[ubuntu/zesty-security] bind9 1:9.10.3.dfsg.P4-10.1ubuntu5 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Mon Apr 17 17:00:32 UTC 2017
bind9 (1:9.10.3.dfsg.P4-10.1ubuntu5) zesty-security; urgency=medium
* SECURITY UPDATE: Denial of Service due to an error handling
synthesized records when using DNS64 with "break-dnssec yes;"
- debian/patches/CVE-2017-3136.patch: reset noqname if query_dns64()
called.
- CVE-2017-3136
* SECURITY UPDATE: Denial of Service due to resolver terminating when
processing a response packet containing a CNAME or DNAME
- debian/patches/CVE-2017-3137.patch: don't expect a specific
ordering of answer components; add testcases.
- CVE-2017-3137
* SECURITY UPDATE: Denial of Service when receiving a null command on
the control channel
- debian/patches/CVE-2017-3138.patch: don't throw an assert if no
command token is given; add testcase.
- CVE-2017-3138
Date: 2017-04-12 09:23:13.252045+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/bind9/1:9.10.3.dfsg.P4-10.1ubuntu5
-------------- next part --------------
Sorry, changesfile not available.
More information about the Zesty-changes
mailing list