diff options
| author | taca <taca@pkgsrc.org> | 2012-10-10 03:06:37 +0000 |
|---|---|---|
| committer | taca <taca@pkgsrc.org> | 2012-10-10 03:06:37 +0000 |
| commit | 6cc4eedcdac4f119b303002ceab5788259131012 (patch) | |
| tree | 4b4dd01b7f74f80ef3c760b533efe91cf4b51aef /net/bind99/PLIST | |
| parent | 5baf53d303fb6f080ddae8fb422145c6c8f0593f (diff) | |
| download | pkgsrc-6cc4eedcdac4f119b303002ceab5788259131012.tar.gz | |
Update bind98 package to 9.8.4.
Here are change changes from release note. Note security fixes except
CVE-2012-5166 should be already fixed in previous version of bind98 package.
Please refer https://kb.isc.org/article/AA-00797 for list of full bug fixes.
Security Fixes
* A deliberately constructed combination of records could cause named to hang
while populating the additional section of a response. [CVE-2012-5166] [RT
#31090]
* Prevents a named assert (crash) when queried for a record whose RDATA
exceeds 65535 bytes [CVE-2012-4244] [RT #30416]
* Prevents a named assert (crash) when validating caused by using "Bad cache"
data before it has been initialized. [CVE-2012-3817] [RT #30025]
* A condition has been corrected where improper handling of zero-length RDATA
could cause undesirable behavior, including termination of the named
process. [CVE-2012-1667] [RT #29644]
New Features
* Elliptic Curve Digital Signature Algorithm keys and signatures in DNSSEC are
now supported per RFC 6605. [RT #21918]
Feature Changes
* Improves OpenSSL error logging [RT #29932]
* nslookup now returns a nonzero exit code when it is unable to get an answer.
[RT #29492]
Diffstat (limited to 'net/bind99/PLIST')
0 files changed, 0 insertions, 0 deletions