SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for bind-utils-9.5.0P2-20.2.i586.rpm :
Wed Jan 20 13:00:00 2010 ugAATTsuse.de
- [security] Do not attempt to validate or cache
out-of-bailiwick data returned with a secure
answer; it must be re-fetched from its original
source and validated in that context. [RT #20819]
- [security] Cached CNAME or DNAME RR could be returned to clients
without DNSSEC validation. [RT #20737]
- [security] Bogus NXDOMAIN could be cached as if valid. [RT #20712]
- bnc#570912

Wed Nov 25 13:00:00 2009 ugAATTsuse.de
- Security fix
When validating, track whether pending data was from
the additional section or not and only return it if
validates as secure. [RT #20438]
CVE-2009-4022
bnc#558260

Wed Jul 29 14:00:00 2009 mtAATTsuse.de
- Security Vulnerability:
Dynamic Update DoS
(CVE-2009-0696, VU#725188, bnc#526185)

Wed Mar 25 13:00:00 2009 ugAATTsuse.de
- Security Vulnerability:
DNSSEC Lookaside Validation problem
(bnc#488599)
- mount /proc into chroot environment to support
multi CPU systems (bnc#470828)
- key names with spaces are allowed by genDDNSkey now
(bnc#459739)
- a missing /etc/named.conf.include could lead to an
error while \"restart\" (bnc#455888)
- /etc/named.conf does not include /etc/named.d/forwarders.conf
by default (bnc#480334)

Mon Feb 23 13:00:00 2009 ugAATTsuse.de
- bind XML stats did not work
(bnc#474571)

Thu Jan 8 13:00:00 2009 ugAATTsuse.de
- Security Vulnerability:
insecure usage of openssl, not checking return values
(bnc#464462)

Wed Dec 10 13:00:00 2008 olhAATTsuse.de
- use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade
(bnc#437293)

Wed Nov 26 13:00:00 2008 ugAATTsuse.de
- fix for removed /etc/named.d directory (bnc#448995)

Tue Nov 11 13:00:00 2008 roAATTsuse.de
- SLE-11 uses PPC64 instead of PPC, adapt baselibs.conf

Thu Oct 30 13:00:00 2008 olhAATTsuse.de
- obsolete old -XXbit packages (bnc#437293)

Wed Oct 1 14:00:00 2008 ugAATTsuse.de
- should start/stop fixed (bnc#430901)

Fri Sep 5 14:00:00 2008 mrueckertAATTsuse.de
- delete the static libraries aswell
- added missiong requires to the baselibs.conf

Mon Sep 1 14:00:00 2008 sschoberAATTsuse.de
- Create and copy /etc/named.conf.include to change root jail. Fix
by Frank Hollmann.

Mon Aug 18 14:00:00 2008 ugAATTsuse.de
- \"should-stop\" in lwresd init script fixed

Wed Aug 13 14:00:00 2008 sschoberAATTsuse.de
- Copy complete /etc/named.d to change root jail (bnc#408145).

Tue Aug 12 14:00:00 2008 ugAATTsuse.de
- performance improvement over the P1 releases, namely
+ significantly remedying the port allocation issues
+ allowing TCP queries and zone transfers while issuing as many
outstanding UDP queries as possible
+ additional security of port randomization at the same level as P1
- also includes fixes for several bugs in the 9.5.0 base code
- 9.5.0-P2

Sun Jul 27 14:00:00 2008 ajAATTsuse.de
- Remove .la files, they only introduce more problems and require
libxml2.la installation.

Wed Jul 16 14:00:00 2008 ugAATTsuse.de
- BIND 9.5 offers many new features, including many
behind-the-scenes improvements. For the most part, the non-visible
features help ISC\'s customers who have run into the upper-end of
what BIND 9.4 could handle.
See CHANGES for details
- Statistics Counters / server
- Cache cleaning enhancements
- GSS TSIG
- DHCID Resource Record (RR)
- Handling EDNS timeouts
- version 9.5.0

Mon Jun 9 14:00:00 2008 ugAATTsuse.de
- VUL-0: spoofing made easier due to non-random UDP
source port VU#800113 (bnc#396963)

Tue May 6 14:00:00 2008 ugAATTsuse.de
- capset support fixed (bnc#386653)

Thu Apr 10 14:00:00 2008 roAATTsuse.de
- added baselibs.conf file to build xxbit packages
for multilib support

Tue Feb 26 13:00:00 2008 ugAATTsuse.de
- root.hint file updated (#361094)

Thu Dec 6 13:00:00 2007 ugAATTsuse.de
- version 9.4.2 (more than 50 bugs fixed. See changelog. for details)
- root.hint file updated

Thu Jul 26 14:00:00 2007 mtAATTsuse.de
- Bug #294403: updated to security release 9.4.1-P1 fixing:
CVE-2007-2926: cryptographically weak query ids [RT #16915].
CVE-2007-2925: allow-query-cache/allow-recursion default
acls not set [RT #16987], [RT #16960].

Sat May 26 14:00:00 2007 roAATTsuse.de
- added ldconfig to postinstall script for bind-libs

Tue May 15 14:00:00 2007 ugAATTsuse.de
- added apparmor profile

Wed May 2 14:00:00 2007 ugAATTsuse.de
- version 9.4.1
- query_addsoa() was being called with a non zone db.
[RT #16834]

Fri Mar 30 14:00:00 2007 ugAATTsuse.de
- libidnkitres.la moved to bind-libs for runidn

Thu Mar 29 14:00:00 2007 rguentherAATTsuse.de
- Package .la files in -devel subpackage.
- Do not package useless .la files.
- Make -devel package depend on -libs package, not -utils package.

Mon Mar 5 13:00:00 2007 ugAATTsuse.de
- SuSEFirewall service file added (#246920)
fate #300687

Tue Feb 27 13:00:00 2007 ugAATTsuse.de
- version 9.3.4 to 9.4.0
- too many changes to list them all here. Please see
the CHANGELOG for details
- LDAP backend dropped

Thu Jan 25 13:00:00 2007 ugAATTsuse.de
- Bug #238634
- [security] Serialise validation of type ANY responses. [RT #16555]
- [security] It was possible to dereference a freed fetch
context. [RT #16584]
- version 9.3.3 to 9.3.4

Fri Jan 19 13:00:00 2007 ugAATTsuse.de
- version 9.3.2 to 9.3.3
- lots of bugfixes (see changelog for details)

Tue Jan 2 13:00:00 2007 ugAATTsuse.de
- load of bind during boot fails if ip-up starts
modify_resolvconf at the same time (#221948)

Fri Nov 10 13:00:00 2006 ugAATTsuse.de
- security fix (#218303)
workarounds OpenSSL\'s recently
discovered RSA signature verification issue (CVE-2006-4339) by using
the exponent 65537 (0x10001) instead of the widely used 3.

Tue Oct 17 14:00:00 2006 poemlAATTsuse.de
- there is no SuSEconfig.syslog script anymore, thus remove the
YaST hint from the sysconfig template

Mon Oct 16 14:00:00 2006 ugAATTsuse.de
- typo in sysconfig file fixed (#212337)

Fri Sep 1 14:00:00 2006 ugAATTsuse.de
- security fix
Bug #201424 VUL-0: bind: two denial-of-service attacks
VU#697164
BIND INSIST failure due to excessive recursive queries
VU#915404
BIND assertion failure during SIG query processing

Tue Aug 15 14:00:00 2006 ugAATTsuse.de
- update messages removed

Fri Aug 4 14:00:00 2006 ugAATTsuse.de
- moved the la files to bind-utils
(#182448)

Thu Jul 6 14:00:00 2006 ugAATTsuse.de
- fix for the nsupdate man page (#92730)
thanx to Werner


  
ICM