New changelog entries:
* Fix CVE-2016-1285: error parsing control channel input.
* Fix CVE-2016-1286: error parsing DNAME resource records.
* Non-maintainer upload by the Security Team.
* CVE-2015-8704: Specific APL data could trigger an INSIST in apl_42.c.
A buffer size check used to guard against overflow could cause named to
exit with an INSIST failure In apl_42.c.
New changelog entries:
* Non-maintainer upload by the Security Team.
* Add patch to fix CVE-2015-8000.
CVE-2015-8000: Insufficient testing when parsing a message allowed
records with an incorrect class to be be accepted, triggering a REQUIRE
failure when those records were subsequently cached.
* CVE-2015-5722
New changelog entries:
* Non-maintainer upload by the Security Team.
* CVE-2015-5477: A failure to reset a value to NULL in tkey.c could
result in an assertion failure.
* Non-maintainer upload by the Security Team.
* CVE-2015-4620: Specially constructed zone data can cause a resolver to
crash when validating.
dd19ad7...
by
Michael Gilbert <email address hidden>
Import patches-unapplied version 1:9.9.5.dfsg-9 to debian/jessie
New changelog entries:
* Launch rndc command in the background in networking scripts to avoid a
hang in named from bringing down the entire network (closes: #760555).
8b14069...
by
Michael Gilbert <email address hidden>
Import patches-unapplied version 1:9.9.5.dfsg-7 to debian/jessie
New changelog entries:
* Fix CVE-2014-8500: limit recursion in order to avoid memory consuption
issues that can lead to denial-of-service (closes: #772610).
ea27b21...
by
Michael Gilbert <email address hidden>
Import patches-unapplied version 1:9.9.5.dfsg-6 to debian/jessie
