Commit Graph

4892 Commits

Author SHA1 Message Date
Tinderbox User
3765187b5f regen v9_9 2017-06-29 00:18:14 +00:00
Tinderbox User
70780d51ce regen v9_9 2017-06-28 01:38:10 +00:00
Evan Hunt
a3f30d1aac [v9_9] address TSIG bypass/forgery vulnerabilities
4643.	[security]	An error in TSIG handling could permit unauthorized
			zone transfers or zone updates. (CVE-2017-3142)
			(CVE-2017-3143) [RT #45383]

(cherry picked from commit 581c1526ab)
(cherry picked from commit a03f4b1ea4)
2017-06-27 11:41:31 -07:00
Tinderbox User
2771704850 regen v9_9 2017-06-26 03:04:09 +00:00
Tinderbox User
524ca73aa1 regen v9_9 2017-05-31 01:33:20 +00:00
Evan Hunt
ef0f8427a2 [v9_9] quote service registry paths
4532.	[security]	The BIND installer on Windows used an unquoted
                        service path, which can enable privilege escalation.
			(CVE-2017-3141) [RT #45229]

(cherry picked from commit 967a3b9419)
(cherry picked from commit c28e44f3f8)
2017-05-30 13:39:28 -07:00
Evan Hunt
10f80ef83a [v9_9] fix rpz formerr loop
4531.	[security]	Some RPZ configurations could go into an infinite
			query loop when encountering responses with TTL=0.
			(CVE-2017-3140) [RT #45181]

(cherry picked from commit 3440cf9c60)
(cherry picked from commit a57b289ed0)
2017-05-30 12:43:57 -07:00
Tinderbox User
5b695651e8 regen v9_9 2017-05-19 01:38:05 +00:00
Tinderbox User
8b6ad36c54 update copyright notice / whitespace 2017-05-18 23:47:36 +00:00
Evan Hunt
6ef33666bf [v9_9] remove outdated reference to libbind
(cherry picked from commit ef9ab10ce0)
2017-05-18 15:35:40 -07:00
Tinderbox User
6894f45100 regen v9_9 2017-05-11 01:37:50 +00:00
Mark Andrews
c3a2924e00 add warning about semicolon no longer being escaped
(cherry picked from commit d4d73bca79)
2017-05-11 11:03:18 +10:00
Evan Hunt
02cb20760b [v9_9] change markdown comment style for pandoc 2017-04-27 23:44:39 -07:00
Evan Hunt
5c08c59442 [v9_9] update copyrights that had been missed recently 2017-04-23 17:14:54 -07:00
Tinderbox User
65d4abb881 update copyright notice / whitespace 2017-04-23 23:47:17 +00:00
Tinderbox User
1966cf8c5e regen v9_9 2017-04-23 01:21:17 +00:00
Tinderbox User
d77ee7c663 update copyright notice / whitespace 2017-04-21 23:47:35 +00:00
Evan Hunt
ae7d8f92d7 [v9_9] auto-generate named.conf.docbook
4603.	[doc]		Automatically generate named.conf(5) man page
			from doc/misc/options. Thanks to Tony Finch.
			[RT #43525]
2017-04-21 16:40:43 -07:00
Evan Hunt
9ad188ccaf [v9_9] give threads unique names to assist debugging
4602.	[func]		Threads are now set to human-readable
			names to assist debugging, when supported by
			the OS. [RT #43234]

(cherry picked from commit d26ae7fc08)
(cherry picked from commit 8b9c4592ed)
2017-04-21 14:00:54 -07:00
Evan Hunt
dc0a308b9a [v9_9] clear out relnotes 2017-04-21 13:39:29 -07:00
Evan Hunt
6f90648dbd [v9_9] update README, remove FAQ
4593.	[doc]		Update README using markdown, remove outdated FAQ
			file in favor of the knowledge base.
2017-04-20 19:50:55 -07:00
Tinderbox User
cf0cd17b7f regenerate 2017-04-20 18:32:49 +00:00
Tinderbox User
75c0725265 regen v9_9 2017-04-20 18:32:46 +00:00
Evan Hunt
78354abccc [v9_9] update EOL date 2017-04-20 11:26:10 -07:00
Tinderbox User
1a7c6f9dc8 regenerate 2017-04-14 03:50:56 +00:00
Tinderbox User
9bd65261f6 regen v9_9 2017-04-14 03:50:52 +00:00
Tinderbox User
a27daee583 regen v9_9 2017-04-12 21:35:56 +00:00
Evan Hunt
835485d6a7 [v9_9] formatting
(cherry picked from commit 52e398c0af)
2017-04-12 14:06:18 -07:00
Tinderbox User
42bd0776fd regen v9_9 2017-04-12 01:20:23 +00:00
Tinderbox User
abaf4a6a5c regenerate 2017-03-29 22:14:10 +00:00
Tinderbox User
1e6bd6b53a regen v9_9 2017-03-29 22:14:08 +00:00
Mark Andrews
91adc7a4da add CVE-2017-3138
(cherry picked from commit fe1ad70e51)
2017-03-30 02:57:16 +11:00
Tinderbox User
fbe9182ffd regen v9_9 2017-03-15 01:24:19 +00:00
Tinderbox User
ba9be2be7e regen v9_9 2017-03-01 02:26:17 +00:00
Tinderbox User
7eea1026e7 regen v9_9 2017-03-01 01:19:35 +00:00
Tinderbox User
9f77d925fa regenerate 2017-02-24 02:40:48 +00:00
Tinderbox User
fe5d457dd8 regen v9_9 2017-02-24 01:19:56 +00:00
Evan Hunt
fcf1874867 [v9_9] remove unnecessary INSIST and prep 9.11.1rc2
4578.	[security]	Some chaining (CNAME or DNAME) responses to upstream
			queries could trigger assertion failures.
			(CVE-2017-3137) [RT #44734]

(cherry picked from commit a1365a0042)
(cherry picked from commit 559cbe04e7)
2017-02-23 15:26:55 -08:00
Tinderbox User
b2526c1003 regen v9_9 2017-02-16 01:47:16 +00:00
Mark Andrews
52e42f648b add CVE-2017-3136 note
(cherry picked from commit d77eadc261)
2017-02-15 12:45:20 +11:00
Tinderbox User
776ae3c697 regen v9_9 2017-02-08 01:19:36 +00:00
Evan Hunt
02f0aa2ed3 [v9_9] doc style 2017-02-07 08:19:39 -08:00
Tinderbox User
d3a3f28ce8 regen v9_9 2017-02-07 01:17:31 +00:00
Evan Hunt
0220addcca [v9_9] removed extra note about bind.keys update 2017-02-06 14:19:39 -08:00
Tinderbox User
dea5b9d33d regenerate 2017-02-05 07:00:55 +00:00
Tinderbox User
6fdbc667fb regen v9_9 2017-02-05 06:55:18 +00:00
Evan Hunt
3b1b532d66 [v9_9] release note about new root key 2017-02-04 22:16:06 -08:00
Tinderbox User
64258a6b83 regen v9_9 2017-02-04 01:22:01 +00:00
Mark Andrews
182d657891 remove outdated cvs $Id strings 2017-02-03 18:44:36 +11:00
Tinderbox User
3afe116624 regen v9_9 2017-02-03 01:19:22 +00:00