Ubuntu
bind9 package

lp:~kernevil/ubuntu/saucy/bind9/sdlz-hmac-keys

  1. Saucy (13.10)
  2. sdlz-hmac-keys
Created by Kernevil and last modified
Get this branch:
bzr branch lp:~kernevil/ubuntu/saucy/bind9/sdlz-hmac-keys
Only Kernevil can upload to this branch. If you are Kernevil please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Kernevil
Status:
Development

Recent revisions

63. By Kernevil

sdlz patch to also send hmac keys to dlz implementation

62. By Marc Deslauriers

* SECURITY UPDATE: denial of service when processing NSEC3-signed zone
  queries
  - debian/patches/CVE-2014-0591.patch: don't call memcpy with
    overlapping ranges in bin/named/query.c.
  - patch backported from 9.9.4-P2.
  - CVE-2014-0591

61. By Adam Conrad

Use dh_autotools-dev to update config.{sub,guess} for new ports.

60. By LaMont Jones

[Peter Marschall]

* If rndc.conf exists, skip creation of rndc.key. Closes: #620394

[Al Tarakanoff]

* properly quote check of pid in bind9 init.d. LP: #1092243

[LaMont Jones]

* include distro and package version in version string
* apparmor: allow GeoIP data file access. LP: #834901
* enable filter-aaaa. Closes: #701704 LP: #1115168

59. By LaMont Jones

[Michael Stapelberg]

* add systemd service file. Closes: #718212

[LaMont Jones]

* deliver more dnssec-* tools in bind9utils. Closes: #713026
* support parallel=N DEB_BUILD_OPTIONS, fix -j build. Closes: #713025
* deliver rrl.h and stat.h Closes: #692483, #720813

58. By Marc Deslauriers

* SECURITY UPDATE: denial of service via incorrect bounds checking on
  private type 'keydata'
  - lib/dns/rdata/generic/keydata_65533.c: check for correct length.
  - Patch backported from 9.9.3-P2
  - CVE-2013-4854

57. By Robie Basak

* configure.in: detect libxml 2.9 as well as 2.[678] (LP: #1164475).
* debian/control: add Build-Depends on dh-autoreconf.
* debian/rules: use dh_autoreconf and dh_autoreconf_clean.

56. By Marc Deslauriers

* SECURITY UPDATE: denial of service via regex syntax checking
  - configure,configure.in,config.h.in: remove check for regex.h to
    disable regex syntax checking.
  - CVE-2013-2266

55. By LaMont Jones

[Michael Gilbert]

* Use /var/lib/bind for state file. Closes: #689332

[LaMont Jones]

* zone transfers now involve link(), update the apparmor profile
* Update db.root with new IP for D.root-servers.net. Closes: #697352
* re-drop dlzexternal test
* Reduce log level for "sucessfully validated after lower casing" dnssec
  based on mail from Mark Andrews. Closes: #697681
* remove /var/lib/bind/bind9-default.md5sum in postrm
* remove /etc/bind/named.conf.options on purge. Closes: #668801

[Sebastian Wiesinger]

* Build and deliver dnssec-checkds and dnssec-verify in bind9utils

54. By Marc Deslauriers

* SECURITY UPDATE: denial of service via DNS64 and crafted query
  - bin/named/query.c: init rdataset before cleanup.
  - Patch backported from 9.8.4-P1
  - CVE-2012-5688

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/trusty/bind9
This branch contains Public information 
Everyone can see this information.

Subscribers