bind-chroot - A chroot runtime environment for the ISC BIND DNS server, named(8)
| Website: | http://www.isc.org/products/BIND/ |
|---|---|
| License: | MPLv2.0 |
| Vendor: | Scientific Linux |
- Description:
This package contains a tree of files which can be used as a chroot(2) jail for the named(8) program from the BIND package. Based on the code from Jan "Yenya" Kasprzak <kas@fi.muni.cz>
Packages
| bind-chroot-9.11.4-26.P2.el7_9.16.x86_64 [93 KiB] |
Changelog
by Stepan Broz (2024-04-16):
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387 CVE-2023-50868) - Add missing design by contract tests to dns_catz* - Speed up parsing of DNS messages with many different names (CVE-2023-4408) - Do not use header_prev in expire_lru_headers |
| bind-chroot-9.11.4-26.P2.el7_9.15.x86_64 [92 KiB] |
Changelog
by Stepan Broz (2023-09-25):
- Limit the amount of recursion possible in control channel (CVE-2023-3341) |
| bind-chroot-9.11.4-26.P2.el7_9.14.x86_64 [92 KiB] |
Changelog
by Stepan Broz (2023-07-03):
- Prevent the cache going over the configured limit (CVE-2023-2828) |
| bind-chroot-9.11.4-26.P2.el7_9.13.x86_64 [92 KiB] |
Changelog
by Petr Menšík (2022-12-14):
- Tighten cache protection against record from forwarders (CVE-2021-25220) |
| bind-chroot-9.11.4-26.P2.el7_9.10.x86_64 [92 KiB] |
Changelog
by Petr Menšík (2022-09-22):
- Fix memory leak in ECDSA verify processing (CVE-2022-38177) - Fix memory leak in EdDSA verify processing (CVE-2022-38178) |
| bind-chroot-9.11.4-26.P2.el7_9.7.x86_64 [91 KiB] |
Changelog
by Petr Menšík (2021-07-13):
- Apply again patch 172, got removed by mistake |
| bind-chroot-9.11.4-26.P2.el7_9.5.x86_64 [91 KiB] |
Changelog
by Petr Menšík (2021-04-27):
- Possible assertion failure on DNAME processing (CVE-2021-25215) |
| bind-chroot-9.11.4-26.P2.el7_9.4.x86_64 [91 KiB] |
Changelog
by Petr Menšík (2021-02-15):
- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625) |
| bind-chroot-9.11.4-26.P2.el7_9.2.x86_64 [91 KiB] |
Changelog
by Tomas Korbar (2020-10-02):
- Fix unsupported algorithms validation (#rh1769876) |
| bind-chroot-9.11.4-16.P2.el7_8.6.x86_64 [90 KiB] |
Changelog
by Petr Menšík (2020-05-27):
- Fix EDNS512 loops on broken servers |
| bind-chroot-9.11.4-16.P2.el7.x86_64 [89 KiB] |
Changelog
by Petr Menšík (2019-12-12):
- Finish dig query when name is too long (#1743572) |
| bind-chroot-9.11.4-9.P2.el7.x86_64 [88 KiB] |
Changelog
by Petr Menšík (2019-06-19):
- Fix CVE-2019-6471 |
| bind-chroot-9.9.4-74.el7_6.1.x86_64 [87 KiB] |
Changelog
by Petr Menšík (2019-05-23):
- Remove again broken test (CVE-2018-5743) |
| bind-chroot-9.9.4-73.el7_6.x86_64 [87 KiB] |
Changelog
by Petr Menšík (2018-11-23):
- Fixes debug level comments (#1647539) |
| bind-chroot-9.9.4-61.el7_5.1.x86_64 [86 KiB] |
Changelog
by Petr Menšík (2018-08-09):
- Fix CVE-2018-5740 |
| bind-chroot-9.9.4-51.el7_4.2.x86_64 [85 KiB] |
Changelog
by Petr Menšík (2018-01-17):
- Fix CVE-2017-3145 |
| bind-chroot-9.9.4-51.el7.x86_64 [85 KiB] |
Changelog
by Petr Menšík (2017-06-29):
- Fix CVE-2017-3142 and CVE-2017-3143 |
| bind-chroot-9.9.4-50.el7_3.1.x86_64 [84 KiB] |
Changelog
by Petr Menšík (2017-06-30):
- Bump again above RHEL-7.4 |
| bind-chroot-9.9.4-38.el7_3.3.x86_64 [83 KiB] |
Changelog
by Petr Menšík (2017-04-12):
- Fix CVE-2017-3136 (ISC change 4575) - Fix CVE-2017-3137 (ISC change 4578) |
| bind-chroot-9.9.4-38.el7_3.2.x86_64 [83 KiB] |
Changelog
by Petr Menšík (2017-02-08):
- Fix CVE-2017-3135 (ISC change 4557) - Fix and test caching CNAME before DNAME (ISC change 4558) |
| bind-chroot-9.9.4-38.el7_3.1.x86_64 [83 KiB] |
Changelog
by Petr Menšík (2017-01-09):
- Fix CVE-2016-9131 (ISC change 4508) - Fix CVE-2016-9147 (ISC change 4510) - Fix regression introduced by CVE-2016-8864 (ISC change 4530) - Fix CVE-2016-9444 (ISC change 4517) |
| bind-chroot-9.9.4-38.el7_3.x86_64 [83 KiB] |
Changelog
by Tomas Hozza (2016-10-31):
- Fix CVE-2016-8864 |