diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2024-02-13 19:19:24 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2024-02-14 13:30:43 +0100 |
commit | cd44edc2370665df6fa5d36aecf703e53d155ab2 (patch) | |
tree | 01a125df2a4ef9f1faf7067e4a3927990b9e135c /ChangeLog.txt | |
parent | 4f3857a3d1c0af90b33317780b5fe54b0aec7142 (diff) | |
download | current-f32060afea7bf4ccbc70d0ee32a54dccdc023349.tar.gz current-f32060afea7bf4ccbc70d0ee32a54dccdc023349.tar.xz |
Tue Feb 13 19:19:24 UTC 202420240213191924_15.0
patches/packages/bind-9.16.48-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues:
Specific DNS answers could cause a denial-of-service condition due to DNS
validation taking a long time.
Query patterns that continuously triggered cache database maintenance could
exhaust all available memory on the host running named.
Restore DNS64 state when handling a serve-stale timeout.
Specific queries could trigger an assertion check with nxdomain-redirect
enabled.
Speed up parsing of DNS messages with many different names.
For more information, see:
https://kb.isc.org/docs/cve-2023-50387
https://www.cve.org/CVERecord?id=CVE-2023-50387
https://kb.isc.org/docs/cve-2023-6516
https://www.cve.org/CVERecord?id=CVE-2023-6516
https://kb.isc.org/docs/cve-2023-5679
https://www.cve.org/CVERecord?id=CVE-2023-5679
https://kb.isc.org/docs/cve-2023-5517
https://www.cve.org/CVERecord?id=CVE-2023-5517
https://kb.isc.org/docs/cve-2023-4408
https://www.cve.org/CVERecord?id=CVE-2023-4408
(* Security fix *)
testing/packages/bind-9.18.24-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues:
Specific DNS answers could cause a denial-of-service condition due to DNS
validation taking a long time.
Restore DNS64 state when handling a serve-stale timeout.
Specific queries could trigger an assertion check with nxdomain-redirect
enabled.
Speed up parsing of DNS messages with many different names.
For more information, see:
https://kb.isc.org/docs/cve-2023-50387
https://www.cve.org/CVERecord?id=CVE-2023-50387
https://kb.isc.org/docs/cve-2023-5679
https://www.cve.org/CVERecord?id=CVE-2023-5679
https://kb.isc.org/docs/cve-2023-5517
https://www.cve.org/CVERecord?id=CVE-2023-5517
https://kb.isc.org/docs/cve-2023-4408
https://www.cve.org/CVERecord?id=CVE-2023-4408
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 42 |
1 files changed, 42 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index b631ae27b..26ef2e549 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,45 @@ +Tue Feb 13 19:19:24 UTC 2024 +patches/packages/bind-9.16.48-x86_64-1_slack15.0.txz: Upgraded. + This update fixes bugs and security issues: + Specific DNS answers could cause a denial-of-service condition due to DNS + validation taking a long time. + Query patterns that continuously triggered cache database maintenance could + exhaust all available memory on the host running named. + Restore DNS64 state when handling a serve-stale timeout. + Specific queries could trigger an assertion check with nxdomain-redirect + enabled. + Speed up parsing of DNS messages with many different names. + For more information, see: + https://kb.isc.org/docs/cve-2023-50387 + https://www.cve.org/CVERecord?id=CVE-2023-50387 + https://kb.isc.org/docs/cve-2023-6516 + https://www.cve.org/CVERecord?id=CVE-2023-6516 + https://kb.isc.org/docs/cve-2023-5679 + https://www.cve.org/CVERecord?id=CVE-2023-5679 + https://kb.isc.org/docs/cve-2023-5517 + https://www.cve.org/CVERecord?id=CVE-2023-5517 + https://kb.isc.org/docs/cve-2023-4408 + https://www.cve.org/CVERecord?id=CVE-2023-4408 + (* Security fix *) +testing/packages/bind-9.18.24-x86_64-1_slack15.0.txz: Upgraded. + This update fixes bugs and security issues: + Specific DNS answers could cause a denial-of-service condition due to DNS + validation taking a long time. + Restore DNS64 state when handling a serve-stale timeout. + Specific queries could trigger an assertion check with nxdomain-redirect + enabled. + Speed up parsing of DNS messages with many different names. + For more information, see: + https://kb.isc.org/docs/cve-2023-50387 + https://www.cve.org/CVERecord?id=CVE-2023-50387 + https://kb.isc.org/docs/cve-2023-5679 + https://www.cve.org/CVERecord?id=CVE-2023-5679 + https://kb.isc.org/docs/cve-2023-5517 + https://www.cve.org/CVERecord?id=CVE-2023-5517 + https://kb.isc.org/docs/cve-2023-4408 + https://www.cve.org/CVERecord?id=CVE-2023-4408 + (* Security fix *) ++--------------------------+ Sun Feb 11 22:11:59 UTC 2024 patches/packages/mariadb-10.5.24-x86_64-1_slack15.0.txz: Upgraded. This is a bugfix release. |