[ol8_appstream] bind-pkcs11-libs-32:9.11.36-16.el8_10.2.x86_64

This is a set of BIND libraries (dns, isc) compiled with native PKCS#11
functionality.

Changelog (Show File list) (Show related packages)

• Tue Aug 06 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.2

  - Rebuild after CI change

• Thu Jul 18 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.1

  - Resolve CVE-2024-1975
  - Resolve CVE-2024-1737
  - Add ability to change runtime limits for max types and records per name

• Mon Apr 15 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16

  - Ensure incompatible dhcp is not accepted

• Fri Apr 12 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-15

  - Ensure incompatible bind-dyndb-ldap is not accepted

• Mon Feb 26 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-14

  - Speed up parsing of DNS messages with many different names (CVE-2023-4408)
  - Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387 CVE-2023-50868)
  - Do not use header_prev in expire_lru_headers

• Thu Dec 07 2023 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-13

  - Update addresses of b.root-servers.net (RHEL-18449)

• Mon Oct 09 2023 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-12

  - Disable caching of stale records by default (RHEL-11785)

• Tue Sep 19 2023 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-11

  - Prevent exahustion of memory from control channel (CVE-2023-3341)

• Thu Jun 22 2023 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-10

  - Prevent the cache going over the configured limit (CVE-2023-2828)

• Wed Feb 08 2023 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-9

  - Prevent flooding with UPDATE requests (CVE-2022-3094)
  - include upstream test for that change