ubuntu/+source/bind9:ubuntu/feisty-devel

Last commit made on 2008-07-08
Get this branch:
git clone -b ubuntu/feisty-devel https://git.launchpad.net/ubuntu/+source/bind9
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/feisty-devel
Repository:
lp:ubuntu/+source/bind9

Recent commits

ae3609b... by LaMont Jones on 2008-07-07

Import patches-unapplied version 1:9.3.4-2ubuntu2.3 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 4e3a511a1ee314dd3f29a3c64e7d9b9802d6fd81

New changelog entries:
  * SECURITY UPDATE: Randomize UDP query source ports to improve forgery resilience.
  * References
    CVE-2008-1447

4e3a511... by Soren Hansen on 2008-01-11

Import patches-unapplied version 1:9.3.4-2ubuntu2.2 to ubuntu/feisty-proposed

Imported using git-ubuntu import.

Changelog parent: 3dd45c59ec47f091eb59cbb9dbd4fb6a9983355e

New changelog entries:
  * l.root-servers.net. got a new IP. (LP #160176)

3dd45c5... by Kees Cook on 2007-07-24

Import patches-unapplied version 1:9.3.4-2ubuntu2.1 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: c24c7976c9c860c9e2ed9ebdffcec5a4b0fa82b4

New changelog entries:
  * SECURITY UPDATE: query responses could be forged remotely.
  * bin/named/client.c, lib/dispatch.c, lib/include/dispatch.h:
    upstream fixes back ported.
  * References
    CVE-2007-2926

c24c797... by Martin Pitt on 2007-02-20

Import patches-unapplied version 1:9.3.4-2ubuntu2 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 0f3104c606ec477d65aa699d871a8ccf77a4d7a9

New changelog entries:
  * debian/control: Update maintainer fields according to debian-
    maintainer-field spec.

0f3104c... by Kees Cook on 2007-01-31

Import patches-unapplied version 1:9.3.4-2ubuntu1 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: bb967187e8531377608b887eecd8add2f5192109

New changelog entries:
  * Merge from debian unstable, remaining changes:
    - debian/named.conf.options: by default, only allow recursion on localnet
  * Actually really do the merge of 9.3.4. Sigh. Closes: #408925
  * New upstream version. Addresses CVE-2007-0493 CVE-2007-0494

bb96718... by Michael Vogt on 2006-12-20

Import patches-unapplied version 1:9.3.3-1ubuntu1 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 489f6fd6aef78bafba968327b9e03ae20b4884d2

New changelog entries:
  * Merge from debian unstable, remaining changes:
    - debian/named.conf.options: allow recursion only on localnets.
  * New upstream version

489f6fd... by Matthias Klose on 2006-12-06

Import patches-unapplied version 1:9.3.2-P1.0-1ubuntu1 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: fcd71d105c61059a31abad5af7c7d6528378a668

New changelog entries:
  * Merge with Debian unstable; remaining changes:
    - debian/named.conf.options: allow recursion only on localnets.

  * Fix README.Debian to point to the URL. Closes: #387437
  * Strip rfc's from orig.tar.gz. Closes: #393359
  * Fix init script output. Closes: #354192
    Thanks to Joey Hess for the patch.
  * Default install should listen on ipv6 interfaces. Closes: #382438
  * New upstream, fixes CVE-2006-4095 and CVE-2006-4096.
    Closes: #386237, #386245
  * Drop gcc-3.4 [powerpc] dependency. Closes: #342957, #372203
  * Add -fno-strict-aliasing for type-punned pointer aliasing issues
    Closes: #386224
  * Use getent in postinst instead of chown/chgrp. Closes: #386091, #239665
  * Drop redundant update-rc.d calls. Closes: #356914

fcd71d1... by Matthias Klose on 2006-11-02

Import patches-unapplied version 1:9.3.2-2ubuntu4 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 88a601502e2f81b386a3882ac1257a51a48fcb7a

New changelog entries:
  * Rebuild for ldbl128 change on powerpc and sparc.

88a6015... by Kees Cook on 2006-09-28

Import patches-unapplied version 1:9.3.2-2ubuntu3 to ubuntu/edgy

Imported using git-ubuntu import.

Changelog parent: 025ef1a0a62f95a73eaeb9e3983fa98185fd38f0

New changelog entries:
  * SECURITY UPDATE: name servers accessible from the Internet could be
    used as an amplifier in DDoS attacks against other networks.
  * debian/named.conf.options: allow recursion only on localnets. This
    matches the default configuration of listening on all interfaces, and
    gives a reasonable balance between allowing local recursion, and
    protecting the server from being used in a DDoS attack.
  * References
    CVE-2006-0987
    http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=248899

025ef1a... by Martin Pitt on 2006-09-07

Import patches-unapplied version 1:9.3.2-2ubuntu2 to ubuntu/edgy

Imported using git-ubuntu import.

Changelog parent: 796403a9a7f5d778f4b0b7cabed56fc15859b94d

New changelog entries:
  * SECURITY UPDATE:
  * bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
    to fix the following flaws:
    - A remote user (DNS server) can send specially crafted RRset responses in
      return to a recursive SIG query to cause the requesting named service to
      crash [CVE-2006-4095].
    - A remote user can also send specially crafted queries to trigger an
      INSIST failure and cause the requesting service(s) to crash
      [CVE-2006-4096].