Change log for bind9 package in Ubuntu
| 376 → 445 of 445 results | First • Previous • Next • Last |
| Superseded in karmic-release |
bind9 (1:9.6.1.dfsg.P1-1) unstable; urgency=low
[Internet Software Consortium, Inc]
* A specially crafted update packet will cause named to exit.
CVE-2009-0696, CERT VU#725188. Closes: #538975
[InterNIC]
* Update db.root hints file.
[LaMont Jones]
* Move default zone definitions from named.conf to named.conf.default-zones.
Closes: #492308
* use start-stop-daemon if rndc stop fails. Closes: #536487
* lwresd: pidfile name was wrong in init script. Closes: #527137
-- Adam Conrad <adconrad@0c3.net> Wed, 29 Jul 2009 05:48:40 +0100
Available diffs
- diff from 1:9.6.1.dfsg-2 to 1:9.6.1.dfsg.P1-1 (502.7 KiB)
bind9 (1:9.3.2-2ubuntu1.7) dapper-security; urgency=low
* SECURITY UPDATE: server can exit on malicious update packet.
- bin/named/update.c: backported upstream fix.
- CVE-2009-0696
-- Kees Cook <email address hidden> Tue, 28 Jul 2009 20:10:39 -0700
Available diffs
bind9 (1:9.4.2.dfsg.P2-2ubuntu0.2) hardy-security; urgency=low
* SECURITY UPDATE: server can exit on malicious update packet.
- bin/named/update.c: backported upstream fix.
- CVE-2009-0696
-- Kees Cook <email address hidden> Tue, 28 Jul 2009 20:10:39 -0700
Available diffs
bind9 (1:9.5.0.dfsg.P2-1ubuntu3.2) intrepid-security; urgency=low
* SECURITY UPDATE: server can exit on malicious update packet.
- bin/named/update.c: backported upstream fix.
- CVE-2009-0696
-- Kees Cook <email address hidden> Tue, 28 Jul 2009 20:10:39 -0700
Available diffs
bind9 (1:9.5.1.dfsg.P2-1ubuntu0.1) jaunty-security; urgency=low
* SECURITY UPDATE: server can exit on malicious update packet.
- bin/named/update.c: backported upstream fix.
- CVE-2009-0696
-- Kees Cook <email address hidden> Tue, 28 Jul 2009 20:10:39 -0700
Available diffs
| Superseded in karmic-release |
bind9 (1:9.6.1.dfsg-2) unstable; urgency=low * ia64: fix atomic.h -- Ubuntu Archive Auto-Sync <email address hidden> Thu, 25 Jun 2009 07:43:38 +0100
Available diffs
- diff from 1:9.6.1.dfsg-1 to 1:9.6.1.dfsg-2 (587 bytes)
| Superseded in karmic-release |
bind9 (1:9.6.1.dfsg-1) unstable; urgency=low [Internet Software Consortium, Inc] * 9.6.1
Available diffs
| Superseded in karmic-release |
bind9 (1:9.6.0.dfsg.P1-2build1) karmic; urgency=low * No-change upload to rebuild against libkrb5-3. -- Steve Langasek <email address hidden> Wed, 03 Jun 2009 21:06:44 +0000
Available diffs
| Superseded in karmic-release |
bind9 (1:9.6.0.dfsg.P1-2) unstable; urgency=low * random_1 broke memory usage assertions.
Available diffs
bind9 (1:9.5.1.dfsg.P2-1) unstable; urgency=low
[Internet Software Consortium, Inc]
* 9.5.1-P2
- DNSSEC lookaside validation failed to handle unknown algorithms. [RT #19479]
[LaMont Jones]
* meta: fix override disparity
[Sven Joachim]
* meta: pass host and build into configure for hybrid build machines.
Closes: #515110
Available diffs
- diff from 1:9.5.1.dfsg.P1-1 to 1:9.5.1.dfsg.P2-1 (559.9 KiB)
| Superseded in jaunty-release |
bind9 (1:9.5.1.dfsg.P1-1) unstable; urgency=low
* New upstream patch release
- supportable version of fix from 9.5.0.dfsg.P2-5.1
- CVE-2009-0025: Closes: #511936
- 2475: Overly agressive cache entry removal. Closes: #511768
- other bug fixes worthy of patch-release inclusion
Available diffs
| Superseded in jaunty-release |
bind9 (1:9.5.0.dfsg.P2-5ubuntu1) jaunty; urgency=low
* SECURITY UPDATE: clients treat malformed signatures as good when verifying
server DSA and ECDSA certificates.
- update lib/dns/openssldsa_link.c to properly check the return code of
DSA_do_verify()
- CVE-2009-0025
-- Jamie Strandboge <email address hidden> Wed, 07 Jan 2009 17:05:49 -0600
Available diffs
bind9 (1:9.5.0.dfsg.P2-1ubuntu3.1) intrepid-security; urgency=low
* SECURITY UPDATE: clients treat malformed signatures as good when verifying
server DSA and ECDSA certificates.
- update lib/dns/openssldsa_link.c to properly check the return code of
DSA_do_verify()
- CVE-2009-0025
-- Jamie Strandboge <email address hidden> Wed, 07 Jan 2009 16:56:11 -0600
Available diffs
bind9 (1:9.4.2.dfsg.P2-2ubuntu0.1) hardy-security; urgency=low
* SECURITY UPDATE: clients treat malformed signatures as good when verifying
server DSA and ECDSA certificates.
- update lib/dns/openssldsa_link.c to properly check the return code of
DSA_do_verify()
- CVE-2009-0025
-- Jamie Strandboge <email address hidden> Wed, 07 Jan 2009 17:01:34 -0600
Available diffs
bind9 (1:9.4.1-P1-3ubuntu2.1) gutsy-security; urgency=low
* SECURITY UPDATE: clients treat malformed signatures as good when verifying
server DSA and ECDSA certificates.
- update lib/dns/openssldsa_link.c to properly check the return code of
DSA_do_verify()
- CVE-2009-0025
-- Jamie Strandboge <email address hidden> Wed, 07 Jan 2009 17:02:43 -0600
Available diffs
bind9 (1:9.3.2-2ubuntu1.6) dapper-security; urgency=low
* SECURITY UPDATE: clients treat malformed signatures as good when verifying
server DSA and ECDSA certificates.
- update lib/dns/openssldsa_link.c to properly check the return code of
DSA_do_verify()
- CVE-2009-0025
-- Jamie Strandboge <email address hidden> Wed, 07 Jan 2009 17:03:48 -0600
Available diffs
| Superseded in jaunty-release |
bind9 (1:9.5.0.dfsg.P2-5) unstable; urgency=low [ISC] * 2463: IPv6 Advanced Socket API broken on linux. LP: #249824 [Jamie Strandboge] * apparmor: add capability sys_resource * apparmor: add krb keytab access. LP: #277370 [LaMont Jones] * apparmor: allow proc/*/net/if_inet6 read access too. LP: #289060 * apparmor: add /var/log/named/* entries. LP: #294935 [Ben Hutchings] * meta: Add dependency of bind9 on net-tools (ifconfig used in init script) * meta: Fix bind9utils Depends. * meta: fix typo in package description [localization folks] * l10n: add polish debconf translations. Closes: #506856 (L) -- Ubuntu Archive Auto-Sync <email address hidden> Wed, 10 Dec 2008 00:40:25 +0000
Available diffs
bind9 (1:9.5.0.dfsg.P2-1ubuntu3) intrepid-proposed; urgency=low * Port LaMont Jones' IPv6 fix to Intrepid. (LP: #249824) -- Matt LaPlante <email address hidden> Tue, 02 Dec 2008 22:52:17 -0600
Available diffs
| Superseded in jaunty-release |
bind9 (1:9.5.0.dfsg.P2-4) unstable; urgency=low * meta: fix typo in Depends: lsb-base. Closes: #501365
Available diffs
bind9 (1:9.4.2.dfsg.P2-2) hardy-proposed; urgency=low * apparmor profile: add /var/log/named * dig: add -DDIG_SIGCHASE to compile options. LP: #257682
Available diffs
- diff from 1:9.4.2-10 to 1:9.4.2.dfsg.P2-2 (373.1 KiB)
bind9 (1:9.5.0.dfsg.P2-1ubuntu2) intrepid; urgency=low
* Add ufw integration:
- Created debian/bind9.ufw.profile
- debian/rules:
+ install profile
- debian/control
+ Suggest ufw
-- Nicolas Valcarcel <email address hidden> Tue, 26 Aug 2008 20:00:01 -0500
Available diffs
| Superseded in intrepid-release |
bind9 (1:9.5.0.dfsg.P2-1ubuntu1) intrepid; urgency=low
* debian/{control,rules}: enable PIE hardening
-- Kees Cook <email address hidden> Wed, 20 Aug 2008 15:46:44 -0700
Available diffs
| Superseded in intrepid-release |
bind9 (1:9.5.0.dfsg.P2-1) unstable; urgency=low
[LaMont Jones]
* default to using resolvconf if it is installed
* fix sonames and dependencies. Closes: #149259, #492418
* Do not build-depend libcap2-dev on non-linux. Closes: #493392
* drop unused query-loc manpage. Closes: #492564
* lwresd: Deliver /etc/bind directory. Closes: #490027
* fix query-source comment in default install
[Internet Software Consortium, Inc]
* 9.5.0-P2. Closes: #492949
[localization folks]
* l10n: Spanish debconf translation. Closes: #492425 (Ignacio Mondino)
* l10n: Swedish debconf templates. Closes: #491369 (Martin Ågren)
* l10n: Japanese debconf translations. Closes: #492048 (Hideki Yamane
(Debian-JP))
* l10n: Finnish translation. Closes: #490630 (Esko Arajärvi)
* l10n: Italian debconf translations. Closes: #492587 (Alessandro Vietta)
Available diffs
| Superseded in intrepid-release |
bind9 (1:9.5.0.dfsg.P1-2~build1) intrepid; urgency=low * package for intrepid
Available diffs
bind9 (1:9.4.2-10ubuntu0.1) hardy-security; urgency=low
* SECURITY UPDATE: Randomize UDP query source ports to improve forgery resilience.
* References
CVE-2008-1447
-- LaMont Jones <email address hidden> Sun, 06 Jul 2008 19:36:16 -0600
Available diffs
- diff from 1:9.4.2-10 to 1:9.4.2-10ubuntu0.1 (15.5 KiB)
bind9 (1:9.4.1-P1-3ubuntu2) gutsy-security; urgency=low
* SECURITY UPDATE: Randomize UDP query source ports to improve forgery resilience.
* References
CVE-2008-1447
-- LaMont Jones <email address hidden> Sun, 06 Jul 2008 19:33:49 -0600
Available diffs
bind9 (1:9.3.4-2ubuntu2.3) feisty-security; urgency=low
* SECURITY UPDATE: Randomize UDP query source ports to improve forgery resilience.
* References
CVE-2008-1447
-- LaMont Jones <email address hidden> Sun, 06 Jul 2008 19:32:07 -0600
Available diffs
bind9 (1:9.3.2-2ubuntu1.5) dapper-security; urgency=low
* SECURITY UPDATE: Randomize UDP query source ports to improve forgery resilience.
* References
CVE-2008-1447
-- LaMont Jones <email address hidden> Sun, 06 Jul 2008 19:27:56 -0600
Available diffs
| Superseded in intrepid-release |
bind9 (1:9.5.0.dfsg-4) unstable; urgency=low
[LaMont Jones]
* control: fix dnsutils description to avoid list reformatting.
Closes: #480317
* lwresd: restart in postinst. Closes: #486481
* meta: merge the mess of single-lib packages back into one large one.
* apparmor: allow bind to create files in /var/{lib,cache}/bind
* build: drop .la files. Closes: #486969
* build: drop the extra lib path from the library-package merge
* meta: liblwres40 does not conflict with the libbind9-40-provided libbind0
[localization folks]
* l10n: German debconf translation. Closes: #486547 (Helge Kreutzmann)
* l10n: Indonesian debconf translations. Closes: #486503 (Arief S Fitrianto)
* l10n: Slovak po-debconf translation Closes: #488905 (helix84)
* l10n: Turkish debconf template. Closes: #486479 (Mert Dirik)
-- Ubuntu Archive Auto-Sync <email address hidden> Fri, 04 Jul 2008 08:29:17 +0100
Available diffs
| Superseded in intrepid-release |
bind9 (1:9.5.0.dfsg-3) unstable; urgency=low
[LaMont Jones]
* bind9utils Depends: libbind9-40. Closes: #486194
* bind9 should not deliver manpages for nonexistant binaries.
Closes: #486196
[localization folks]
* l10n: Vietnamese debconf templates translation update. Closes: #486185
(Clytie Siddall)
* l10n: Russian debconf templates translation. Closes: #486191 (Yuri Kozlov)
* l10n: Galician debconf template. Closes: #486215 (Jacobo Tarrio)
* l10n: French debconf templates. Closes: #486325 (CALARESU Luc)
* l10n: Czech debconf translation. Closes: #486337 (Miroslav Kure)
* l10n: Updated Portuguese translation. Closes: #486267 (Traduz -
Portuguese Translation Team)
Available diffs
| Superseded in intrepid-release |
bind9 (1:9.5.0~rc1-2~0ubuntu2) intrepid; urgency=low * build: use the correct directories in dh_shlibdeps invocation * build: turn on dlz. LP: #227344 -- LaMont Jones <email address hidden> Tue, 27 May 2008 21:43:06 -0600
Available diffs
| Superseded in intrepid-release |
bind9 (1:9.5.0~rc1-2~0ubuntu1) intrepid; urgency=low
* Upload what will become (maybe an ancestor of) -2 to intrepid.
- Only use capabilities if they are present: reprise. Closes: #360339, #212226
- control: fix dnsutils description to avoid list reformatting. Closes: #480317
-- LaMont Jones <email address hidden> Mon, 26 May 2008 11:46:27 -0600
bind9 (1:9.4.2-10) unstable; urgency=low
[Jamie Strandboge]
* debian/bind9.preinst: AA force-complain on upgrade without existing
profile. LP: #204658
[LaMont Jones]
* host: manpage inaccurately describes default query. LP: #203087
-- LaMont Jones <email address hidden> Wed, 09 Apr 2008 20:33:51 +0100
bind9 (1:9.4.2-9) unstable; urgency=low
* apparmor: allow subdirs in {/etc,/var/cache,/var/lib}/bind
* apparmor: make profile match README.Debian
bind9 (1:9.4.2-6) unstable; urgency=low * Correct apparmor profile filename. LP: #200739
bind9 (1:9.4.2-4) unstable; urgency=low
* incorporate ubuntu apparmor change from Jamie Strandboge,
with changes:
- Add apparmor profile, reload apparmor profile on config
- Add a note about apparmor to README.Debian
- conflicts/replaces old apparmor versions
* db.root: include AAAA RRs. Closes: #464111
* Don't die when /var/lib/bind already exists. LP: #191685
* build: turn on optimization. Closes: #435194
-- LaMont Jones <email address hidden> Mon, 03 Mar 2008 18:58:30 +0000
| Superseded in hardy-release |
bind9 (1:9.4.2-3ubuntu1) hardy; urgency=low
* add AppArmor profile
+ debian/apparmor-profile
+ debian/bind9.postinst: Reload AA profile on configuration
* updated debian/README.Debian for note on AppArmor
* debian/control: Replaces apparmor-profiles << 2.1+1075-0ubuntu4 as we
should now take control
* debian/control: Conflicts with apparmor-profiles << 2.1+1075-0ubuntu4
to make sure that if earlier version of apparmor-profiles gets installed
it won't overwrite our profile
* Modify Maintainer value to match the DebianMaintainerField
specification.
-- Jamie Strandboge <email address hidden> Wed, 13 Feb 2008 17:30:45 +0000
bind9 (1:9.4.2-3) unstable; urgency=low
* don't run rndc-confgen when it's not there. Closes: #459551
* control: drop use of ${Source-Version}
bind9 (1:9.4.1-P1-3ubuntu1) gutsy-proposed; urgency=low
* l.root-servers.net. got a new IP. (LP #160176)
* Modify Maintainer value to match the DebianMaintainerField
specification.
-- Soren Hansen <email address hidden> Fri, 11 Jan 2008 11:55:57 +0100
bind9 (1:9.3.4-2ubuntu2.2) feisty-proposed; urgency=low * l.root-servers.net. got a new IP. (LP #160176) -- Soren Hansen <email address hidden> Fri, 11 Jan 2008 11:39:21 +0100
bind9 (1:9.3.2-2ubuntu3.3) edgy-proposed; urgency=low * l.root-servers.net. got a new IP. (LP #160176) -- Soren Hansen <email address hidden> Fri, 11 Jan 2008 11:36:47 +0100
bind9 (1:9.3.2-2ubuntu1.4) dapper-proposed; urgency=low * l.root-servers.net. got a new IP. (LP #160176) -- Soren Hansen <email address hidden> Fri, 11 Jan 2008 11:35:38 +0100
bind9 (1:9.4.2-1) unstable; urgency=low [Mike O'Connor] * bind9.init: LSB compliance. Closes: #448006 [Internet Software Consortium, Inc] * New release: 9.4.2 [LaMont Jones] * soname shifts for new release
| Superseded in hardy-release |
bind9 (1:9.4.1-P1-4) unstable; urgency=low [Thomas Antepoth] * unix/socket.c: don't send to a socket with pending_send. Closes: #430065 [LaMont Jones] * document git repositories * db.root: l.root-servers.net changed IP address. Closes: #449148 LP: #160176 * init.d: if there are no networks configured, error out quickly -- Ubuntu Archive Auto-Sync <email address hidden> Thu, 15 Nov 2007 10:37:33 +0000
bind9 (1:9.4.1-P1-3) unstable; urgency=low * Only deliver upstream changes with bind9-doc -- LaMont Jones <email address hidden> Thu, 04 Oct 2007 17:07:00 +0100
| Superseded in gutsy-release |
bind9 (1:9.4.1-P1-2) unstable; urgency=low * manpages: fix typo errors. Closes: #395834 * manpages: call it /etc/bind/named.conf throughout, and typos. Closes: #419750 * named.conf.5: correct filename. Closes: #428015 * bind9.NEWS: update version for ACL change doc. Closes: #435225 * build: don't have dnsutils deliver man pages that it shouldn't. LP: #82178 * nslookup.1: some of the manpage was not visible. LP: #131415 * document git repositories * unix/socket.c: don't send to a socket with pending_send. Closes: #430065 -- LaMont Jones <email address hidden> Thu, 04 Oct 2007 02:49:56 +0100
| Superseded in gutsy-release |
bind9 (1:9.4.1-P1-1) unstable; urgency=high * New upstream version, addresses CVE-2007-2926 and CVE-2007-2925 -- Kees Cook <email address hidden> Mon, 30 Jul 2007 00:15:32 +0100
bind9 (1:9.3.4-2ubuntu2.1) feisty-security; urgency=low
* SECURITY UPDATE: query responses could be forged remotely.
* bin/named/client.c, lib/dispatch.c, lib/include/dispatch.h:
upstream fixes back ported.
* References
CVE-2007-2926
-- Kees Cook <email address hidden> Tue, 24 Jul 2007 13:15:45 -0700
bind9 (1:9.3.2-2ubuntu3.2) edgy-security; urgency=low
* SECURITY UPDATE: query responses could be forged remotely.
* bin/named/client.c, lib/dispatch.c, lib/include/dispatch.h:
upstream fixes back ported.
* References
CVE-2007-2926
-- Kees Cook <email address hidden> Tue, 24 Jul 2007 13:15:45 -0700
bind9 (1:9.3.2-2ubuntu1.3) dapper-security; urgency=low
* SECURITY UPDATE: query responses could be forged remotely.
* bin/named/client.c, lib/dispatch.c, lib/include/dispatch.h:
upstream fixes back ported.
* References
CVE-2007-2926
-- Kees Cook <email address hidden> Tue, 24 Jul 2007 13:15:45 -0700
bind9 (1:9.4.1-1) unstable; urgency=low * New upstream version
bind9 (1:9.3.4-2ubuntu2) feisty; urgency=low
* debian/control: Update maintainer fields according to debian-
maintainer-field spec.
-- Martin Pitt <email address hidden> Tue, 20 Feb 2007 12:26:57 +0000
| Superseded in edgy-security |
bind9 (1:9.3.2-2ubuntu3.1) edgy-security; urgency=low
* SECURITY UPDATE: remote denial of service.
* lib/dns/include/dns/validator.h, lib/dns/{validator,resolver}.c,
lib/dns/api: fixes taken from upstream changes between bind 9.3.3 and
9.3.4, applied inline.
* References
CVE-2007-0493 CVE-2007-0494
-- Kees Cook <email address hidden> Thu, 25 Jan 2007 12:18:44 -0800
| Superseded in dapper-security |
bind9 (1:9.3.2-2ubuntu1.2) dapper-security; urgency=low
* SECURITY UPDATE: remote denial of service.
* lib/dns/include/dns/validator.h, lib/dns/{validator,resolver}.c,
lib/dns/api: fixes taken from upstream changes between bind 9.3.3 and
9.3.4, applied inline.
* References
CVE-2007-0493 CVE-2007-0494
-- Kees Cook <email address hidden> Tue, 30 Jan 2007 17:59:01 -0800
| Obsolete in breezy-security |
bind9 (1:9.3.1-2ubuntu1.2) breezy-security; urgency=low
* SECURITY UPDATE: remote denial of service.
* lib/dns/include/dns/validator.h, lib/dns/{validator,resolver}.c,
lib/dns/api: fixes based on upstream changes between bind 9.3.3 and
9.3.4, thanks to Stew Benedict, applied inline.
* References
CVE-2007-0493 CVE-2007-0494
-- Kees Cook <email address hidden> Wed, 31 Jan 2007 15:10:26 -0800
| Superseded in feisty-release |
bind9 (1:9.3.4-2ubuntu1) feisty; urgency=low
* Merge from debian unstable, remaining changes:
- debian/named.conf.options: by default, only allow recursion on localnet
| Superseded in feisty-release |
bind9 (1:9.3.3-1ubuntu1) feisty; urgency=low
* Merge from debian unstable, remaining changes:
- debian/named.conf.options: allow recursion only on localnets.
| Superseded in feisty-release |
bind9 (1:9.3.2-P1.0-1ubuntu1) feisty; urgency=low
* Merge with Debian unstable; remaining changes:
- debian/named.conf.options: allow recursion only on localnets.
| Superseded in feisty-release |
bind9 (1:9.3.2-2ubuntu4) feisty; urgency=low * Rebuild for ldbl128 change on powerpc and sparc. -- Matthias Klose <email address hidden> Thu, 2 Nov 2006 10:12:55 +0000
bind9 (1:9.3.2-2ubuntu3) edgy; urgency=low
* SECURITY UPDATE: name servers accessible from the Internet could be
used as an amplifier in DDoS attacks against other networks.
* debian/named.conf.options: allow recursion only on localnets. This
matches the default configuration of listening on all interfaces, and
gives a reasonable balance between allowing local recursion, and
protecting the server from being used in a DDoS attack.
* References
CVE-2006-0987
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=248899
-- Kees Cook <email address hidden> Thu, 28 Sep 2006 16:38:15 -0700
| Superseded in dapper-security |
bind9 (1:9.3.2-2ubuntu1.1) dapper-security; urgency=low
* SECURITY UPDATE:
* bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
to fix the following flaws:
- A remote user (DNS server) can send specially crafted RRset responses in
return to a recursive SIG query to cause the requesting named service to
crash [CVE-2006-4095].
- A remote user can also send specially crafted queries to trigger an
INSIST failure and cause the requesting service(s) to crash
[CVE-2006-4096].
-- Martin Pitt <email address hidden> Thu, 7 Sep 2006 12:32:03 +0000
| Superseded in breezy-security |
bind9 (1:9.3.1-2ubuntu1.1) breezy-security; urgency=low
* SECURITY UPDATE:
* bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
to fix the following flaws:
- A remote user (DNS server) can send specially crafted RRset responses in
return to a recursive SIG query to cause the requesting named service to
crash [CVE-2006-4095].
- A remote user can also send specially crafted queries to trigger an
INSIST failure and cause the requesting service(s) to crash
[CVE-2006-4096].
-- Martin Pitt <email address hidden> Thu, 7 Sep 2006 13:44:04 +0000
| Obsolete in hoary-security |
bind9 (1:9.2.4-1ubuntu1.1) hoary-security; urgency=low
* SECURITY UPDATE:
* lib/dns/resolver.c: Ported upstream patch from 9.3.2-P1 (thanks to LaMont
Jones for doing that) to fix the following flaws:
- A remote user (DNS server) can send specially crafted RRset responses in
return to a recursive SIG query to cause the requesting named service to
crash [CVE-2006-4095].
- A remote user can also send specially crafted queries to trigger an
INSIST failure and cause the requesting service(s) to crash
[CVE-2006-4096].
-- Martin Pitt <email address hidden> Thu, 7 Sep 2006 14:03:41 +0000
| Superseded in edgy-release |
bind9 (1:9.3.2-2ubuntu2) edgy; urgency=low
* SECURITY UPDATE:
* bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
to fix the following flaws:
- A remote user (DNS server) can send specially crafted RRset responses in
return to a recursive SIG query to cause the requesting named service to
crash [CVE-2006-4095].
- A remote user can also send specially crafted queries to trigger an
INSIST failure and cause the requesting service(s) to crash
[CVE-2006-4096].
-- Martin Pitt <email address hidden> Thu, 7 Sep 2006 16:30:29 +0200
bind9 (1:9.3.2-2ubuntu1) dapper; urgency=low
* Drop build dependency on g++-3.4 (#292958 was filed for g++-3.3,
fixed in g++-3.4 and up).
-- Matthias Klose <email address hidden> Thu, 16 Feb 2006 13:06:30 +0000
bind9 (1:9.3.2-2) unstable; urgency=low * correct force-reload. Closes: #333841 * Fix init.d's usage message. Closes: #331090 * resolvconf tweaks. Closes: #252232, #275412 -- LaMont Jones <email address hidden> Mon, 16 Jan 2006 15:17:04 -0700
bind9 (1:9.3.2-1) unstable; urgency=low * New upstream * use lsb-base for start/stop messages in init.d. * switch to debhelper 4 -- LaMont Jones <email address hidden> Thu, 5 Jan 2006 12:29:28 -0700
bind9 (1:9.3.1-2ubuntu1) breezy; urgency=low * resync with debian -- LaMont Jones <email address hidden> Tue, 19 Apr 2005 10:21:58 -0600
| Obsolete in hoary-release |
bind9 (1:9.2.4-1ubuntu1) hoary; urgency=low
* Nathaniel McCallum
- debian/init.d: pretty initscript
- debian/control: versioned depend on lsb-base
-- Thom May <email address hidden> Mon, 29 Nov 2004 10:53:47 +0000
bind9 (1:9.2.4-1) unstable; urgency=high * New upstream version. Closes: #269157 and others. * Version debhelper build-dep. Closes: #262720 -- LaMont Jones <email address hidden> Thu, 23 Sep 2004 09:11:37 -0600
| 376 → 445 of 445 results | First • Previous • Next • Last |
