[ol8_appstream] bind-pkcs11-devel-32:9.11.36-16.el8_10.6.i686

This a set of development files for BIND libraries (dns, isc) compiled
with native PKCS#11 functionality.

Changelog (Show File list) (Show related packages)

• Thu Oct 30 2025 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.6

  - Address various spoofing attacks (CVE-2025-40778)

• Thu Jul 10 2025 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.5

  - Add support for max-records-per-type and max-types-per-name options
    (RHEL-61936)
  - Support reading of new options also in named-checkconf -z, v2

• Thu Feb 06 2025 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.4

  - Change patches applying to use -P parameter

• Wed Feb 05 2025 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.3

  - Limit additional section records CPU processing (CVE-2024-11187)
  - Correct ANY queries to not have additional data appended

• Tue Aug 06 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.2

  - Rebuild after CI change

• Thu Jul 18 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16.1

  - Resolve CVE-2024-1975
  - Resolve CVE-2024-1737
  - Add ability to change runtime limits for max types and records per name

• Mon Apr 15 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-16

  - Ensure incompatible dhcp is not accepted

• Fri Apr 12 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-15

  - Ensure incompatible bind-dyndb-ldap is not accepted

• Mon Feb 26 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-14

  - Speed up parsing of DNS messages with many different names (CVE-2023-4408)
  - Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387 CVE-2023-50868)
  - Do not use header_prev in expire_lru_headers

• Thu Dec 07 2023 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-13

  - Update addresses of b.root-servers.net (RHEL-18449)