| Name: | bind-sdb-chroot |
|---|---|
| Epoch: | 32 |
| Version: | 9.11.4 |
| Release: | 26.P2.el7_9.7 |
| Architecture: | x86_64 |
| Group: | System Environment/Daemons |
| Size: | 4839 |
| License: | MPLv2.0 |
| RPM: | bind-sdb-chroot-9.11.4-26.P2.el7_9.7.x86_64.rpm |
| Source RPM: | bind-9.11.4-26.P2.el7_9.7.src.rpm |
| Build Date: | Tue Aug 31 2021 |
| Build Host: | host-100-100-224-37.blddevtest1iad.osdevelopmeniad.oraclevcn.com |
| Vendor: | Oracle America |
| URL: | http://www.isc.org/products/BIND/ |
| Summary: | A chroot runtime environment for the ISC BIND DNS server, named-sdb(8) |
| Description: | This package contains a tree of files which can be used as a chroot(2) jail for the named-sdb(8) program from the BIND package. Based on the code from Jan "Yenya" Kasprzak <kas@fi.muni.cz> |
- Apply again patch 172, got removed by mistake
- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
- Possible assertion failure on DNAME processing (CVE-2021-25215)
- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
- Fix inline re-signing (#rh1889902)
- Fix unsupported algorithms validation (#rh1769876)
- Fix tsig-request verify (CVE-2020-8622) - Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623) - Correct update-policy type subdomain to match documentation (CVE-2020-8624)
- Fix EDNS512 loops on broken servers
- rebinding protection for forwarding DNS server upstream patch (#1832812)
- Add CVE tests to codebase