Tinderbox User
524ca73aa1
regen v9_9
2017-05-31 01:33:20 +00:00
Evan Hunt
ef0f8427a2
[v9_9] quote service registry paths
...
4532. [security] The BIND installer on Windows used an unquoted
service path, which can enable privilege escalation.
(CVE-2017-3141) [RT #45229 ]
(cherry picked from commit 967a3b9419 )
(cherry picked from commit c28e44f3f8 )
2017-05-30 13:39:28 -07:00
Evan Hunt
10f80ef83a
[v9_9] fix rpz formerr loop
...
4531. [security] Some RPZ configurations could go into an infinite
query loop when encountering responses with TTL=0.
(CVE-2017-3140) [RT #45181 ]
(cherry picked from commit 3440cf9c60 )
(cherry picked from commit a57b289ed0 )
2017-05-30 12:43:57 -07:00
Tinderbox User
5b695651e8
regen v9_9
2017-05-19 01:38:05 +00:00
Tinderbox User
8b6ad36c54
update copyright notice / whitespace
2017-05-18 23:47:36 +00:00
Evan Hunt
6ef33666bf
[v9_9] remove outdated reference to libbind
...
(cherry picked from commit ef9ab10ce0 )
2017-05-18 15:35:40 -07:00
Tinderbox User
6894f45100
regen v9_9
2017-05-11 01:37:50 +00:00
Mark Andrews
c3a2924e00
add warning about semicolon no longer being escaped
...
(cherry picked from commit d4d73bca79 )
2017-05-11 11:03:18 +10:00
Tinderbox User
1966cf8c5e
regen v9_9
2017-04-23 01:21:17 +00:00
Evan Hunt
9ad188ccaf
[v9_9] give threads unique names to assist debugging
...
4602. [func] Threads are now set to human-readable
names to assist debugging, when supported by
the OS. [RT #43234 ]
(cherry picked from commit d26ae7fc08 )
(cherry picked from commit 8b9c4592ed )
2017-04-21 14:00:54 -07:00
Evan Hunt
dc0a308b9a
[v9_9] clear out relnotes
2017-04-21 13:39:29 -07:00
Tinderbox User
cf0cd17b7f
regenerate
2017-04-20 18:32:49 +00:00
Tinderbox User
75c0725265
regen v9_9
2017-04-20 18:32:46 +00:00
Evan Hunt
78354abccc
[v9_9] update EOL date
2017-04-20 11:26:10 -07:00
Tinderbox User
1a7c6f9dc8
regenerate
2017-04-14 03:50:56 +00:00
Tinderbox User
9bd65261f6
regen v9_9
2017-04-14 03:50:52 +00:00
Tinderbox User
a27daee583
regen v9_9
2017-04-12 21:35:56 +00:00
Evan Hunt
835485d6a7
[v9_9] formatting
...
(cherry picked from commit 52e398c0af )
2017-04-12 14:06:18 -07:00
Tinderbox User
42bd0776fd
regen v9_9
2017-04-12 01:20:23 +00:00
Tinderbox User
abaf4a6a5c
regenerate
2017-03-29 22:14:10 +00:00
Tinderbox User
1e6bd6b53a
regen v9_9
2017-03-29 22:14:08 +00:00
Mark Andrews
91adc7a4da
add CVE-2017-3138
...
(cherry picked from commit fe1ad70e51 )
2017-03-30 02:57:16 +11:00
Tinderbox User
fbe9182ffd
regen v9_9
2017-03-15 01:24:19 +00:00
Tinderbox User
ba9be2be7e
regen v9_9
2017-03-01 02:26:17 +00:00
Tinderbox User
7eea1026e7
regen v9_9
2017-03-01 01:19:35 +00:00
Tinderbox User
9f77d925fa
regenerate
2017-02-24 02:40:48 +00:00
Tinderbox User
fe5d457dd8
regen v9_9
2017-02-24 01:19:56 +00:00
Evan Hunt
fcf1874867
[v9_9] remove unnecessary INSIST and prep 9.11.1rc2
...
4578. [security] Some chaining (CNAME or DNAME) responses to upstream
queries could trigger assertion failures.
(CVE-2017-3137) [RT #44734 ]
(cherry picked from commit a1365a0042 )
(cherry picked from commit 559cbe04e7 )
2017-02-23 15:26:55 -08:00
Tinderbox User
b2526c1003
regen v9_9
2017-02-16 01:47:16 +00:00
Mark Andrews
52e42f648b
add CVE-2017-3136 note
...
(cherry picked from commit d77eadc261 )
2017-02-15 12:45:20 +11:00
Tinderbox User
776ae3c697
regen v9_9
2017-02-08 01:19:36 +00:00
Evan Hunt
02f0aa2ed3
[v9_9] doc style
2017-02-07 08:19:39 -08:00
Tinderbox User
d3a3f28ce8
regen v9_9
2017-02-07 01:17:31 +00:00
Evan Hunt
0220addcca
[v9_9] removed extra note about bind.keys update
2017-02-06 14:19:39 -08:00
Tinderbox User
dea5b9d33d
regenerate
2017-02-05 07:00:55 +00:00
Tinderbox User
6fdbc667fb
regen v9_9
2017-02-05 06:55:18 +00:00
Evan Hunt
3b1b532d66
[v9_9] release note about new root key
2017-02-04 22:16:06 -08:00
Tinderbox User
64258a6b83
regen v9_9
2017-02-04 01:22:01 +00:00
Mark Andrews
182d657891
remove outdated cvs $Id strings
2017-02-03 18:44:36 +11:00
Tinderbox User
3afe116624
regen v9_9
2017-02-03 01:19:22 +00:00
Mark Andrews
07f8c99017
new root KSK
2017-02-02 18:30:20 +11:00
Tinderbox User
861b9203ed
regen v9_9
2017-01-31 01:21:13 +00:00
Evan Hunt
a6bae6d52c
[v9_9] change 4558 was incomplete
...
(cherry picked from commit cd668ea57f )
2017-01-30 14:11:30 -08:00
Tinderbox User
61a5559acd
regen v9_9
2017-01-25 01:19:18 +00:00
Evan Hunt
4474e3aca7
[v9_9] expand relnote
...
(cherry picked from commit afa0ff0cbb )
2017-01-23 20:05:13 -08:00
Tinderbox User
152947d4f7
regen v9_9
2017-01-24 01:19:27 +00:00
Mark Andrews
4b843e0cc8
4556. [security] Combining dns64 and rpz can result in dereferencing
...
a NULL pointer (read). (CVE-2017-3135) [RT#44434]
(cherry picked from commit 5abe80ef13 )
2017-01-24 09:56:20 +11:00
Tinderbox User
e8946b7517
regen v9_9
2017-01-13 01:19:37 +00:00
Tinderbox User
0ed649b6e5
update copyright notice / whitespace
2017-01-12 23:48:25 +00:00
Mark Andrews
ab9537f521
4553. [bug] Named could deadlock there were multiple changes to
...
NSEC/NSEC3 parameters for a zone being processed at
the same time. [RT #42770 ]
(cherry picked from commit d2e1b47d4f )
2017-01-12 14:26:17 +11:00