diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2021-04-29 01:37:15 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2021-04-29 09:00:04 +0200 |
| commit | 3c2034f8a207f61aa2ea7c0a48adad6919a64643 (patch) | |
| tree | 6030976b791612cd12fe048f8c74c121cf307ace /ChangeLog.txt | |
| parent | abdca401c7c45e652987c030a41f12408b916eee (diff) | |
| download | current-3c2034f8a207f61aa2ea7c0a48adad6919a64643.tar.gz current-3c2034f8a207f61aa2ea7c0a48adad6919a64643.tar.xz | |
Thu Apr 29 01:37:15 UTC 202120210429013715
n/bind-9.16.15-x86_64-1.txz: Upgraded.
This update fixes bugs and the following security issues:
A specially crafted GSS-TSIG query could cause a buffer overflow in the
ISC implementation of SPNEGO.
named crashed when a DNAME record placed in the ANSWER section during DNAME
chasing turned out to be the final answer to a client query.
Insufficient IXFR checks could result in named serving a zone without an SOA
record at the apex, leading to a RUNTIME_CHECK assertion failure when the
zone was subsequently refreshed. This has been fixed by adding an owner name
check for all SOA records which are included in a zone transfer.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25216
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25214
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 32 |
1 files changed, 32 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index d2a0d0bfa..fb9273e09 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,35 @@ +Thu Apr 29 01:37:15 UTC 2021 +n/bind-9.16.15-x86_64-1.txz: Upgraded. + This update fixes bugs and the following security issues: + A specially crafted GSS-TSIG query could cause a buffer overflow in the + ISC implementation of SPNEGO. + named crashed when a DNAME record placed in the ANSWER section during DNAME + chasing turned out to be the final answer to a client query. + Insufficient IXFR checks could result in named serving a zone without an SOA + record at the apex, leading to a RUNTIME_CHECK assertion failure when the + zone was subsequently refreshed. This has been fixed by adding an owner name + check for all SOA records which are included in a zone transfer. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25216 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25215 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25214 + (* Security fix *) ++--------------------------+ +Wed Apr 28 18:40:26 UTC 2021 +a/kernel-generic-5.10.33-x86_64-1.txz: Upgraded. +a/kernel-huge-5.10.33-x86_64-1.txz: Upgraded. +a/kernel-modules-5.10.33-x86_64-1.txz: Upgraded. +a/less-581-x86_64-2.txz: Rebuilt. + lesspipe.sh: support *.tzst, *.tar.zst, *.tar.zstd. +d/guile-3.0.6-x86_64-1.txz: Upgraded. +d/kernel-headers-5.10.33-x86-1.txz: Upgraded. +k/kernel-source-5.10.33-noarch-1.txz: Upgraded. +n/iproute2-5.12.0-x86_64-1.txz: Upgraded. +x/libwacom-1.10-x86_64-1.txz: Upgraded. +isolinux/initrd.img: Rebuilt. +kernels/*: Upgraded. +usb-and-pxe-installers/usbboot.img: Rebuilt. ++--------------------------+ Tue Apr 27 19:19:28 UTC 2021 a/mkinitrd-1.4.11-x86_64-24.txz: Rebuilt. Change mkinitrd shebang to #!/bin/bash. Thanks to mumahendras3. |