system environment/daemons

Jump to letter: [ ABCDFGHIJKLMNOPQRSTUVWXY ]

bind - Chroot가 적용된 버클리 인터넷 네임 서버 (BIND)

Website: http://www.isc.org/products/BIND/
License: ISC
Vendor: AnNyung Packaging Team
Description:
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

Packages

bind-9.8.2-0.68.rc1.an2.11.src [8.5 MiB] Changelog by JoungKyun.Kim (2022-02-10): 
- security isseues
  . CVE-2020-8622 Fix tsig-request verify
  . CVE-2020-8625 Fix off-by-one bug in ISC SPNEGO implementation
  . CVE-2021-25215 Possible assertion failure on DNAME processing
  . Fix unsupported algorithms validation (#rh1769876)
bind-9.8.2-0.68.rc1.an2.7.src [8.5 MiB] Changelog by JoungKyun.Kim (2020-06-20): 
- security isseues
  . CVE-2020-8617 Correct tests covering
  . CVE-2020-8616 Limit number of queries triggered by a request
  . CVE-2020-8617 Fix invalid tsig request
bind-9.8.2-0.68.rc1.an2.3.src [8.5 MiB] Changelog by JoungKyun.Kim (2019-07-02): 
- rebuild on AN2
- Fix CVE-2018-5743
bind-9.8.2-0.68.rc1.an2.1.src [8.5 MiB] Changelog by Petr Menšík (2018-08-09): 
- Fix CVE-2018-5740
bind-9.8.2-0.68.rc1.an2.src [8.5 MiB] Changelog by Petr Menšík (2018-01-16): 
- Fix CVE-2017-3145
bind-9.8.2-0.62.rc1.an2.5.src [8.5 MiB] Changelog by Petr Menšík (2018-01-17): 
- Fix CVE-2017-3145
bind-9.8.2-0.62.rc1.an2.4.src [8.5 MiB] Changelog by Petr Menšík (2017-06-29): 
- Fix CVE-2017-3142 and CVE-2017-3143
bind-9.8.2-0.62.rc1.an2.2.src [8.5 MiB] Changelog by Petr Menšík (2017-05-03): 
- Fix DNSKEY that encountered a CNAME (#1447869, ISC change 3391)
bind-9.8.2-0.62.rc1.an2.1.src [8.5 MiB] Changelog by Petr Menšík (2017-04-18): 
- Fix CVE-2017-3136 (ISC change 4575)
- Fix CVE-2017-3137 (ISC change 4578)
bind-9.8.2-0.62.rc1.an2.src [8.5 MiB] Changelog by Petr Menšík (2017-02-08): 
- Fix and test caching CNAME before DNAME (ISC change 4558)
bind-9.8.2-0.47.rc1.an2.4.src [8.5 MiB] Changelog by Petr Menšík (2017-01-10): 
- Fix CVE-2016-9147 (ISC change 4510)
- Fix regression introduced by CVE-2016-8864 (ISC change 4530)
bind-9.8.2-0.47.rc1.an2.3.src [8.5 MiB] Changelog by Tomas Hozza (2016-10-31): 
- Fix CVE-2016-8864
  A denial of service flaw was found in the way BIND handled responses
  containing a DNAME answer. A remote attacker could use this flaw to make
  named exit unexpectedly with an assertion failure via a specially crafted
  DNS response.
bind-9.8.2-0.47.rc1.an2.2.src [8.5 MiB] Changelog by Tomas Hozza (2016-10-17): 
- Fix CVE-2016-2848
  allows remote attackers to cause a denial of service (assertion failure and
  daemon exit) via malformed options data in an OPT resource record.
bind-9.8.2-0.47.rc1.an2.1.src [8.5 MiB] Changelog by Tomas Hozza (2016-09-23): 
- Fix CVE-2016-2776
bind-9.8.2-0.42.rc1.an2.src [8.5 MiB] Changelog by Tomas Hozza (2016-03-09): 
- security issues
  . Fix CVE-2016-1285
    named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
    remote attackers to cause a denial of service (assertion failure and daemon
    exit) via a malformed packet to the rndc (aka control channel) interface,
    related to alist.c and sexpr.c.

  . Fix CVE-2016-1286
    named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
    remote attackers to cause a denial of service (assertion failure and daemon
    exit) via a crafted signature record for a DNAME record, related to db.c and
    resolver.c.
bind-9.8.2-0.37.rc1.an2.7.src [8.4 MiB] Changelog by Tomas Hozza (2016-03-09): 
- security issues
  . Fix CVE-2016-1285
    named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
    remote attackers to cause a denial of service (assertion failure and daemon
    exit) via a malformed packet to the rndc (aka control channel) interface,
    related to alist.c and sexpr.c.

  . Fix CVE-2016-1286
    named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows
    remote attackers to cause a denial of service (assertion failure and daemon
    exit) via a crafted signature record for a DNAME record, related to db.c and
    resolver.c.
bind-9.8.2-0.37.rc1.an2.6.src [8.4 MiB] Changelog by Tomas Hozza (2016-01-18): 
- security issues
  . Fix CVE-2015-8704
    apl_42.c in ISC BIND 9.x before 9.9.8-P3 and 9.9.x and 9.10.x before
    9.10.3-P3 allows remote authenticated users to cause a denial of service
    (INSIST assertion failure and daemon exit) via a malformed Address Prefix
    List (APL) record.
bind-9.8.2-0.37.rc1.an2.5.src [8.4 MiB] Changelog by Tomas Hozza (2015-12-14): 
- security issues
  . Fix CVE-2015-8000
    A denial of service flaw was found in the way BIND processed certain
    records with malformed class attributes. A remote attacker could use this
    flaw to send a query to request a cached record with a malformed class
    attribute that would cause named functioning as an authoritative or
    recursive server to crash.
bind-9.8.2-0.37.rc1.an2.4.src [8.4 MiB] Changelog by Tomas Hozza (2015-09-02): 
- security issues
  . Fix CVE-2015-5722
    A flaw was found in the way BIND handled requests for TKEY DNS resource
    records. A remote attacker could use this flaw to make named (functioning
    as an authoritative DNS server or a DNS resolver) exit unexpectedly with
    an assertion failure via a specially crafted DNS request packet.

- Apply previously not applied patch for CVE-2015-5722
bind-9.8.2-0.37.rc1.an2.2.src [8.4 MiB] Changelog by Florian Weimer (2015-07-27): 
- security issues
  . Fix CVE-2015-5477
    named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows
    remote attackers to cause a denial of service (REQUIRE assertion failure
    and daemon exit) via TKEY queries.
bind-9.8.2-0.37.rc1.an2.1.src [8.4 MiB] Changelog by Tomas Hozza (2015-07-09): 
- security issues
  . Fix CVE-2015-4620
    name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x
    before 9.10.2-P2, when configured as a recursive resolver with DNSSEC
    validation, allows remote attackers to cause a denial of service (REQUIRE
    assertion failure and daemon exit) by constructing crafted zone data and
    then making a query for a name in that zone.
bind-9.8.2-0.30.rc1.an2.4.src [8.4 MiB] Changelog by Tomas Hozza (2015-05-11): 
- DNS resolution failure in high load environment with SERVFAIL and "out of memory/success" in the log (#1220366)
bind-9.8.2-0.30.rc1.an2.3.src [8.4 MiB] Changelog by Tomas Hozza (2015-03-02): 
- security issues
  . CVE-2015-1349
    named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before
    9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled,
    allows remote attackers to cause a denial of service (assertion failure and
    daemon exit, or daemon crash) by triggering an incorrect trust-anchor
    management scenario in which no key is ready for use.
bind-9.8.2-0.30.rc1.an2.2.src [8.4 MiB] Changelog by Tomas Hozza (2014-12-09): 
- security issues
  . CVE-2014-8500 (#1171973) 
    ISC BIND 9.0.x through 9.8.x, 9.9.0 through 9.9.6, and 9.10.0 through
    9.10.1 does not limit delegation chaining, which allows remote attackers
    to cause a denial of service (memory consumption and named crash) via a
    large or infinite number of referrals.
bind-9.8.2-0.30.rc1.an2.1.src [8.4 MiB] Changelog by JoungKyun.Kim (2014-10-27): 
- add geodns patch
  GEOIP_NOCHK="no" in /etc/sysconfig/named
  https://code.google.com/p/bind-geoip/wiki/UsageGuide
bind-9.8.2-0.30.rc1.an2.src [8.4 MiB] Changelog by JoungKyun.Kim (2014-10-20): 
- rebuild for AnNyung 2.4
- https://rhn.redhat.com/errata/RHBA-2014-1373.html
bind-9.8.2-0.23.rc1.an2.1.src [8.4 MiB] Changelog by JoungKyun.Kim (2014-01-21): 
- Refix gssapictx memory leak (#911167)
- security issues
  . CVE-2014-0591 named crash when handling malformed NSEC3-signed zones
bind-9.8.2-0.17.rc1.an2.6.src [8.4 MiB] Changelog by Tomas Hozza (2013-08-14): 
- Fix gssapictx memory leak (#996955)
bind-9.8.2-0.17.rc1.an2.5.src [8.4 MiB] Changelog by JoungKyun.Kim (2013-07-28): 
- security issues
  . CVE-2013-4854 crash with an assertion failure on parsing malformed rdata
bind-9.8.2-0.17.rc1.an2.4.src [8.4 MiB] Changelog by JoungKyun.Kim (2013-04-18): 
- ship dns/rrl.h in -devel subpkg
- security issues
  . CVE-2013-2266 libdns regular expressions excessive resource consumption DoS
bind-9.8.2-0.17.rc1.an2.3.src [8.4 MiB] Changelog by JoungKyun.Kim (2013-03-11): 
- add response rate limit patch (#873624)
- remove one bogus file from /usr/share/doc, introduced by RRL patch
- security issues
  . CVE-2012-5689
    denial of service when processing queries and with both DNS64 and RPZ enabled
bind-9.8.2-0.10.rc1.an2.6.src [8.4 MiB] Changelog by JoungKyun.Kim (2012-12-12): 
- repackaging only chroot mode
bind-9.8.2-0.10.rc1.an2.5.src [8.3 MiB] Changelog by JoungKyun.Kim (2012-10-16): 
- repackaging only chroot mode
bind-9.8.2-0.10.rc1.an2.3.src [8.3 MiB] Changelog by JoungKyun.Kim (2012-09-15): 
- repackaging only chroot mode
bind-9.8.2-0.10.rc1.an2.2.src [8.3 MiB] Changelog by JoungKyun.Kim (2012-08-07): 
- repackaging only chroot mode
bind-9.7.3-8.P3.an2.3.src [7.3 MiB] Changelog by JoungKyun.Kim (2012-06-08): 
- fix CVE-2012-1667 and CVE-2012-1033
bind-9.7.3-8.P3.an2.1.src [7.3 MiB] Changelog by JoungKyun.Kim (2012-01-08): 
- rebuild based on RHEL 6.2 32:9.7.3-8.P3.1
- applied on chroot
- support idn on named.conf and zone files
- support multi cname

Listing created by Repoview-0.6.6-1.el6