Changelog for
bind-export-libs-9.11.36-16.el8_10.2.i686.rpm :
* Tue Aug 06 2024 Petr Menšík
- 32:9.11.36-16.2- Rebuild after CI change
* Thu Jul 18 2024 Petr Menšík - 32:9.11.36-16.1- Resolve CVE-2024-1975- Resolve CVE-2024-1737- Add ability to change runtime limits for max types and records per name
* Mon Apr 15 2024 Petr Menšík - 32:9.11.36-16- Ensure incompatible dhcp is not accepted
* Fri Apr 12 2024 Petr Menšík - 32:9.11.36-15- Ensure incompatible bind-dyndb-ldap is not accepted
* Mon Feb 26 2024 Petr Menšík - 32:9.11.36-14- Speed up parsing of DNS messages with many different names (CVE-2023-4408)- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387 CVE-2023-50868)- Do not use header_prev in expire_lru_headers
* Thu Dec 07 2023 Petr Menšík - 32:9.11.36-13- Update addresses of b.root-servers.net (RHEL-18449)
* Mon Oct 09 2023 Petr Menšík - 32:9.11.36-12- Disable caching of stale records by default (RHEL-11785)
* Tue Sep 19 2023 Petr Menšík - 32:9.11.36-11- Prevent exahustion of memory from control channel (CVE-2023-3341)
* Thu Jun 22 2023 Petr Menšík - 32:9.11.36-10- Prevent the cache going over the configured limit (CVE-2023-2828)
* Wed Feb 08 2023 Petr Menšík - 32:9.11.36-9- Prevent flooding with UPDATE requests (CVE-2022-3094)- include upstream test for that change
* Thu Oct 13 2022 Petr Menšík - 32:9.11.36-8- Correct regression preventing bind-dyndb-ldap build (#2133889)
* Thu Sep 29 2022 Petr Menšík - 32:9.11.36-7- Prevent excessive resource use while processing large delegations. (CVE-2022-2795)
* Thu Sep 22 2022 Petr Menšík - 32:9.11.36-6- Prevent freeing zone during statistics rendering (#2101712)
* Thu Sep 22 2022 Petr Menšík - 32:9.11.36-5- Fix memory leak in ECDSA verify processing (CVE-2022-38177)- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
* Wed Apr 13 2022 Petr Menšík - 32:9.11.36-4- Tighten cache protection against record from forwarders (CVE-2021-25220)- Include test of forwarders
* Thu Feb 10 2022 Petr Menšík - 32:9.11.36-2- Reduce memory used per-view on machine with few processors (#2030239)
* Tue Dec 21 2021 Petr Menšík - 32:9.11.36-2- Rebuilt on a new side-tag (#2013993)
* Mon Nov 01 2021 Petr Menšík - 32:9.11.36-1- Update to 9.11.36
* Mon Nov 01 2021 Petr Menšík - 32:9.11.26-9- Correct tsig system test
* Wed Oct 13 2021 Petr Menšík - 32:9.11.26-8- Propagate ephemeral port ranges to chroot (#1950714)
* Tue Aug 24 2021 Petr Menšík - 32:9.11.26-7- Do not request softhsm from bind-pkcs11, it is only in modular build (#1934035)
* Fri Jul 09 2021 Petr Menšík - 32:9.11.26-6- Use random entropy to generate unique TKEY identifiers (#1980916)
* Fri May 07 2021 Petr Menšík - 32:9.11.26-5- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb (#1953056)
* Tue Apr 27 2021 Petr Menšík - 32:9.11.26-4- Possible assertion failure on DNAME processing (CVE-2021-25215)- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
* Mon Feb 15 2021 Petr Menšík - 32:9.11.26-3- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
* Tue Jan 05 2021 Petr Menšík - 32:9.11.26-2- Add DNSTAP support (#1854148), new dnstap-read tool- Add JSON support in statistics-channel (#1899257)
* Mon Jan 04 2021 Petr Menšík - 32:9.11.26-1- Update to 9.11.26
* Thu Nov 26 2020 Petr Menšík - 32:9.11.25-1- Update to 9.11.25- Require libcap from devel package- Fix crash on NTA recheck failure (#1893761)
* Fri Sep 25 2020 Tomas Korbar - 32:9.11.20-6- Do not ignore RPZ wildcard passthru (#1876492)
* Tue Aug 18 2020 Petr Menšík - 32:9.11.20-5- Fix tsig-request verify (CVE-2020-8622)- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)- Correct update-policy type subdomain to match documentation (CVE-2020-8624)- Include available test
* Wed Jul 22 2020 Petr Menšík - 32:9.11.20-4- Prevent crash on dstlib initialization failure (#1859454)
* Fri Jun 19 2020 Petr Menšík - 32:9.11.20-3- Add remaining require to bind package (#1633169)
* Fri Jun 19 2020 Petr Menšík - 32:9.11.20-2- Add manual page for dnssec-importkey-pkcs11 (#1666785)- Add versioned depends to all library subpackages
* Wed Jun 17 2020 Petr Menšík - 32:9.11.20-1- Update to 9.11.20
* Mon Jun 08 2020 Petr Menšík - 32:9.11.19-2- Remove old KSK 19036 from remaining trusted-key.key
* Fri May 15 2020 Petr Menšík - 32:9.11.19-1- Update to 9.11.19 (CVE-2020-8616, CVE-2020-8617)
* Thu Apr 16 2020 Petr Menšík - 32:9.11.18-1- Update to 9.11.18
* Tue Apr 07 2020 Petr Menšík - 32:9.11.17-1- Update to 9.11.17
* Tue Apr 07 2020 Petr Menšík - 32:9.11.14-1- Update to 9.11.14- Remove libmaxminddb-devel from devel package dependencies
* Thu Feb 27 2020 Miroslav Lichvar - 32:9.11.13-3- Fix rwlock to be thread-safe (#1740511)
* Tue Jan 14 2020 Petr Menšík - 32:9.11.13-2- Release GeoIP data on reload (#1790879)
* Tue Nov 19 2019 Petr Menšík - 32:9.11.13-1- Update to 9.11.13
* Tue Nov 19 2019 Petr Menšík - 32:9.11.12-5- Report failures on systemctl reload (#1739428)
* Mon Nov 18 2019 Pavel Zhukov - 32:9.11.12-4- dhcp: Use monotonic time for detecting time jumps if available (#1729211)
* Fri Nov 15 2019 Petr Menšík - 32:9.11.12-3- Backported serve-stale feature (#1664863)
* Thu Nov 07 2019 Petr Menšík - 32:9.11.12-2- Add GeoLite2 support (#1564443)- Add GeoIP to bind-chroot (#1497646)- Fix wrong default GeoIP directory (#1768258)
* Mon Oct 21 2019 Petr Menšík - 32:9.11.12-1- Update to 9.11.12 (#1557762)
* Wed Sep 25 2019 Petr Menšík - 32:9.11.11-1- Update to 9.11.11
* Tue Aug 27 2019 Petr Menšík - 32:9.11.10-1- Update to 9.11.10- Share pkcs11-utils and dnssec-utils manuals instead of recommend
* Thu Aug 08 2019 Petr Menšík - 32:9.11.7-1- Update to 9.11.7
* Thu Aug 08 2019 Petr Menšík - 32:9.11.4-26.P2- Permit explicit disabling of RSAMD5 in FIPS mode (#1737407)
* Wed Jul 17 2019 Petr Menšík - 32:9.11.4-25.P2- Fix CVE-2018-5745- Fix CVE-2019-6465
* Wed Jul 17 2019 Petr Menšík - 32:9.11.4-24.P2- Do not override random numbers provider in DHCP (#1668682)
* Wed Jul 17 2019 Petr Menšík - 32:9.11.4-23.P2- Report errors on invalid IDN 2008 names (#1679307)
* Wed Jun 19 2019 Petr Menšík - 32:9.11.4-22.P2- Fix CVE-2019-6471
* Thu Jun 13 2019 Petr Menšík - 32:9.11.4-21.P2- Fix random generator initialization
* Wed Apr 24 2019 Petr Menšík - 32:9.11.4-20.P2- Fix multilib conflict of devel packages (#1666785)
* Wed Apr 24 2019 Petr Menšík - 32:9.11.4-19.P2- Add support for OpenSSL provided random data- Disable often failing unit test random_test- Add /dev/urandom to chroot
* Wed Apr 24 2019 Petr Menšík - 32:9.11.4-18.P2- Fix zone2ldap tool memory management (#1602451)- Add support for OpenSSL provided random data
* Wed Apr 24 2019 Petr Menšík - 32:9.11.4-17.P2- Fix inefective limit of TCP clients (CVE-2018-5743)
* Thu Feb 21 2019 Petr Menšík - 32:9.11.4-16.P2- Fix CVE-2018-5744
* Thu Jan 10 2019 Petr Menšík - 32:9.11.4-15.P2- Fix error on bind-chroot upgrade before first start (#1634753)
* Mon Oct 15 2018 Petr Menšík - 32:9.11.4-14.P2- Rely on named_write_master_zones being default on (#1588592)
* Sat Sep 29 2018 Petr Menšík - 32:9.11.4-13.P2- Fix export-libs macro & scriptlet
* Thu Sep 27 2018 Petr Menšík - 32:9.11.4-12.P2- Update to bind-9.11.4-P2 (#1631134, #1633665)
* Thu Sep 27 2018 Petr Menšík - 32:9.11.4-11.P1- Reenable IDN output but allow turning it off (#1632891)
* Wed Sep 26 2018 Petr Menšík - 32:9.11.4-10.P1- Make spec valid when python3-rpm-macros is not installed (#1619153)
* Wed Sep 19 2018 Tomas Orsava - 32:9.11.4-9.P1- Require the Python interpreter directly instead of using the package name- Related: rhbz#1619153
* Mon Sep 17 2018 Petr Menšík - 32:9.11.4-8.P1- Fix annocheck failures, replace unoptimized code by OpenSSL counterparts (#1624100)
* Tue Aug 14 2018 Petr Menšík - 32:9.11.4-7.P1- Fix chroot devices upgrade warning (#1592872)- Automatically replace obsoleted ISC DLV key with root key (#1595782)
* Fri Aug 10 2018 Petr Menšík - 32:9.11.4-6.P1- Fix sdb-chroot devices upgrade (#1592872)
* Thu Aug 09 2018 Petr Menšík - 32:9.11.4-5.P1- Update to 9.11.4-P1- Adds root key sentinel support- Large IXFR zone transfers are rejected to prevent journal corruption- Fixes CVE-2018-5740
* Thu Aug 02 2018 Petr Menšík - 32:9.11.4-4- Support unavailable MD5 in FIPS mode
* Thu Aug 02 2018 Petr Menšík - 32:9.11.4-3- Use OpenSSL for digest operations (#1611537)
* Tue Jul 31 2018 Petr Menšík - 32:9.11.4-2- Install generated manual pages- Remove system-config-bind from manual- Disable GeoIP support (#1609856)
* Thu Jul 12 2018 Petr Menšík - 32:9.11.4-1- Update to 9.11.4- Use kyua instead of kyua-cli for unit tests
* Thu Jul 12 2018 Petr Menšík - 32:9.11.3-15- Use new config file named-chroot.files for chroot setup (#1429656)- Fix chroot devices file verification (#1592873)- Prevent errors on bind-chroot uninstall when running (#1600583)
* Thu Jul 12 2018 Fedora Release Engineering - 32:9.11.3-14- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Mon Jul 02 2018 Miro Hrončok - 32:9.11.3-13- Rebuilt for Python 3.7
* Wed Jun 27 2018 Petr Menšík - 32:9.11.3-12- Require utils instead of library
* Wed Jun 27 2018 Petr Menšík - 32:9.11.3-11- Remove named.iscdlv.key file (#1595782)- Fix CVE-2018-5738
* Tue Jun 19 2018 Miro Hrončok - 32:9.11.3-10- Rebuilt for Python 3.7
* Fri May 25 2018 Petr Menšík - 32:9.11.3-9- Make named home writeable (#1422680)- Change named shell to /bin/false
* Fri May 25 2018 Petr Menšík - 32:9.11.3-8- Require C++ on build when shipped atf library is used
* Mon Apr 09 2018 Petr Menšík - 32:9.11.3-7- Run tests also without kyua
* Thu Apr 05 2018 Petr Menšík - 32:9.11.3-6- Do not link libidn2 to all libraries (#1098783)- Update named.ca
* Tue Apr 03 2018 Petr Menšík - 32:9.11.3-5- Enable libidn2 support (#1098783)- Make +noidnout default- Compile export libs without GSSAPI
* Wed Mar 21 2018 Petr Menšík - 32:9.11.3-4- Rebase to 9.11.3- Add dig support for libidn2 (#1098783)
* Wed Mar 21 2018 Petr Menšík - 32:9.11.3-3.b1- Fix build with disabled unittest- Recommend softhsm from pkcs11 variant
* Thu Feb 22 2018 Petr Menšík - 32:9.11.3-2.b1- Require openssl-devel and libcap-devel from bind-export-devel- Conflict with bind99-devel- Change spec globals to rpmbuild --with feature
* Thu Feb 15 2018 Petr Menšík - 32:9.11.3-1.b1- Rebase to 9.11.3b1
* Wed Feb 07 2018 Petr Menšík - 32:9.11.2-11.P1- Use versioned provides- Fix starting of unit tests- Forward export libs path to isc-config- Rename export devel subpackage to bind-export-devel
* Wed Feb 07 2018 Pavel Zhukov - 32:9.11.2-10.P1- Add obsoletes/provides tags for smooth update
* Wed Feb 07 2018 Pavel Zhukov - 32:9.11.2-9.P1- Build devel package for export-libs
* Wed Feb 07 2018 Pavel Zhukov - 32:9.11.2-8.P1- Build export libraries with disabled threads and selects
* Wed Feb 07 2018 Fedora Release Engineering - 32:9.11.2-7.P1- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Tue Jan 30 2018 Petr Menšík - 32:9.11.2-6.P1- Remove ldconfig calls where possible- Note -z defs cannot be enabled until more work
* Tue Jan 16 2018 Petr Menšík - 32:9.11.2-5.P1- Fix CVE-2017-3145, rebase to 9.11.2-P1
* Tue Jan 02 2018 Petr Menšík - 32:9.11.2-4- Enable unit tests with kyua tool (#1532694)- Provide internal tool to prepare softhsm token storage- Proper fix for python3-bind subpackage directory ownership (#1522944)
* Fri Dec 15 2017 Petr Menšík - 32:9.11.2-3- Own python3-bind isc directory (#1522944)- Make tsstsig system test pass again (#1500017)
* Mon Oct 23 2017 Petr Menšík - 32:9.11.2-2- Build against mariadb-connector-c-devel (#1493615)- Include DNSKEY 20326 also in trusted-key.key (#1505476)- Fix dynamic symbols conflict with ldap (#1205168)- Use hmac-sha256 for new RNDC keys (#1508003)- Include protocols and services in chroot
* Wed Aug 02 2017 Petr Menšík - 32:9.11.2-1- Update to 9.11.2- Add recursing and secroots file into default and sample config- Fix nsupdate GSSAPI auth against AD server (#1484451)
* Wed Aug 02 2017 Fedora Release Engineering - 32:9.11.1-6.P3- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering - 32:9.11.1-5.P3- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Jul 14 2017 Petr Menšík - 32:9.11.1-4.P3- Simplify change of default configuration file path
* Thu Jul 13 2017 Petr Menšík - 32:9.11.1-3.P3- Use mysql_config for SDB variant, build against mariadb-devel
* Mon Jul 10 2017 Petr Menšík - 32:9.11.1-2.P3- Update to 9.11.1-P3
* Fri Jun 30 2017 Petr Menšík - 32:9.11.1-2.P2- Update to 9.11.1-P2
* Thu Jun 29 2017 Petr Menšík - 32:9.11.1-2.P1- dnssec-checkds and dnssec-coverage requires python module (#1466183)
* Thu Jun 15 2017 Petr Menšík - 32:9.11.1-1.P1- Update to 9.11.1-P1
* Fri Apr 21 2017 Petr Menšík - 32:9.11.0-8.P5- Fix queries for TKEY in nsupdate, when using GSSAPI (#1236087)
* Thu Apr 13 2017 Petr Menšík - 32:9.11.0-7.P5- Update to 9.11.0-P5- Use BINDVERSION for upstream version
* Fri Feb 10 2017 Petr Menšík - 32:9.11.0-7.P3- Update to 9.11.0-P3
* Fri Feb 10 2017 Fedora Release Engineering - 32:9.11.0-7.P2- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Wed Jan 18 2017 Petr Menšík - 32:9.11.0-6.P2- RTLD_DEEPBIND conflicts with pkcs11 libraries, skip it for dyndb (#1410433)- Fix some rpm warnings
* Mon Jan 16 2017 Petr Menšík - 32:9.11.0-5.P2- Fix manual pages generated by recent docbook-style-xsl (#1397186)
* Thu Jan 12 2017 Petr Menšík - 32:9.11.0-4.P2- Update to 9.11.0-P2
* Mon Dec 19 2016 Miro Hrončok - 32:9.11.0-4.P1- Rebuild for Python 3.6
* Tue Nov 22 2016 Petr Menšík - 32:9.11.0-3.P1- Split pk11 includes, include real functions only in pkcs11 variant
* Wed Nov 16 2016 Petr Menšík - 32:9.11.0-2.P1- Do not change lib permissions in chroot
* Wed Nov 16 2016 Michal Ruprich - 32:9.11.0-1.P1- Update to 9.11.0-P1
* Tue Nov 08 2016 Petr Menšík - 32:9.10.4-3.P4- Build with OpenSSL 1.1
* Thu Nov 03 2016 Petr Menšík - 32:9.10.4-2.P4- Update to 9.10.4-P4
* Thu Sep 29 2016 Tomas Hozza - 32:9.10.4-2.P3- Update to 9.10.4-P3
* Wed Jul 20 2016 Michal Ruprich - 32:9.10.4-1.P2- Update to 9.10.4-P2
* Thu May 26 2016 Tomas Hozza - 32:9.10.4-1.P1- Update to 9.10.4-P1
* Fri May 20 2016 Tomas Hozza - 32:9.10.3-14.P4- (un)mount /var/named in -chroot packages as the last directory (Related: #1279188)
* Thu May 12 2016 Tomas Hozza - 32:9.10.3-13.P4- Remove NM dispatcher script, since it is not needed any more (#1277257)- Replaced After=network-online.target with After=network.target in all unit files
* Fri Mar 11 2016 Tomas Hozza - 32:9.10.3-12.P4- Update to 9.10.3-P4 due to CVE-2016-1285 CVE-2016-1286 CVE-2016-2088
* Wed Feb 03 2016 Fedora Release Engineering - 32:9.10.3-11.P3- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Thu Jan 21 2016 Tomas Hozza - 32:9.10.3-10.P3- Update to 9.10.3-P3 due to CVE-2015-8704 and CVE-2015-8705 (#1300051)
* Wed Jan 06 2016 Tomas Hozza - 32:9.10.3-9.P2- Commented out bindkeys-file statement in default configuration (#1223365#c3)- Removed unrecognized configure option --enable-developer- Added configure option --enable-full-report to get report on enabled features
* Sat Dec 26 2015 Robert Scheck - 32:9.10.3-8.P2- Remove unrecognized build options for %configure- Own %{_includedir}/bind9 directory in -lite-devel- Fixed building without (optional) PKCS#11 support
* Wed Dec 16 2015 Tomas Hozza - 32:9.10.3-7.P2- bump release to maintain update path
* Wed Dec 16 2015 Tomas Hozza - 32:9.10.3-4.P2- Update to 9.10.3-P2
* Tue Nov 10 2015 Fedora Release Engineering - 32:9.10.3-3- Rebuilt for https://fedoraproject.org/wiki/Changes/python3.5
* Wed Nov 04 2015 Tomas Hozza - 32:9.10.3-2- Fixed named-checkconf call in
*-chroot.service files (#1277820)
* Thu Sep 17 2015 Tomas Hozza - 32:9.10.3-1- Update to 9.10.3 stable
* Thu Sep 03 2015 Tomas Hozza - Update to 9.10.3rc1
* Wed Jul 29 2015 Tomas Hozza - 32:9.10.2-9.P3- Update to 9.10.2-P3 to fix CVE-2015-5477
* Thu Jul 09 2015 Tomas Hozza - 32:9.10.2-8.P2- Update to 9.10.2-P2
* Mon Jun 29 2015 Tomas Hozza - 32:9.10.2-7.P1- Reintroduce the DISABLE_ZONE_CHECKING into /etc/sysconfig/named
* Fri Jun 19 2015 Tomas Hozza - 32:9.10.2-6.P1- Update to 9.10.2-P1
* Wed Jun 17 2015 Fedora Release Engineering - 32:9.10.2-5- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Wed May 27 2015 Tomas Hozza - 32:9.10.2-4- Don\'t copy /etc/localtime on -chroot package installation
* Fri May 22 2015 Tomas Hozza - 32:9.10.2-3- Don\'t use ISC\'s DLV by default (#1223365)- Utilize system-wide crypto-policies (#1179925)
* Thu May 21 2015 Tomas Hozza - 32:9.10.2-2- enable tuning for large systems - increases hardcoded internal limits- enable GeoIP access control feature
* Thu Feb 26 2015 Tomas Hozza - 32:9.10.2-1- update to 9.10.2 stable- remove parallel-build patch after discussion with upstream [ISC-Bugs #38739]
* Wed Feb 25 2015 Tomas Hozza - 32:9.10.2-0.3.rc1- update to 9.10.2rc2- call ldconfig for pkcs11-libs- Use Python3 by default (#1186791)
* Sat Feb 21 2015 Till Maas - 32:9.10.2-0.2.rc1- Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code
* Mon Feb 02 2015 Tomas Hozza - 32:9.10.2-0.1.rc1- update to 9.10.2rc1- fix nsupdate server auto-detection (#1184151)- drop merged patch bind99-rh985918.patch
* Fri Jan 16 2015 Tomas Hozza - 32:9.10.1-2.P1- Install config for tmpfiles under %{_tmpfilesdir} (#1181020)
* Tue Jan 13 2015 Tomas Hozza - 32:9.10.1-1.P1- Update to 9.10.1-P1 stable
* Fri Dec 12 2014 Tomas Hozza - 32:9.9.6-6.P1- Drop downstream patch for nslookup/host rejected by upstream
* Tue Dec 09 2014 Tomas Hozza - 32:9.9.6-5.P1- Update to 9.9.6-P1 (CVE-2014-8500)
* Fri Nov 14 2014 Tomas Hozza - 32:9.9.6-4- Fixed systemctl path in logrotate configuration (#1148360)- drop engine_pkcs11 dependency, since we use native PKCS#11 implementation
* Wed Oct 22 2014 Petr Spacek - 32:9.9.6-3- Fix crash during GSS-TSIG processing (#1155334, #1155127) introduced in 32:9.9.6-2
* Tue Oct 14 2014 Tomas Hozza - 32:9.9.6-2- Added native PKCS#11 functionality (#1097752)- bind-sdb now requires bind due to configuration and other utilities- bind-pkcs11 now requires bind due to configuration and other utilities
* Thu Oct 02 2014 Tomas Hozza - 32:9.9.6-1- Update to 9.9.6- drop merged patches and rebase some of existing patches- Add architecture specific dependencies.- Fix assert in dig when using +sigchase (#985918)
* Fri Aug 15 2014 Fedora Release Engineering - 32:9.9.5-9.P1- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Fri Jul 18 2014 Tomas Hozza 32:9.9.5-8.P1- Use network-online.target instead of network.target (#1117086)
* Fri Jul 11 2014 Tom Callaway 32:9.9.5-7.P1- fix license handling
* Thu Jun 12 2014 Tomas Hozza 32:9.9.5-6.P1- Update to 9.9.5-P1
* Mon Jun 09 2014 Tomas Hozza 32:9.9.5-5- Use /dev/urandom for generation of rndc.key (#1079799)
* Sat Jun 07 2014 Fedora Release Engineering - 32:9.9.5-4- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Tue Apr 22 2014 Tomas Hozza 32:9.9.5-3- configure bind with --with-dlopen=yes to support dynamically loadable DLZ drivers
* Wed Mar 05 2014 Tomas Hozza 32:9.9.5-2- dlz_dlopen driver could return the wrong error leading to a segfault (#1052781)- Fix race condition when freeing fetch object (ISC-Bugs #35385)
* Thu Feb 13 2014 Tomas Hozza 32:9.9.5-1- Update to 9.9.5 stable
* Sun Jan 26 2014 Rex Dieter 32:9.9.5-0.5.rc2- -libs, -libs-lite: track sonames, so abi bumps aren\'t a surprise
* Fri Jan 24 2014 Tomas Hozza 32:9.9.5-0.4.rc2- update to 9.9.5rc2- merged patches dropped- some patches rebased to the new version
* Wed Jan 15 2014 Tomas Hozza 32:9.9.5-0.3.b1- non-existance of resolv.conf should not be fatal (#1052343)
* Tue Jan 14 2014 Tomas Hozza 32:9.9.5-0.2.b1- Fix CVE-2014-0591
* Mon Jan 06 2014 Tomas Hozza 32:9.9.5-0.1.b1- Update to bind-9.9.5b1- Build bind-sdb against libdb instead of libdb4
* Wed Dec 18 2013 Tomas Hozza 32:9.9.4-11- Fix crash in rbtdb after two sucessive getoriginnode() calls
* Tue Dec 17 2013 Tomas Hozza 32:9.9.4-10- Split chroot package for named and named-sdb- Extract setting-up/destroying of chroot to a separate systemd service (#997030)
* Thu Nov 28 2013 Tomas Hozza 32:9.9.4-9- Fixed memory leak in nsupdate if \'realm\' was used multiple times (#984687)
* Tue Nov 12 2013 Tomas Hozza 32:9.9.4-8- Install configuration for rwtab and fix chroot setup script
* Thu Oct 31 2013 Tomas Hozza 32:9.9.4-7- Correct the upstream patch for #794940
* Thu Oct 31 2013 Tomas Hozza 32:9.9.4-6- use --enable-filter-aaaa when building bind to enable use of filter-aaaa-on-v4 option
* Wed Oct 30 2013 Tomas Hozza 32:9.9.4-5- Create symlink /var/named/chroot/var/run -> /var/named/chroot/run- Added session-keyfile statement into default named.conf since we use /run/named
* Tue Oct 29 2013 Tomas Hozza 32:9.9.4-4- Use upstream version of patch for previously fixed #794940
* Fri Oct 18 2013 Tomas Hozza 32:9.9.4-3- Fix race condition on send buffers in dighost.c (#794940)
* Tue Oct 08 2013 Tomas Hozza 32:9.9.4-2- install isc/errno2result.h header
* Fri Sep 20 2013 Tomas Hozza 32:9.9.4-1- Update to bind-9.9.4 stable
* Tue Sep 10 2013 Tomas Hozza 32:9.9.4-0.9.rc2- Fix [ISC-Bugs #34738] dns_journal_open() returns a pointer to stack
* Mon Sep 09 2013 Tomas Hozza 32:9.9.4-0.8.rc2- update to bind-9.9.4rc2
* Tue Aug 20 2013 Tomas Hozza 32:9.9.4-0.7.rc1- Move named-checkzone and named-compilezone to bind-utils package
* Tue Aug 20 2013 Tomas Hozza 32:9.9.4-0.6.rc1- Move tools that don\'t need the server to run, from main package to bind-utils (#964313)
* Fri Aug 16 2013 Tomas Hozza 32:9.9.4-0.5.rc1- Don\'t generate rndc.key if there exists rndc.conf
* Fri Aug 16 2013 Tomas Hozza 32:9.9.4-0.4.rc1- don\'t install named-sdb.service if SDB macro is defined to zero
* Mon Aug 05 2013 Tomas Hozza 32:9.9.4-0.3.rc1- Fix setup-named-chroot.sh to mount/umount everything successfully- update to bind-9.9.4rc1
* Sat Aug 03 2013 Fedora Release Engineering - 32:9.9.4-0.2.b1- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Mon Jul 15 2013 Tomas Hozza 32:9.9.4-0.1.b1- update to bind-9.9.4b1- drop merged RRL patch- drop merged stat.h patch
* Wed Jun 05 2013 Tomas Hozza 32:9.9.3-3.P1- update to 9.9.3-P1 (fix for CVE-2013-3919)- update RRL patch to 9.9.3-P1-rl.156.01
* Mon Jun 03 2013 Tomas Hozza 32:9.9.3-2- bump release to prevent update path issues
* Mon Jun 03 2013 Tomas Hozza 32:9.9.3-1- update to 9.9.3- install dns/update.h header- update RRL patch to the latest version 9.9.3-rl.150.20
* Fri May 17 2013 Tomas Hozza 32:9.9.3-0.7.rc2- Fix segfault in host/nslookup (#878139)
* Mon May 13 2013 Tomas Hozza 32:9.9.3-0.6.rc2- update to 9.9.3rc2- part of bind97-exportlib.patch not needed any more- bind-9.9.1-P2-multlib-conflict.patch modified to reflect latest source- rl-9.9.3rc1.patch -> rl-9.9.3rc2.patch- bind99-opts.patch merged
* Fri May 03 2013 Tomas Hozza 32:9.9.3-0.5.rc1- Include recursion Warning in named.conf and named.conf.sample (#740894)- Include managed-keys-directory statement in named.conf.sample (#948026)
* Thu May 02 2013 Tomas Hozza 32:9.9.3-0.4.rc1- Fix zone2sqlite to quote table names when creating/dropping/inserting (#919417)
* Fri Apr 19 2013 Adam Tkac 32:9.9.3-0.3.rc1- fix crash in nsupdate when processing \"-r\" parameter (#949544)
* Tue Apr 16 2013 Adam Tkac 32:9.9.3-0.2.rc1- ship dns/rrl.h in -devel subpkg
* Tue Apr 16 2013 Adam Tkac 32:9.9.3-0.1.rc1- update to 9.9.3rc1- bind-96-libtool2.patch has been merged- fix bind tmpfiles.d for named.pid /run migration (#920713)
* Wed Mar 27 2013 Tomas Hozza 32:9.9.2-12.P2- New upstream patch version fixing CVE-2013-2266 (#928032)
* Tue Mar 19 2013 Adam Tkac 32:9.9.2-11.P1- move pidfile to /run/named/named.pid
* Wed Mar 06 2013 Tomas Hozza 32:9.9.2-10.P1- Fix Makefile.in to include header added by rate limiting patch (#918330)
* Tue Mar 05 2013 Adam Tkac 32:9.9.2-9.P1- drop some developer-only documentation and move ARM to %docdir
* Mon Feb 18 2013 Adam Tkac 32:9.9.2-8.P1- include rate limiting patch
* Tue Jan 29 2013 Tomas Hozza 32:9.9.2-7.P1- Corrected IP addresses in named.ca (#901741)- mount/umount /var/named in setup-named-chroot.sh as the last one (#904666)
* Thu Dec 20 2012 Adam Tkac 32:9.9.2-6.P1- generate /etc/rndc.key during named service startup if doesn\'t exist- increase startup timeout in systemd units to 90sec (default)- fix IDN related statement in dig.1 manpage
* Wed Dec 05 2012 Tomas Hozza 32:9.9.2-5.P1- update to bind-9.9.2-P1
* Mon Nov 12 2012 Adam Tkac 32:9.9.2-4- document dig exit codes in manpage- ignore empty \"search\" options in resolv.conf
* Mon Nov 12 2012 Adam Tkac 32:9.9.2-3- drop PKCS11 support on rhel
* Thu Oct 11 2012 Adam Tkac 32:9.9.2-2- install isc/stat.h
* Thu Oct 11 2012 Adam Tkac 32:9.9.2-1- update to 9.9.2- bind97-rh714049.patch has been dropped- patches merged - bind98-rh816164.patch
* Thu Sep 13 2012 Adam Tkac 32:9.9.1-10.P3- update to bind-9.9.1-P3
* Wed Aug 22 2012 Tomas Hozza 32:9.9.1-9.P2- fixed SPEC file so it comply with new systemd-rpm macros guidelines (#850045)- changed %define macros to %global and fixed several rpmlint warnings
* Wed Aug 08 2012 Tomas Hozza 32:9.9.1-8.P2- Changed PrivateTmp to \"false\" in
*-chroot.service unit files (#825869)
* Wed Aug 01 2012 Tomas Hozza 32:9.9.1-7.P2- Fixed bind-devel multilib conflict (#478718)
* Mon Jul 30 2012 Tomas Hozza 32:9.9.1-6.P2- Fixed bad path to systemctl in /etc/NetworkManager/dispatcher.d/13-named (#844047)- Fixed path to libdb.so in config.dlz.in
* Thu Jul 26 2012 Adam Tkac 32:9.9.1-5.P2- update to 9.9.1-P2
* Wed Jul 18 2012 Fedora Release Engineering - 32:9.9.1-4.P1- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Wed Jul 11 2012 Ville Skyttä - 32:9.9.1-3.P1- Avoid shell invocation and dep for -libs-lite %postun.
* Mon Jun 04 2012 Adam Tkac 32:9.9.1-2.P1- update to 9.9.1-P1 (CVE-2012-1667)
* Thu May 24 2012 Adam Tkac 32:9.9.1-1- update to 9.9.1- bind99-coverity.patch merged- bind-9.5-overflow.patch merged
* Mon May 07 2012 Adam Tkac 32:9.9.0-6- nslookup: return non-zero exit code when fail to get answer (#816164)
* Thu Apr 26 2012 Adam Tkac 32:9.9.0-5- initscript: don\'t umount /var/named when didn\'t mount it
* Tue Apr 24 2012 Adam Tkac 32:9.9.0-4- apply all non-SDB patches before SDB ones (#804475)- enable Berkeley DB DLZ backend (#804478)
* Thu Apr 12 2012 Adam Tkac 32:9.9.0-3- bind97-rh699951.patch is no longer needed (different fix is in 9.9.0)
* Mon Mar 26 2012 Adam Tkac 32:9.9.0-2- remove unneeded bind99-v6only.patch
* Mon Mar 05 2012 Adam Tkac 32:9.9.0-1- update to 9.9.0- load dynamic DBs later (and update dyndb patch)- fix memory leak in named during processing of rndc command- don\'t call `rndc-confgen -a` in \"post\" section- fix some packaging bugs in bind-chroot
* Wed Feb 15 2012 Adam Tkac 32:9.9.0-0.8.rc2- build with \"--enable-fixed-rrset\"
* Wed Feb 01 2012 Adam Tkac 32:9.9.0-0.7.rc2- update to 9.9.0rc2- doc/rfc and doc/draft are no longer shipped in tarball
* Mon Jan 30 2012 Adam Tkac 32:9.9.0-0.6.rc1- retire initscript in favour of systemd unit files (#719419)
* Thu Jan 12 2012 Adam Tkac 32:9.9.0-0.5.rc1- update to 9.9.0rc1
* Wed Dec 07 2011 Adam Tkac 32:9.9.0-0.4.b2- ship dns/forward.h in -devel subpkg
* Tue Nov 22 2011 Adam Tkac 32:9.9.0-0.3.b2- update to 9.9.0b2 (CVE-2011-4313)- patches merged - bind97-rh700097.patch - bind99-cinfo.patch
* Mon Nov 14 2011 Adam Tkac 32:9.9.0-0.2.b1- ship dns/clientinfo.h in bind-devel
* Fri Nov 11 2011 Adam Tkac 32:9.9.0-0.1.b1- update to 9.9.0b1- bind98-dlz_buildfix.patch merged
* Fri Oct 28 2011 Adam Tkac 32:9.8.1-4- nslookup failed to resolve name in certain cases
* Mon Sep 26 2011 Adam Tkac 32:9.8.1-3- remove deps filter, it is no longer needed (#739663)
* Fri Sep 09 2011 Adam Tkac 32:9.8.1-2- fix logrotate config file (#725256)
* Wed Sep 07 2011 Adam Tkac 32:9.8.1-1- update to 9.8.1- ship /etc/trusted-key.key (needed by dig)- use select instead of epoll in export libs (#735103)
* Wed Aug 31 2011 Adam Tkac 32:9.8.1-0.3.rc1- fix DLZ related compilation issues- make /etc/named.{root,iscdlv}.key world-readable- add bind-libs versioned requires to bind pkg
* Wed Aug 31 2011 Adam Tkac 32:9.8.1-0.2.rc1- fix rare race condition in request.c- print \"the working directory is not writable\" as debug message- re-add configtest target to initscript- initscript: sybsys name is always named, not named-sdb- nsupdate returned zero when target zone didn\'t exist (#700097)- nsupdate could have failed if server has multiple IPs and the first was unreachable (#714049)