ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
23,752 Commits 589 Branches 805 Tags
40b40b51bbdfa7ffee0953efd2f5bdfe792ffdbc
Commit Graph

92 Commits

Author SHA1 Message Date
Evan Hunt
f88b79ab08 [v9_10] remove reporter's name per his request 2016-01-29 10:37:45 -08:00
Evan Hunt
6f39162aaf [v9_10] fix ticket number 2016-01-05 09:08:57 -08:00
Evan Hunt
79e824b2eb [v9_10] fix use after free on xfr timeout 
4289.	[bug]		The server could crash due to memory being used
			after it was freed if a zone transfer timed out.
			[RT #41297]
 2016-01-04 22:06:05 -08:00
Tinderbox User
e11aa3e52c fix tag mismatch 2016-01-05 01:30:22 +00:00
Evan Hunt
0dd38adbe7 [v9_10] Merge branch 'v9_10' of ssh://repo/proj/git/prod/bind9 into v9_10 2016-01-04 16:10:05 -08:00
Evan Hunt
b4cf962eef [v9_10] fixed bogus server regression 
4288.	[bug]		Fixed a regression in resolver.c:possibly_mark()
			which caused known-bogus servers to be queried
			anyway. [RT #41321]
 2016-01-04 16:01:38 -08:00
Evan Hunt
e81fd88813 [v9_10] clean up relnotes to include only things added since 9.10.3 2016-01-04 16:00:33 -08:00
Tinderbox User
add1f7a8d2 update copyright notice / whitespace 2016-01-04 23:45:56 +00:00
Evan Hunt
ae14e490cc [v9_10] clean up notes 2016-01-03 21:22:55 -08:00
Mark Andrews
a9eeaea7d6 4286. [security] render_ecs errors were mishandled when printing out 
a OPT record resulting in a assertion failure.
                        (CVE-2015-8705) [RT #41397]

(cherry picked from commit 3e0c1603a8)
 2015-12-31 22:19:31 +11:00
Mark Andrews
b248438052 remove period 2015-12-31 14:34:44 +11:00
Mark Andrews
8725470692 4285. [security] Specific APL data could trigger a INSIST. 
(CVE-2015-8704) [RT #41396]

(cherry picked from commit 1b3d211802)
 2015-12-31 13:45:36 +11:00
Evan Hunt
a65eda95d0 [v9_10] fix geoip options 
4284.	[bug]		Some GeoIP options were incorrectly documented
			using abbreviated forms which were not accepted by
			named.  The code has been updated to allow both
			long and abbreviated forms. [RT #41381]
 2015-12-26 10:51:30 -08:00
Mukund Sivaraman
f2d05dbb6f Update notes.xml for #40996 
(cherry picked from commit 6960e7fd12)
 2015-12-15 18:07:06 +05:30
Evan Hunt
4db36f766e [v9_10] disallow map zones in response-policy 
4269.	[bug]		Zones using "map" format master files currently
			don't work as policy zones.  This limitation has
			now been documented; attempting to use such zones
			in "response-policy" statements is now a
			configuration error.  [RT #38321]
 2015-12-02 21:10:43 -08:00
Mark Andrews
19cce81c83 update description 
(cherry picked from commit 7bde79b32a)
 2015-12-03 15:43:12 +11:00
Mark Andrews
2b478a7e20 Add CVE-2015-8461 
(cherry picked from commit ff2f98076c)
 2015-12-03 15:31:47 +11:00
Mark Andrews
ef070eb5e7 spelling 
(cherry picked from commit cbc660172d)
 2015-11-20 14:55:48 +11:00
Mark Andrews
a089f3bc84 note the address changes for H.ROOT-SERVERS.NET 
(cherry picked from commit b57276f89e)
 2015-11-18 11:09:13 +11:00
Evan Hunt
76ac8417e1 [v9_10] typo 2015-11-16 18:21:41 -08:00
Mark Andrews
3a4c24c4a5 4260. [security] Insufficient testing when parsing a message allowed 
records with an incorrect class to be be accepted,
                        triggering a REQUIRE failure when those records
                        were subsequently cached. (CVE-2015-8000) [RT #4098]

(cherry picked from commit c8821d124c)
 2015-11-16 13:21:54 +11:00
Mark Andrews
96195d06ec cleanup trailing white space in SGML like files 2015-10-22 16:11:02 +11:00
Tinderbox User
92c7eabe72 update copyright notice / whitespace 2015-10-06 23:45:53 +00:00
Evan Hunt
cb2b92bcd0 [v9_10] upgrade doc toolchain 
4237.	[doc]		Upgraded documentation toolchain to use DocBook 5
			and dblatex. [RT #40766]
 2015-10-05 22:00:42 -07:00
Mukund Sivaraman
450f4f0ef8 Fix notes and CHANGES for #40761 
(cherry picked from commit 56ebb560a1)
 2015-10-06 05:45:39 +05:30
Mukund Sivaraman
4039647930 Update the default value for number of UDP listeners (#40761) 
(cherry picked from commit 930719e876)
 2015-10-03 07:13:14 +05:30
Mark Andrews
7677f0083f 4217. [protocol] Add support for CSYNC. [RT #40532] 
(cherry picked from commit f6e45a5c54)
 2015-09-18 23:47:54 +10:00
Mark Andrews
5641a85a11 4214. [protocol] Add support for TALINK. [RT #40544] 
(cherry picked from commit e0a30050c8)
 2015-09-18 07:45:47 +10:00
Mark Andrews
8431a9d3c1 4199. [protocol] Add support for NINFO, RKEY, SINK, TA. 
[RT #40545] [RT #40547] [RT #40561] [RT #40563]

(cherry picked from commit 5a49f61ca9)
 2015-09-11 17:36:18 +10:00
Mark Andrews
64a3134529 4201. [func] The default preferred-glue is now the address record 
type of the transport the query was received
                        over.  [RT #40468]

(cherry picked from commit a0ef8211d3)
 2015-09-11 13:28:24 +10:00
Mark Andrews
279b537999 4200. [cleanup] win32: update BINDinstall to be BIND release 
independent. [RT #38915]

(cherry picked from commit 3fa134363f)
 2015-09-11 12:27:06 +10:00
Mark Andrews
0f6e4cb5bd 4199. [protocol] Add support for NINFO, RKEY, TA. 
[RT #40545] [RT #40547] [RT #40563]

(cherry picked from commit 3dd63ba00f)
 2015-09-10 17:59:44 +10:00
Mark Andrews
9a95c605e8 4199. [protocol] Add support for NINFO, RKEY. [RT #40547] [RT #40563] 
(cherry picked from commit 63874956de)
 2015-09-10 17:08:02 +10:00
Mark Andrews
f00d028c20 4199. [protocol] Add support for RKEY. [RT #40563] 
(cherry picked from commit 8b29fc0b7a)
 2015-09-10 14:53:20 +10:00
Evan Hunt
bb4b0be101 [v9_10] fix incorrect bug ID 2015-08-27 10:22:58 -07:00
Evan Hunt
cf954d24ba [v9_10] relnotes 2015-08-25 13:34:34 -07:00
Evan Hunt
42802dd2e8 [v9_10] fix the o umlaut for HTML and TXT too 2015-08-14 19:58:12 -07:00
Evan Hunt
96f318b0c6 [v9_10] add CVE number 2015-08-13 15:31:15 -07:00
Tinderbox User
d3ba0ffc90 support umlaut 'o' 
(cherry picked from commit a73d9c0b4d)
 2015-08-14 05:52:16 +10:00
Evan Hunt
aaa8c27733 [v9_10] xml doesn't define ö 2015-08-12 18:16:38 -07:00
Evan Hunt
a51bed6650 [v9_10] fix length check in OPENPGPKEY 
4170.	[security]	An incorrect boundary check in the OPENPGPKEY
			rdatatype could trigger an assertion failure.
			[RT #40286]
 2015-08-11 20:02:39 -07:00
Evan Hunt
7163ce122d [v9_10] address buffer accounting error 
4168.	[security]	A buffer accounting error could trigger an
			assertion failure when parsing certain malformed
			DNSSEC keys. (CVE-2015-5722) [RT #40212]

(cherry picked from commit ce9f893e21)
 2015-08-07 13:23:03 -07:00
Evan Hunt
5d1a343762 [v9_10] remove spurious "None" 2015-08-06 14:16:55 -07:00
Evan Hunt
d9417d8311 [v9_10] revert incorrect 'correction' 2015-08-05 12:15:39 -07:00
Evan Hunt
be4ececeb0 [v9_10] corrected relnotes -- assertion in name.c not message.c 2015-07-31 12:03:44 -07:00
Mark Andrews
fba94b205b add CVE-2015-5477 2015-07-15 07:55:52 +10:00
Evan Hunt
83d0b1ab69 [v9_10] DDoS mitigation features 
3938.	[func]		Added quotas to be used in recursive resolvers
			that are under high query load for names in zones
			whose authoritative servers are nonresponsive or
			are experiencing a denial of service attack.

			- "fetches-per-server" limits the number of
			  simultaneous queries that can be sent to any
			  single authoritative server.  The configured
			  value is a starting point; it is automatically
			  adjusted downward if the server is partially or
			  completely non-responsive. The algorithm used to
			  adjust the quota can be configured via the
			  "fetch-quota-params" option.
			- "fetches-per-zone" limits the number of
			  simultaneous queries that can be sent for names
			  within a single domain.  (Note: Unlike
			  "fetches-per-server", this value is not
			  self-tuning.)
			- New stats counters have been added to count
			  queries spilled due to these quotas.

			These options are not available by default;
			use "configure --enable-fetchlimit" (or
			--enable-developer) to include them in the build.

			See the ARM for details of these options. [RT #37125]
 2015-07-08 22:55:31 -07:00
Mark Andrews
bb7971417a 4157. [protocol] Update experimental SIT code to use the EDNS COOKIE 
option code point (10).  This is the minimal change
                        required to use the new code point. [RT #39928]
 2015-07-07 15:43:04 +10:00
Mukund Sivaraman
f38cbc4cc9 Add comma 
(cherry picked from commit f4d1c19691)
 2015-06-17 12:26:14 +05:30
Mark Andrews
48f85bd5a2 add release notes for CVE-2015-4620 
(cherry picked from commit 572e95f52a)
 2015-06-17 11:20:44 +10:00