ubuntu/+source/bind9:applied/ubuntu/trusty-devel

Last commit made on 2019-02-22
Get this branch:
git clone -b applied/ubuntu/trusty-devel https://git.launchpad.net/ubuntu/+source/bind9
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/trusty-devel
Repository:
lp:ubuntu/+source/bind9

Recent commits

efb084a... by Marc Deslauriers on 2019-02-20

Import patches-applied version 1:9.9.5.dfsg-3ubuntu0.19 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 2a042c31e08bf0903092eb54bfe9c9cd2c6383b1
Unapplied parent: aa1a7890494b0984ba0e90e3f6d9576f6dc8494b

New changelog entries:
  * SECURITY UPDATE: assertion failure when a trust anchor rolls over to an
    unsupported key algorithm when using managed-keys
    - lib/dns/zone.c: enhance rfc 5011 logging
    - lib/dns/include/dst/dst.h, lib/dns/zone.c: properly handle situations
      when the key tag cannot be computed.
    - CVE-2018-5745
  * SECURITY UPDATE: Controls for zone transfers may not be properly
    applied to Dynamically Loadable Zones (DLZs) if the zones are writable
    - bin/named/xfrout.c: handle zone transfers marked in the zone table as
      a DLZ zone.
    - CVE-2019-6465

aa1a789... by Marc Deslauriers on 2019-02-20

Import patches-unapplied version 1:9.9.5.dfsg-3ubuntu0.19 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: ded96db9a2664bedb6d0053a62d2309893ddf5f2

New changelog entries:
  * SECURITY UPDATE: assertion failure when a trust anchor rolls over to an
    unsupported key algorithm when using managed-keys
    - lib/dns/zone.c: enhance rfc 5011 logging
    - lib/dns/include/dst/dst.h, lib/dns/zone.c: properly handle situations
      when the key tag cannot be computed.
    - CVE-2018-5745
  * SECURITY UPDATE: Controls for zone transfers may not be properly
    applied to Dynamically Loadable Zones (DLZs) if the zones are writable
    - bin/named/xfrout.c: handle zone transfers marked in the zone table as
      a DLZ zone.
    - CVE-2019-6465

2a042c3... by Marc Deslauriers on 2018-09-19

Import patches-applied version 1:9.9.5.dfsg-3ubuntu0.18 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 7777e5b48f339a7a688f364db22d2abbfc19ab56
Unapplied parent: ded96db9a2664bedb6d0053a62d2309893ddf5f2

New changelog entries:
  * SECURITY UPDATE: denial of service crash when deny-answer-aliases
    option is used
    - lib/dns/resolver.c: explicit DNAME query could trigger a crash if
      deny-answer-aliases was set
    - Patch backported from 9.9.13-P1.
    - CVE-2018-5740

ded96db... by Marc Deslauriers on 2018-09-19

Import patches-unapplied version 1:9.9.5.dfsg-3ubuntu0.18 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 7fb10de6676c8f534b6f0bb5e5bfdab50bdfef04

New changelog entries:
  * SECURITY UPDATE: denial of service crash when deny-answer-aliases
    option is used
    - lib/dns/resolver.c: explicit DNAME query could trigger a crash if
      deny-answer-aliases was set
    - Patch backported from 9.9.13-P1.
    - CVE-2018-5740

7777e5b... by Marc Deslauriers on 2018-01-16

Import patches-applied version 1:9.9.5.dfsg-3ubuntu0.17 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: c3259cd47d96d0b3023641bbb1fac3ae420201eb
Unapplied parent: 7fb10de6676c8f534b6f0bb5e5bfdab50bdfef04

New changelog entries:
  * SECURITY UPDATE: assertion failure via improper cleanup
    - lib/dns/resolver.c: fix cleanup handling.
    - Patch backported from 9.9.11-P1.
    - CVE-2017-3145

7fb10de... by Marc Deslauriers on 2018-01-16

Import patches-unapplied version 1:9.9.5.dfsg-3ubuntu0.17 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: b8bcd698c1ccaf4e7a71cf3e28abe2ba92c72a71

New changelog entries:
  * SECURITY UPDATE: assertion failure via improper cleanup
    - lib/dns/resolver.c: fix cleanup handling.
    - Patch backported from 9.9.11-P1.
    - CVE-2017-3145

c3259cd... by Marc Deslauriers on 2017-09-15

Import patches-applied version 1:9.9.5.dfsg-3ubuntu0.16 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 43bad0f49227f5ea2bb3b462496d871df857eb73
Unapplied parent: b8bcd698c1ccaf4e7a71cf3e28abe2ba92c72a71

New changelog entries:
  * SECURITY REGRESSION: regression in last security update
    - fix verification of TSIG signed TCP message sequences where not all
      the messages contain TSIG records in lib/dns/tsig.c, aded test to
      lib/dns/tests/Makefile.in, lib/dns/tests/tsig_test.c.
    - 6fcdcabc11f18eb128167f7f7eca4a244bf75c52
  * Update the built in managed keys to include the upcoming root KSK in
    bind.keys, bin/named/bind.keys.h.
    - 9543825c155c5c5ec42cc4d95fe6f0d52ef9b0a7

b8bcd69... by Marc Deslauriers on 2017-09-15

Import patches-unapplied version 1:9.9.5.dfsg-3ubuntu0.16 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 2bec1e0526784f4d8cb3f22b20625d0514982cc9

New changelog entries:
  * SECURITY REGRESSION: regression in last security update
    - fix verification of TSIG signed TCP message sequences where not all
      the messages contain TSIG records in lib/dns/tsig.c, aded test to
      lib/dns/tests/Makefile.in, lib/dns/tests/tsig_test.c.
    - 6fcdcabc11f18eb128167f7f7eca4a244bf75c52
  * Update the built in managed keys to include the upcoming root KSK in
    bind.keys, bin/named/bind.keys.h.
    - 9543825c155c5c5ec42cc4d95fe6f0d52ef9b0a7

43bad0f... by Marc Deslauriers on 2017-06-29

Import patches-applied version 1:9.9.5.dfsg-3ubuntu0.15 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 299a640558d50ab954b43d8d75a0c45b78ed39b4
Unapplied parent: 2bec1e0526784f4d8cb3f22b20625d0514982cc9

New changelog entries:
  * SECURITY UPDATE: TSIG authentication issues
    - lib/dns/dnssec.c, lib/dns/message.c, lib/dns/tsig.c: fix TSIG logic.
    - CVE-2017-3142
    - CVE-2017-3143

2bec1e0... by Marc Deslauriers on 2017-06-29

Import patches-unapplied version 1:9.9.5.dfsg-3ubuntu0.15 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: e24127338a71b4a5dba41e8073395f3e996afc46

New changelog entries:
  * SECURITY UPDATE: TSIG authentication issues
    - lib/dns/dnssec.c, lib/dns/message.c, lib/dns/tsig.c: fix TSIG logic.
    - CVE-2017-3142
    - CVE-2017-3143