Ubuntu
bind9 package

~nacc/ubuntu/+source/bind9:applied/debian/wheezy

  1. Git
  2. lp:~nacc/ubuntu/+source/bind9
  3. applied/debian/wheezy
Last commit made on 2016-04-02
Get this branch:
git clone -b applied/debian/wheezy https://git.launchpad.net/~nacc/ubuntu/+source/bind9
Only Nish Aravamudan can upload to this branch. If you are Nish Aravamudan please log in for upload directions.

Branch merges

Branch information

Name:
applied/debian/wheezy
Repository:
lp:~nacc/ubuntu/+source/bind9

Recent commits

f00dd0c... by Michael Gilbert <email address hidden>

Import patches-applied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u10 to applied/debian/wheezy

Imported using usd-importer.

Publish parent: e8dcead69769e4df38f4e0c7032b8dcc7109850c
Unapplied parent: 0e3e8c8bb71db456f6c2b42972cc41c767bbdad7

New changelog entries:
  * Fix CVE-2016-1285: error parsing control channel input.
  * Fix CVE-2016-1286: error parsing DNAME resource records.
  * Non-maintainer upload by the Security Team.
  * CVE-2015-8704: Specific APL data could trigger an INSIST in apl_42.c.
    A buffer size check used to guard against overflow could cause named to
    exit with an INSIST failure In apl_42.c.
  * Non-maintainer upload by the Security Team.
  * Add patch to fix CVE-2015-8000.
    CVE-2015-8000: Insufficient testing when parsing a message allowed
    records with an incorrect class to be be accepted, triggering a REQUIRE
    failure when those records were subsequently cached.
  * CVE-2015-5722: maliciously crafted DNSSEC key can cause named to crash.

0e3e8c8... by Michael Gilbert <email address hidden>

Import patches-unapplied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u10 to debian/wheezy

Imported using usd-importer.

Publish parent: 6f7c9c7b57425632737b76923d00a1197116c0e9

New changelog entries:
  * Fix CVE-2016-1285: error parsing control channel input.
  * Fix CVE-2016-1286: error parsing DNAME resource records.
  * Non-maintainer upload by the Security Team.
  * CVE-2015-8704: Specific APL data could trigger an INSIST in apl_42.c.
    A buffer size check used to guard against overflow could cause named to
    exit with an INSIST failure In apl_42.c.
  * Non-maintainer upload by the Security Team.
  * Add patch to fix CVE-2015-8000.
    CVE-2015-8000: Insufficient testing when parsing a message allowed
    records with an incorrect class to be be accepted, triggering a REQUIRE
    failure when those records were subsequently cached.
  * CVE-2015-5722: maliciously crafted DNSSEC key can cause named to crash.

e8dcead... by Salvatore Bonaccorso

Import patches-applied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u6 to applied/debian/wheezy

Imported using usd-importer.

Publish parent: b6b47e79ea5f775bb42d62c20483341eddfb3667
Unapplied parent: 6f7c9c7b57425632737b76923d00a1197116c0e9

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2015-5477: A failure to reset a value to NULL in tkey.c could
    result in an assertion failure.
  * Non-maintainer upload by the Security Team.
  * CVE-2015-4620: Specially constructed zone data can cause a resolver to
    crash when validating.
  * Non-maintainer upload by the Security Team.
  * CVE-2015-1349: avoid crash due to managed-key rollover.
    Revoking a managed trust anchor and supplying an untrusted replacement
    could cause named to crash with an assertion failure.

6f7c9c7... by Salvatore Bonaccorso

Import patches-unapplied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u6 to debian/wheezy

Imported using usd-importer.

Publish parent: de3c9bd770c46d4cbaf41c6228a68514a288e920

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2015-5477: A failure to reset a value to NULL in tkey.c could
    result in an assertion failure.
  * Non-maintainer upload by the Security Team.
  * CVE-2015-4620: Specially constructed zone data can cause a resolver to
    crash when validating.
  * Non-maintainer upload by the Security Team.
  * CVE-2015-1349: avoid crash due to managed-key rollover.
    Revoking a managed trust anchor and supplying an untrusted replacement
    could cause named to crash with an assertion failure.

b6b47e7... by Giuseppe Iuculano

Import patches-applied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u3 to applied/debian/wheezy

Imported using usd-importer.

Publish parent: 838aa18f227c873be9956f3ef604a2a55f06d664
Unapplied parent: de3c9bd770c46d4cbaf41c6228a68514a288e920

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2014-8500: Failure to place limits on delegation chaining can allow an
    attacker to crash BIND or cause memory exhaustion.

de3c9bd... by Giuseppe Iuculano

Import patches-unapplied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u3 to debian/wheezy

Imported using usd-importer.

Publish parent: 893dd2d0d381169a1f5e35896e70f89057e651ce

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2014-8500: Failure to place limits on delegation chaining can allow an
    attacker to crash BIND or cause memory exhaustion.

838aa18... by Salvatore Bonaccorso

Import patches-applied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u2 to applied/debian/wheezy

Imported using usd-importer.

Publish parent: d3cb885fb20207f3fd3f7051487a3d17c177a5c9
Unapplied parent: 893dd2d0d381169a1f5e35896e70f89057e651ce

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2014-0591: named crash when handling malformed NSEC3-signed zones.
    A remote attacker could use this flaw against an authoritative name
    server that served NCES3-signed zones by sending a specially crafted
    query, which, when processed, would cause named to crash. (Closes: #735190)

893dd2d... by Salvatore Bonaccorso

Import patches-unapplied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u2 to debian/wheezy

Imported using usd-importer.

Publish parent: fe9f24cbec677cc701c2765ca3dccd7a78d49092

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2014-0591: named crash when handling malformed NSEC3-signed zones.
    A remote attacker could use this flaw against an authoritative name
    server that served NCES3-signed zones by sending a specially crafted
    query, which, when processed, would cause named to crash. (Closes: #735190)

d3cb885... by Salvatore Bonaccorso

Import patches-applied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u1 to applied/debian/wheezy

Imported using usd-importer.

Publish parent: 8fc937f6a7307c39ad0c40e246383b37285c8e6f
Unapplied parent: fe9f24cbec677cc701c2765ca3dccd7a78d49092

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2013-4854: A specially crafted query that includes malformed rdata can
    cause named to terminate with an assertion failure while rejecting the
    malformed query. (Closes: #717936).

fe9f24c... by Salvatore Bonaccorso

Import patches-unapplied version 1:9.8.4.dfsg.P1-6+nmu2+deb7u1 to debian/wheezy

Imported using usd-importer.

Publish parent: 091384887765ce5717169fd23be59f49d5fa4b3d

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2013-4854: A specially crafted query that includes malformed rdata can
    cause named to terminate with an assertion failure while rejecting the
    malformed query. (Closes: #717936).