projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e6ecebb) | patch
bind: bump to 9.16.37
authorNoah Meyerhans <frodo@morgul.net>
Sat, 28 Jan 2023 20:03:31 +0000 (12:03 -0800)
committerHannu Nyman <hannu.nyman@iki.fi>
Sun, 29 Jan 2023 10:56:37 +0000 (12:56 +0200)
commit35667c546eb76f8fab0ec6c4f3dcc51d213979c7
treeca0aec24446b8a26a2c5c6f490d495df1d87d28etree | snapshot
parente6ecebbfcc93b1ddc7c7493a00640e6034e8397fcommit | diff
bind: bump to 9.16.37

Fixes multiple CVEs. Upstream changelog is
https://ftp.isc.org/isc/bind9/9.16.37/CHANGES

CVEs fixed:

CVE-2022-3924: Fix serve-stale crash when recursive clients soft quota
is reached.

CVE-2022-3736: Handle RRSIG lookups when serve-stale is active.

CVE-2022-3094: An UPDATE message flood could cause named to exhaust all
available memory. This flaw was addressed by adding a
new "update-quota" statement that controls the number of
simultaneous UPDATE messages that can be processed or
forwarded. The default is 100. A stats counter has been
added to record events when the update quota is
exceeded, and the XML and JSON statistics version
numbers have been updated.

Signed-off-by: Noah Meyerhans <frodo@morgul.net>
net/bind/Makefile diff | blob | history
Mirror of packages feed