New changelog entries:
* Non-maintainer upload by the Security Team.
* CVE-2013-4854: A specially crafted query that includes malformed rdata can
cause named to terminate with an assertion failure while rejecting the
malformed query. (Closes: #717936).
* Non-maintainer upload by the Security Team.
* Compile without regular expression support to fix CVE-2013-2266.
Prevent a denial of service vulnerability found in the libdns
library. A remote attacker could use this flaw to send a specially-
crafted DNS query to named that, when processed, would cause
named to use an excessive amount of memory, or possibly crash.
(Closes: #704174)
New changelog entries:
* Non-maintainer upload by the Security Team.
* CVE-2013-4854: A specially crafted query that includes malformed rdata can
cause named to terminate with an assertion failure while rejecting the
malformed query. (Closes: #717936).
* Non-maintainer upload by the Security Team.
* Compile without regular expression support to fix CVE-2013-2266.
Prevent a denial of service vulnerability found in the libdns
library. A remote attacker could use this flaw to send a specially-
crafted DNS query to named that, when processed, would cause
named to use an excessive amount of memory, or possibly crash.
(Closes: #704174)
New changelog entries:
* Apply patch extracted from 9.7.6-P3 to fix CVE-2012-4244
* Non-maintainer upload by the Security Team.
* Fi denial of service through assert because of using bad cache
data before initialization (CVE-2012-3817).
* Apply patch from ISC to fix zero-length RDATA handling (CVE-2012-1667)
New changelog entries:
* Apply patch extracted from 9.7.6-P3 to fix CVE-2012-4244
* Non-maintainer upload by the Security Team.
* Fi denial of service through assert because of using bad cache
data before initialization (CVE-2012-3817).
* Apply patch from ISC to fix zero-length RDATA handling (CVE-2012-1667)