summaryrefslogtreecommitdiffstats
path: root/debian/changelog
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-27 23:51:29 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-27 23:51:29 +0000
commit8daaacd1420c00f31c2929de73198a34ad2514c6 (patch)
tree48bf98d85adae676317c69ad3b59ca85920066b5 /debian/changelog
parentMerging upstream version 1:9.16.48. (diff)
downloadbind9-8daaacd1420c00f31c2929de73198a34ad2514c6.tar.xz
bind9-8daaacd1420c00f31c2929de73198a34ad2514c6.zip
Merging debian version 1:9.16.48-1.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/changelog')
-rw-r--r--debian/changelog21
1 files changed, 21 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index ea2596e..9ac06c7 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,24 @@
+bind9 (1:9.16.48-1) bullseye-security; urgency=high
+
+ * New upstream version 9.16.48
+ - CVE-2023-4408: Parsing large DNS messages may cause excessive CPU
+ load
+ - CVE-2023-5517: Querying RFC 1918 reverse zones may cause an assertion
+ failure when "nxdomain-redirect" is enabled
+ - CVE-2023-5679: Enabling both DNS64 and serve-stale may cause an
+ assertion failure during recursive resolution
+ - CVE-2023-6516: Specific recursive query patterns may lead to an
+ out-of-memory condition
+ - CVE-2023-50387: KeyTrap - Extreme CPU consumption in DNSSEC validator
+ - CVE-2023-50868: Preparing an NSEC3 closest encloser proof can exhaust
+ CPU resources
+ * Update patches from debian/9.16 branch
+ - Disable treat-warnings-as-errors in sphinx-build
+ - Remove the reference to OPTIONS.md - it breaks build on Debian
+ stretch
+
+ -- Ondřej Surý <ondrej@debian.org> Mon, 12 Feb 2024 17:25:59 +0100
+
bind9 (1:9.16.44-1~deb11u1progress6u1) fuchur; urgency=high
* Initial reupload to fuchur.