bind-chroot - A chroot runtime environment for the ISC BIND DNS server, named(8)
| Website: | http://www.isc.org/products/BIND/ |
|---|---|
| License: | BSD-like |
| Vendor: | Scientific Linux CERN, http://cern.ch/linux |
- Description:
This package contains a tree of files which can be used as a chroot(2) jail for the named(8) program from the BIND package. Based off code from Jan "Yenya" Kasprzak <kas@fi.muni.cz>
Packages
| bind-chroot-9.3.6-4.P1.el5_4.2.ia64 [44 KiB] |
Changelog
by Adam Tkac (2010-01-18):
- NSEC validation code could cause wrong NXDOMAIN responses (#554851,
CVE-2010-0097)
- improve fix for CVE-2009-4022 (#538744)
- {C,D}NAMEs could be returned to clients without proper DNSSEC validation
- don't validate + cache out-of-bailiwick data returned with a secure answer.
Refetch it instead.
|
| bind-chroot-9.3.6-4.P1.el5_4.1.ia64 [44 KiB] |
Changelog
by Adam Tkac (2009-11-19):
- don't cache unvalidated additional sections (#538744) |
| bind-chroot-9.3.6-4.P1.el5.ia64 [44 KiB] |
Changelog
by Adam Tkac (2009-07-29):
- fix CVE-2009-0696 (#514292) |
| bind-chroot-9.3.4-10.P1.el5_3.3.ia64 [42 KiB] |
Changelog
by Adam Tkac (2009-07-29):
- fix named_sdb as well (CVE-2009-0696, #514292) |
| bind-chroot-9.3.4-10.P1.el5_3.2.ia64 [42 KiB] |
Changelog
by Tomas Hoger (2009-07-29):
- security fix for remote DoS (CVE-2009-0696, #514292) |
| bind-chroot-9.3.4-10.P1.el5_3.1.ia64 [42 KiB] |
Changelog
by Adam Tkac (2009-06-09):
- handle unknown DLV algorithms well (#504794) |
| bind-chroot-9.3.4-10.P1.el5.ia64 [42 KiB] |
Changelog
by Adam Tkac (2009-01-06):
- check DSA_do_verify return value correctly |
| bind-chroot-9.3.4-6.0.3.P1.el5_2.ia64 [41 KiB] |
Changelog
by Adam Tkac (2009-01-06):
- check DSA_do_verify return value correctly |
| bind-chroot-9.3.4-6.0.2.P1.el5_2.ia64 [41 KiB] |
Changelog
by Adam Tkac (2008-07-10):
- remove query-source{,-v6} option from caching-nameserver.conf (#454852)
|
| bind-chroot-9.3.4-6.0.1.P1.el5_2.ia64 [41 KiB] |
Changelog
by Adam Tkac (2008-06-09):
- CVE-2008-1447 |