmac-keys
Branch merges
Branch information
- Owner:
- Kernevil
- Status:
- Development
Recent revisions
- 62. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service when processing NSEC3-signed zone
queries
- debian/patches/ CVE-2014- 0591.patch: don't call memcpy with
overlapping ranges in bin/named/query.c.
- patch backported from 9.9.4-P2.
- CVE-2014-0591 - 60. By LaMont Jones
-
[Peter Marschall]
* If rndc.conf exists, skip creation of rndc.key. Closes: #620394
[Al Tarakanoff]
* properly quote check of pid in bind9 init.d. LP: #1092243
[LaMont Jones]
* include distro and package version in version string
* apparmor: allow GeoIP data file access. LP: #834901
* enable filter-aaaa. Closes: #701704 LP: #1115168 - 59. By LaMont Jones
-
[Michael Stapelberg]
* add systemd service file. Closes: #718212
[LaMont Jones]
* deliver more dnssec-* tools in bind9utils. Closes: #713026
* support parallel=N DEB_BUILD_OPTIONS, fix -j build. Closes: #713025
* deliver rrl.h and stat.h Closes: #692483, #720813 - 58. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via incorrect bounds checking on
private type 'keydata'
- lib/dns/rdata/generic/ keydata_ 65533.c: check for correct length.
- Patch backported from 9.9.3-P2
- CVE-2013-4854 - 57. By Robie Basak
-
* configure.in: detect libxml 2.9 as well as 2.[678] (LP: #1164475).
* debian/control: add Build-Depends on dh-autoreconf.
* debian/rules: use dh_autoreconf and dh_autoreconf_clean. - 56. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via regex syntax checking
- configure,configure. in,config. h.in: remove check for regex.h to
disable regex syntax checking.
- CVE-2013-2266 - 55. By LaMont Jones
-
[Michael Gilbert]
* Use /var/lib/bind for state file. Closes: #689332
[LaMont Jones]
* zone transfers now involve link(), update the apparmor profile
* Update db.root with new IP for D.root-servers.net. Closes: #697352
* re-drop dlzexternal test
* Reduce log level for "sucessfully validated after lower casing" dnssec
based on mail from Mark Andrews. Closes: #697681
* remove /var/lib/bind/bind9- default. md5sum in postrm
* remove /etc/bind/named.conf. options on purge. Closes: #668801 [Sebastian Wiesinger]
* Build and deliver dnssec-checkds and dnssec-verify in bind9utils
- 54. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via DNS64 and crafted query
- bin/named/query.c: init rdataset before cleanup.
- Patch backported from 9.8.4-P1
- CVE-2012-5688
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/trusty/bind9