lp:ubuntu/raring-updates/bind9
- Get this branch:
- bzr branch lp:ubuntu/raring-updates/bind9
Branch merges
Branch information
Recent revisions
- 59. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service when processing NSEC3-signed zone
queries
- debian/patches/ CVE-2014- 0591.patch: don't call memcpy with
overlapping ranges in bin/named/query.c.
- patch backported from 9.9.4-P2.
- CVE-2014-0591 - 58. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via incorrect bounds checking on
private type 'keydata'
- lib/dns/rdata/generic/ keydata_ 65533.c: check for correct length.
- Patch backported from 9.9.3-P2
- CVE-2013-4854 - 57. By Robie Basak
-
* configure.in: detect libxml 2.9 as well as 2.[678] (LP: #1164475).
* debian/control: add Build-Depends on dh-autoreconf.
* debian/rules: use dh_autoreconf and dh_autoreconf_clean. - 56. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via regex syntax checking
- configure,configure. in,config. h.in: remove check for regex.h to
disable regex syntax checking.
- CVE-2013-2266 - 55. By LaMont Jones
-
[Michael Gilbert]
* Use /var/lib/bind for state file. Closes: #689332
[LaMont Jones]
* zone transfers now involve link(), update the apparmor profile
* Update db.root with new IP for D.root-servers.net. Closes: #697352
* re-drop dlzexternal test
* Reduce log level for "sucessfully validated after lower casing" dnssec
based on mail from Mark Andrews. Closes: #697681
* remove /var/lib/bind/bind9- default. md5sum in postrm
* remove /etc/bind/named.conf. options on purge. Closes: #668801 [Sebastian Wiesinger]
* Build and deliver dnssec-checkds and dnssec-verify in bind9utils
- 54. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via DNS64 and crafted query
- bin/named/query.c: init rdataset before cleanup.
- Patch backported from 9.8.4-P1
- CVE-2012-5688 - 53. By Marc Deslauriers
-
* Merge from Debian unstable. Remaining changes:
- debian/bind9.apport: Add AppArmor info and logs to apport hook. - 52. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via specific combinations of RDATA
- bin/named/query.c: fix logic
- Patch backported from 9.8.3-P4
- CVE-2012-5166 - 51. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via large crafted resource record
- check length in lib/dns/include/ dns/rdata. h,
lib/dns/{master, rdata,rdataslab }.c. Added tests to
lib/dns/tests/ Makefile. in, lib/dns/ tests/{ master, rdata}_ test.c,
lib/dns/tests/ testdata/ master/ master1{ 5,6}.data.
- Patch backported from 9.8.3-P3
- CVE-2012-4244
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/saucy/bind9