Change log for bind9 package in Ubuntu

301319 of 319 results
Superseded in gutsy-release on 2007-05-03
Obsolete in feisty-release on 2009-08-20
bind9 (1:9.3.4-2ubuntu2) feisty; urgency=low

  * debian/control: Update maintainer fields according to debian-
    maintainer-field spec.

 -- Martin Pitt <email address hidden>   Tue, 20 Feb 2007 12:26:57 +0000
Superseded in edgy-security on 2007-07-25
bind9 (1:9.3.2-2ubuntu3.1) edgy-security; urgency=low

  * SECURITY UPDATE: remote denial of service.
  * lib/dns/include/dns/validator.h, lib/dns/{validator,resolver}.c,
    lib/dns/api: fixes taken from upstream changes between bind 9.3.3 and
    9.3.4, applied inline.
  * References
    CVE-2007-0493 CVE-2007-0494

 -- Kees Cook <email address hidden>   Thu, 25 Jan 2007 12:18:44 -0800
Superseded in dapper-security on 2007-07-25
bind9 (1:9.3.2-2ubuntu1.2) dapper-security; urgency=low

  * SECURITY UPDATE: remote denial of service.
  * lib/dns/include/dns/validator.h, lib/dns/{validator,resolver}.c,
    lib/dns/api: fixes taken from upstream changes between bind 9.3.3 and
    9.3.4, applied inline.
  * References
    CVE-2007-0493 CVE-2007-0494

 -- Kees Cook <email address hidden>   Tue, 30 Jan 2007 17:59:01 -0800
Obsolete in breezy-security on 2008-03-25
bind9 (1:9.3.1-2ubuntu1.2) breezy-security; urgency=low

  * SECURITY UPDATE: remote denial of service.
  * lib/dns/include/dns/validator.h, lib/dns/{validator,resolver}.c,
    lib/dns/api: fixes based on upstream changes between bind 9.3.3 and
    9.3.4, thanks to Stew Benedict, applied inline.
  * References
    CVE-2007-0493 CVE-2007-0494

 -- Kees Cook <email address hidden>   Wed, 31 Jan 2007 15:10:26 -0800
Superseded in feisty-release on 2007-02-20
bind9 (1:9.3.4-2ubuntu1) feisty; urgency=low

  * Merge from debian unstable, remaining changes:
    - debian/named.conf.options: by default, only allow recursion on localnet

Superseded in feisty-release on 2007-02-02
bind9 (1:9.3.3-1ubuntu1) feisty; urgency=low

  * Merge from debian unstable, remaining changes:
    - debian/named.conf.options: allow recursion only on localnets.

Superseded in feisty-release on 2006-12-20
bind9 (1:9.3.2-P1.0-1ubuntu1) feisty; urgency=low

  * Merge with Debian unstable; remaining changes:
    - debian/named.conf.options: allow recursion only on localnets.

Superseded in feisty-release on 2006-12-06
bind9 (1:9.3.2-2ubuntu4) feisty; urgency=low

  * Rebuild for ldbl128 change on powerpc and sparc.

 -- Matthias Klose <email address hidden>   Thu,  2 Nov 2006 10:12:55 +0000
Superseded in feisty-release on 2006-11-03
Obsolete in edgy-release on 2008-06-19
bind9 (1:9.3.2-2ubuntu3) edgy; urgency=low

  * SECURITY UPDATE: name servers accessible from the Internet could be
    used as an amplifier in DDoS attacks against other networks.
  * debian/named.conf.options: allow recursion only on localnets.  This
    matches the default configuration of listening on all interfaces, and
    gives a reasonable balance between allowing local recursion, and
    protecting the server from being used in a DDoS attack.
  * References
    CVE-2006-0987
    http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=248899

 -- Kees Cook <email address hidden>   Thu, 28 Sep 2006 16:38:15 -0700
Superseded in dapper-security on 2007-02-06
bind9 (1:9.3.2-2ubuntu1.1) dapper-security; urgency=low

  * SECURITY UPDATE:
  * bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
    to fix the following flaws:
    - A remote user (DNS server) can send specially crafted RRset responses in
      return to a recursive SIG query to cause the requesting named service to
      crash [CVE-2006-4095].
    - A remote user can also send specially crafted queries to trigger an
      INSIST failure and cause the requesting service(s) to crash
      [CVE-2006-4096].

 -- Martin Pitt <email address hidden>   Thu,  7 Sep 2006 12:32:03 +0000
Superseded in breezy-security on 2007-02-06
bind9 (1:9.3.1-2ubuntu1.1) breezy-security; urgency=low

  * SECURITY UPDATE:
  * bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
    to fix the following flaws:
    - A remote user (DNS server) can send specially crafted RRset responses in
      return to a recursive SIG query to cause the requesting named service to
      crash [CVE-2006-4095].
    - A remote user can also send specially crafted queries to trigger an
      INSIST failure and cause the requesting service(s) to crash
      [CVE-2006-4096].

 -- Martin Pitt <email address hidden>   Thu,  7 Sep 2006 13:44:04 +0000
Obsolete in hoary-security on 2008-03-19
bind9 (1:9.2.4-1ubuntu1.1) hoary-security; urgency=low

  * SECURITY UPDATE:
  * lib/dns/resolver.c: Ported upstream patch from 9.3.2-P1 (thanks to LaMont
    Jones for doing that) to fix the following flaws:
    - A remote user (DNS server) can send specially crafted RRset responses in
      return to a recursive SIG query to cause the requesting named service to
      crash [CVE-2006-4095].
    - A remote user can also send specially crafted queries to trigger an
      INSIST failure and cause the requesting service(s) to crash
      [CVE-2006-4096].

 -- Martin Pitt <email address hidden>   Thu,  7 Sep 2006 14:03:41 +0000
Superseded in edgy-release on 2006-10-05
bind9 (1:9.3.2-2ubuntu2) edgy; urgency=low

  * SECURITY UPDATE:
  * bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
    to fix the following flaws:
    - A remote user (DNS server) can send specially crafted RRset responses in
      return to a recursive SIG query to cause the requesting named service to
      crash [CVE-2006-4095].
    - A remote user can also send specially crafted queries to trigger an
      INSIST failure and cause the requesting service(s) to crash
      [CVE-2006-4096].

 -- Martin Pitt <email address hidden>   Thu,  7 Sep 2006 16:30:29 +0200
Superseded in edgy-release on 2006-09-07
Obsolete in dapper-release on 2011-09-06
bind9 (1:9.3.2-2ubuntu1) dapper; urgency=low

  * Drop build dependency on g++-3.4 (#292958 was filed for g++-3.3,
    fixed in g++-3.4 and up).

 -- Matthias Klose <email address hidden>   Thu, 16 Feb 2006 13:06:30 +0000
Superseded in dapper-release on 2006-02-16
Superseded in dapper-release on 2006-02-03
bind9 (1:9.3.2-2) unstable; urgency=low


  * correct force-reload.  Closes: #333841
  * Fix init.d's usage message.  Closes: #331090
  * resolvconf tweaks.  Closes: #252232, #275412

 -- LaMont Jones <email address hidden>  Mon, 16 Jan 2006 15:17:04 -0700
Superseded in dapper-release on 2006-01-31
bind9 (1:9.3.2-1) unstable; urgency=low


  * New upstream
  * use lsb-base for start/stop messages in init.d.
  * switch to debhelper 4

 -- LaMont Jones <email address hidden>  Thu,  5 Jan 2006 12:29:28 -0700
Superseded in dapper-release on 2006-01-31
Obsolete in breezy-release on 2008-03-25
bind9 (1:9.3.1-2ubuntu1) breezy; urgency=low


  * resync with debian

 -- LaMont Jones <email address hidden>  Tue, 19 Apr 2005 10:21:58 -0600
Obsolete in hoary-release on 2008-03-19
bind9 (1:9.2.4-1ubuntu1) hoary; urgency=low


  * Nathaniel McCallum
    - debian/init.d: pretty initscript
    - debian/control: versioned depend on lsb-base

 -- Thom May <email address hidden>  Mon, 29 Nov 2004 10:53:47 +0000
Obsolete in warty-release on 2008-01-09
bind9 (1:9.2.4-1) unstable; urgency=high


  * New upstream version.  Closes: #269157 and others.
  * Version debhelper build-dep.  Closes: #262720

 -- LaMont Jones <email address hidden>  Thu, 23 Sep 2004 09:11:37 -0600
301319 of 319 results