New changelog entries:
* configure.in: detect libxml 2.9 as well as 2.[678] (LP: #1164475).
* debian/control: add Build-Depends on dh-autoreconf.
* debian/rules: use dh_autoreconf and dh_autoreconf_clean.
New changelog entries:
* SECURITY UPDATE: denial of service via regex syntax checking
- configure,configure.in,config.h.in: remove check for regex.h to
disable regex syntax checking.
- CVE-2013-2266
New changelog entries:
[Michael Gilbert]
* Use /var/lib/bind for state file. Closes: #689332
[LaMont Jones]
* zone transfers now involve link(), update the apparmor profile
* Update db.root with new IP for D.root-servers.net. Closes: #697352
* re-drop dlzexternal test
* Reduce log level for "sucessfully validated after lower casing" dnssec
based on mail from Mark Andrews. Closes: #697681
* remove /var/lib/bind/bind9-default.md5sum in postrm
* remove /etc/bind/named.conf.options on purge. Closes: #668801
[Sebastian Wiesinger]
* Build and deliver dnssec-checkds and dnssec-verify in bind9utils
New changelog entries:
[Marc Deslauriers]
* debian/bind9.apport: Add AppArmor info and logs to apport hook.
[LaMont Jones]
* Reduce log level for "sucessfully validated after lower casing" dnssec
based on mail from Mark Andrews. Closes: #697681
* remove /var/lib/bind/bind9-default.md5sum in postrm
* remove /etc/bind/named.conf.options on purge. Closes: #668801
New changelog entries:
[Michael Gilbert]
* Use /var/lib/bind for state file. Closes: #689332
[LaMont Jones]
* Re-enable dlopen, do not build the test that fails. Closes: #692416
* Update db.root with new IP for D.root-servers.net. Closes: #697352
New changelog entries:
* Named could die on specific queries with dns64 enabled.
[Addressed in change #3388 for BIND 9.8.5 and 9.9.3.]
CVE-2012-5688 Closes: #695192
New changelog entries:
* SECURITY UPDATE: denial of service via DNS64 and crafted query
- bin/named/query.c: init rdataset before cleanup.
- Patch backported from 9.8.4-P1
- CVE-2012-5688