[ubuntu/yakkety-security] bind9 1:9.10.3.dfsg.P4-10.1ubuntu1.2 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Thu Jan 12 12:23:23 UTC 2017

bind9 (1:9.10.3.dfsg.P4-10.1ubuntu1.2) yakkety-security; urgency=medium

  * SECURITY UPDATE: assertion failure via class mismatch
    - debian/patches/CVE-2016-9131.patch: properly handle certain TKEY
      records in lib/dns/resolver.c.
    - CVE-2016-9131
  * SECURITY UPDATE: assertion failure via inconsistent DNSSEC information
    - debian/patches/CVE-2016-9147.patch: fix logic when records are
      returned without the requested data in lib/dns/resolver.c.
    - CVE-2016-9147
  * SECURITY UPDATE: assertion failure via unusually-formed DS record
    - debian/patches/CVE-2016-9444.patch: handle missing RRSIGs in
      lib/dns/message.c, lib/dns/resolver.c.
    - CVE-2016-9444
  * SECURITY UPDATE: regression in CVE-2016-8864 
    - debian/patches/rt43779.patch: properly handle CNAME -> DNAME in
      responses in lib/dns/resolver.c, added tests to
    - No CVE number

Date: 2017-01-09 15:15:35.454543+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Yakkety-changes mailing list