Adding debian version 1:9.18.24-1.debian/1%9.18.24-1 debian

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
author: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-08 16:41:29 +0000
committer: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-08 16:41:29 +0000
commit: 1074ef8e03989998836cf0c89967413426aaeff6 (patch)
tree: da1e47beeaae2c157177608a9e511c47ffe11016 /debian/changelog
parent: Merging upstream version 1:9.18.24. (diff)
download: bind9-debian/1%9.18.24-1.tar.xz
bind9-debian/1%9.18.24-1.zip
1 files changed, 17 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index 108b0ba..9afab47 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,20 @@
+bind9 (1:9.18.24-1) bookworm-security; urgency=high
+
+  * New upstream version 9.18.24
+   - CVE-2023-4408: Parsing large DNS messages may cause excessive CPU
+     load
+   - CVE-2023-5517: Querying RFC 1918 reverse zones may cause an assertion
+     failure when "nxdomain-redirect" is enabled
+   - CVE-2023-5679: Enabling both DNS64 and serve-stale may cause an
+     assertion failure during recursive resolution
+   - CVE-2023-6516: Specific recursive query patterns may lead to an
+     out-of-memory condition
+   - CVE-2023-50387: KeyTrap - Extreme CPU consumption in DNSSEC validator
+   - CVE-2023-50868: Preparing an NSEC3 closest encloser proof can exhaust
+     CPU resources
+
+ -- Ondřej Surý <ondrej@debian.org>  Mon, 12 Feb 2024 17:28:03 +0100
+
 bind9 (1:9.18.19-1~deb12u1) bookworm-security; urgency=high
 
   * New upstream version 9.18.19
author	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-08 16:41:29 +0000
committer	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-08 16:41:29 +0000
commit	1074ef8e03989998836cf0c89967413426aaeff6 (patch)
tree	da1e47beeaae2c157177608a9e511c47ffe11016 /debian/changelog
parent	Merging upstream version 1:9.18.24. (diff)
download	bind9-debian/1%9.18.24-1.tar.xz bind9-debian/1%9.18.24-1.zip