update for re-tag of 9.7.4rc1

2011-06-16 01:28:42 +00:00
parent 011f157473
commit 2b24897c64
3 changed files with 27 additions and 31 deletions
--- a/RELEASE-NOTES-BIND-9.7.4.html
+++ b/RELEASE-NOTES-BIND-9.7.4.html
@@ -1,26 +1,8 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
-<!--
- - Copyright (C) 2011  Internet Systems Consortium, Inc. ("ISC")
- -
- - Permission to use, copy, modify, and/or distribute this software for any
- - purpose with or without fee is hereby granted, provided that the above
- - copyright notice and this permission notice appear in all copies.
- -
- - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
- - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
- - AND FITNESS.  IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
- - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
- - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
- - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
- - PERFORMANCE OF THIS SOFTWARE.
-->
-
-<!-- $Id: RELEASE-NOTES-BIND-9.7.4.html,v 1.1.2.4 2011/05/31 01:04:36 tbox Exp $ -->
-
 <html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title></title><link rel="stylesheet" href="release-notes.css" type="text/css" /><meta name="generator" content="DocBook XSL Stylesheets V1.75.2" /></head><body><div class="article"><div class="titlepage"><hr /></div>

-  <div class="section" title="Introduction"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id2730920"></a>Introduction</h2></div></div></div>
+  <div class="section" title="Introduction"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353634"></a>Introduction</h2></div></div></div>
    
    <p>
 			BIND 9.7.4rc1 is the first release candidate of BIND 9.7.4.
@@ -32,7 +14,7 @@
 		</p>
  </div>

-  <div class="section" title="Download"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597421"></a>Download</h2></div></div></div>
+  <div class="section" title="Download"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353598"></a>Download</h2></div></div></div>
    
    <p>
                       The latest version of BIND 9 software can always be found
@@ -44,7 +26,7 @@
 		</p>
  </div>

-  <div class="section" title="Support"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597466"></a>Support</h2></div></div></div>
+  <div class="section" title="Support"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353705"></a>Support</h2></div></div></div>
    
    <p>Product support information is available on
      <a class="ulink" href="http://www.isc.org/services/support" target="_top">http://www.isc.org/services/support</a>
@@ -55,9 +37,9 @@
    </p>
  </div>

-  <div class="section" title="New Features"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597410"></a>New Features</h2></div></div></div>
+  <div class="section" title="New Features"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353826"></a>New Features</h2></div></div></div>
    
-		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id3597432"></a>9.7.4rc1</h3></div></div></div>
+		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id1353831"></a>9.7.4rc1</h3></div></div></div>
 			
 	    <div class="itemizedlist"><ul class="itemizedlist" type="disc"><li class="listitem">
 A new test has been added to check the apex NSEC3 records after DNSKEY
@@ -70,9 +52,9 @@ of how named handles them.
 		</div>
  </div>

-  <div class="section" title="Feature Changes"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597530"></a>Feature Changes</h2></div></div></div>
+  <div class="section" title="Feature Changes"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353851"></a>Feature Changes</h2></div></div></div>
    
-		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id3597535"></a>9.7.4rc1</h3></div></div></div>
+		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id1353856"></a>9.7.4rc1</h3></div></div></div>
 			
 	    <div class="itemizedlist"><ul class="itemizedlist" type="disc"><li class="listitem">
 Merged in the NetBSD ATF test framework (currently
@@ -89,11 +71,15 @@ Replaced compile time constant with STDTIME_ON_32BITS.
 		</div>
  </div>

-  <div class="section" title="Security Fixes"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597562"></a>Security Fixes</h2></div></div></div>
+  <div class="section" title="Security Fixes"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353653"></a>Security Fixes</h2></div></div></div>
    
-		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id3597567"></a>9.7.4rc1</h3></div></div></div>
+		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id1353865"></a>9.7.4rc1</h3></div></div></div>
 			
 			<div class="itemizedlist"><ul class="itemizedlist" type="disc"><li class="listitem">
+Change #2912 (see CHANGES) exposed a latent bug in the DNS message
+processing code that could allow certain UPDATE requests to crash named.
+[RT #24777] [CVE-2011-2464]
+</li><li class="listitem">
 named, set up to be a caching resolver, is vulnerable to a
 user querying a domain with very large resource record sets (RRSets)
 when trying to negatively cache the response. Due to an off-by-one
@@ -103,11 +89,15 @@ error, caching the response could cause named to crash. [RT #24650]
 		</div>
  </div>

-  <div class="section" title="Bug Fixes"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597586"></a>Bug Fixes</h2></div></div></div>
+  <div class="section" title="Bug Fixes"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353886"></a>Bug Fixes</h2></div></div></div>
    
-		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id3597591"></a>9.7.4rc1</h3></div></div></div>
+		<div class="section" title="9.7.4rc1"><div class="titlepage"><div><div><h3 class="title"><a id="id1353891"></a>9.7.4rc1</h3></div></div></div>
 			
 	    <div class="itemizedlist"><ul class="itemizedlist" type="disc"><li class="listitem">
+Improved the mechanism for flagging database entries as negative
+cache records; the former method, RR type 0, could be ambiguous.
+[RT #24777]
+</li><li class="listitem">
 During RFC5011 processing some journal write errors were not detected.
 This could lead to managed-keys changes being committed but not 
 recorded in the journal files, causing potential inconsistencies  
@@ -300,14 +290,14 @@ without using DLV and had DS records in the parent zone. [RT #24631]
 		</div>
  </div>

-  <div class="section" title="Known issues in this release"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597601"></a>Known issues in this release</h2></div></div></div>
+  <div class="section" title="Known issues in this release"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1353907"></a>Known issues in this release</h2></div></div></div>
    
    <div class="itemizedlist"><ul class="itemizedlist" type="disc"><li class="listitem">
 None
      </li></ul></div>
  </div>

-  <div class="section" title="Thank You"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id3597901"></a>Thank You</h2></div></div></div>
+  <div class="section" title="Thank You"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a id="id1354136"></a>Thank You</h2></div></div></div>
    
    <p>
      Thank you to everyone who assisted us in making this release possible.
--- a/RELEASE-NOTES-BIND-9.7.4.pdf
+++ b/RELEASE-NOTES-BIND-9.7.4.pdf
--- a/RELEASE-NOTES-BIND-9.7.4.txt
+++ b/RELEASE-NOTES-BIND-9.7.4.txt
@@ -47,6 +47,9 @@ Security Fixes

 9.7.4rc1

+     * Change #2912 (see CHANGES) exposed a latent bug in the DNS message
+       processing code that could allow certain UPDATE requests to crash
+       named. [RT #24777] [CVE-2011-2464]
     * named, set up to be a caching resolver, is vulnerable to a user
       querying a domain with very large resource record sets (RRSets)
       when trying to negatively cache the response. Due to an off-by-one
@@ -57,6 +60,9 @@ Bug Fixes

 9.7.4rc1

+     * Improved the mechanism for flagging database entries as negative
+       cache records; the former method, RR type 0, could be ambiguous.
+       [RT #24777]
     * During RFC5011 processing some journal write errors were not
       detected. This could lead to managed-keys changes being committed
       but not recorded in the journal files, causing potential