[ol8_appstream] bind-pkcs11-32:9.11.36-3.el8.aarch64

This is a version of BIND server built with native PKCS#11 functionality.
It is important to have SoftHSM v2+ installed and some token initialized.
For other supported HSM modules please check the BIND documentation.

Changelog (Show File list) (Show related packages)

• Thu Feb 10 2022 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-2

  - Reduce memory used per-view on machine with few processors (#2030239)

• Tue Dec 21 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-2

  - Rebuilt on a new side-tag (#2013993)

• Mon Nov 01 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-1

  - Update to 9.11.36

• Mon Nov 01 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.26-9

  - Correct tsig system test

• Wed Oct 13 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.26-8

  - Propagate ephemeral port ranges to chroot (#1950714)

• Tue Aug 24 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.26-7

  - Do not request softhsm from bind-pkcs11, it is only in modular build
    (#1934035)

• Fri Jul 09 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.26-6

  - Use random entropy to generate unique TKEY identifiers (#1980916)

• Fri May 07 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.26-5

  - Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
    (#1953056)

• Tue Apr 27 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.26-4

  - Possible assertion failure on DNAME processing (CVE-2021-25215)
  - Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)

• Mon Feb 15 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.26-3

  - Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)