ubuntu/+source/bind9:debian/sid

Last commit made on 2019-06-21
Get this branch:
git clone -b debian/sid https://git.launchpad.net/ubuntu/+source/bind9
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/sid
Repository:
lp:ubuntu/+source/bind9

Recent commits

83c6bec... by Salvatore Bonaccorso on 2019-06-21

Import patches-unapplied version 1:9.11.5.P4+dfsg-5.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7cb4b5026a6c6b9c70bae7dbb03689f6dc823bf3

New changelog entries:
  * Non-maintainer upload.
  * move item_out test inside lock in dns_dispatch_getnext() (CVE-2019-6471)
    (Closes: #930746)

7cb4b50... by Bernhard Schmidt <email address hidden> on 2019-05-03

Import patches-unapplied version 1:9.11.5.P4+dfsg-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c685259ee2a323fb1f026c9c00247d8bbde84e3a

New changelog entries:
  * AppArmor: Allow /var/tmp/krb5_* (owner-only) for Samba AD DLZ.
    Thanks to Steven Monai (Closes: 928398)

c685259... by Ondřej Surý on 2019-04-26

Import patches-unapplied version 1:9.11.5.P4+dfsg-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 6a3132455efe2815048a5ca778a0841870783c83

New changelog entries:
  [ Bernhard Schmidt ]
  * AppArmor: Also add /var/lib/samba/bind-dns/dns/** (Closes: #927827)
  [ Ondřej Surý ]
  * [CVE-2018-5743]: Limiting simultaneous TCP clients is ineffective
    (Closes: #927932)
  * Update symbols file for new symbol in libisc
  * Enable EDDSA again, but disable broken Ed448 support (Closes: #927962)

6a31324... by Bernhard Schmidt <email address hidden> on 2019-04-22

Import patches-unapplied version 1:9.11.5.P4+dfsg-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 98304217732e69828551461fa01ca6d48b85d5c9

New changelog entries:
  * More fixes to the AppArmor policy for Samba AD DLZ
    - allow access to /dev/urandom
    - allow locking for dns.keytab
    - fix path to smb.conf

9830421... by Bernhard Schmidt <email address hidden> on 2019-04-02

Import patches-unapplied version 1:9.11.5.P4+dfsg-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a2175fa9885401baf48515bdf997a9e29527cc21

New changelog entries:
  [ Ondřej Surý ]
  * Update d/gbp.conf for Debian Buster
  [ Bernhard Schmidt ]
  * Cherry-Pick upstream commit to prevent dnssec-keymgr from immediately
    expiring and deleting old DNSSEC keys when being run for the first
    time (Closes: #923984)
  * Update AppArmor policy for Samba AD DLZ
    - Add changed default location for named.conf
    - Allow read/mmap on some Samba libraries
    Thanks to Steven Monai (Closes: #920530)
  [ Andreas Beckmann ]
  * bind9.preinst: cope with ancient conffile named.conf.options
    (Closes: #905177)

a2175fa... by Bernhard Schmidt <email address hidden> on 2019-02-22

Import patches-unapplied version 1:9.11.5.P4+dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ebcfdaed808852dab2177f911c875bf606ff4d62

New changelog entries:
  [ Bernhard Schmidt ]
  * New upstream version 9.11.5.P4+dfsg
    - CVE-2018-5744: A specially crafted packet can cause named to leak memory
    - CVE-2018-5745: An assertion failure can occur if a trust anchor rolls over
      to an unsupported key algorithm when using managed-keys
    - CVE-2019-6465: Controls for zone transfers might not be properly applied
      to Dynamically Loadable Zones (DLZs) if the zones are writable.
  * d/watch: Do not use beta or RC versions
  * d/libdns1104.symbols: fix symbols-file-contains-debian-revision for dnstap
    symbols
  [ Ondřej Surý ]
  * Add new upstream GPG signing-key

ebcfdae... by Bernhard Schmidt <email address hidden> on 2019-02-11

Import patches-unapplied version 1:9.11.5.P1+dfsg-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0ff0197fd24b758ed4a06ff373dfa07da2531239

New changelog entries:
  [ Dominik George ]
  * Support dyndb modules with apparmor. (Closes: #900879)
  [ Bernhard Schmidt ]
  * apparmor-policy: permit locking of the allow-new-zones database
    (Closes: #922065)
  * apparmor-policy: allow access to Samba DLZ files (Closes: #920530)

0ff0197... by Ondřej Surý on 2018-12-18

Import patches-unapplied version 1:9.11.5.P1+dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: dabcad772a4b1329208dd0a234f50ba3f42cbfd9

New changelog entries:
  * New upstream version 9.11.5.P1+dfsg

dabcad7... by Ondřej Surý on 2018-10-22

Import patches-unapplied version 1:9.11.5+dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e28e6ef597116876b5e48d250d36179a22860ff6

New changelog entries:
  * Use <email address hidden> as Maintainer address
  * New upstream version 9.11.5+dfsg
  * Add EXTENSIONS= to version file programmatically, not with the patch
  * Rebase patches for BIND 9.11.5
  * Adjust package names for new SONAMEs

e28e6ef... by Bernhard Schmidt <email address hidden> on 2018-09-26

Import patches-unapplied version 1:9.11.4.P2+dfsg-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4e8d01c4bef698882e40866e8dfe5ec5d58c3b69

New changelog entries:
  * Also avoid OpenSSL 1.1.1 in udebs.
    Thanks to KiBi for the hint
  * autopkgtest: Make an external query and check for DNSSEC