[ol9_appstream] bind-libs-32:9.16.23-14.el9_3.aarch64

Contains heavyweight version of BIND suite libraries used by both named DNS
server and utilities in bind-utils package.

Changelog (Show File list) (Show related packages)

• Wed Sep 20 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-14

  - Limit the amount of recursion possible in control channel (CVE-2023-3341)

• Mon Jun 26 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-13

  - Prevent possible endless loop when refreshing stale data (CVE-2023-2911)

• Tue Jun 20 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-12

  - Strengten cache cleaning to prevent overflowing configured limit
    (CVE-2023-2828)

• Mon Feb 27 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-11

  - Correct backport issue in statistics rendering fix (#2126912)

• Sat Feb 25 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-10

  - Handle subtle difference between upstream and rhel (CVE-2022-3094)

• Wed Feb 08 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-9

  - Prevent flooding with UPDATE requests (CVE-2022-3094)
  - Handle RRSIG queries when server-stale is active (CVE-2022-3736)
  - Fix crash when soft-quota is reached and serve-stale is active (CVE-2022-3924)

• Thu Oct 13 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-8

  - Correct regression preventing bind-dyndb-ldap build (#2162795)

• Tue Oct 04 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-7

  - Prevent freeing zone during statistics rendering (#2101712)

• Tue Oct 04 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-6

  - Bound the amount of work performed for delegations (CVE-2022-2795)
  - Add /usr/lib64/named to bind-chroot (#2129466)

• Thu Sep 22 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-5

  - Fix possible serve-stale related crash (CVE-2022-3080)
  - Fix memory leak in ECDSA verify processing (CVE-2022-38177)
  - Fix memory leak in EdDSA verify processing (CVE-2022-38178)