Viewing all changes in revision 36.
- Committer: Package Import Robot
- Date: 2012-06-04 13:53:06 UTC
- Revision ID: package-import@ubuntu.com-20120604135306-n9xof0tuo88vrt7c
* SECURITY UPDATE: ghost domain names attack
- lib/dns/rbtdb.c: Restrict the TTL of NS RRset to no more than that
of the old NS RRset when replacing it.
- Patch backported from 9.6-ESV-R6.
- CVE-2012-1033
* SECURITY UPDATE: denial of service via zero length rdata handling
- lib/dns/rdata.c,lib/dns/rdataslab.c: use sentinel pointer for
duplicate rdata.
- Patch backported from 9.6-ESV-R7-P1.
- CVE-2012-1667
- lib/dns/rbtdb.c: Restrict the TTL of NS RRset to no more than that
of the old NS RRset when replacing it.
- Patch backported from 9.6-ESV-R6.
- CVE-2012-1033
* SECURITY UPDATE: denial of service via zero length rdata handling
- lib/dns/rdata.c,lib/dns/rdataslab.c: use sentinel pointer for
duplicate rdata.
- Patch backported from 9.6-ESV-R7-P1.
- CVE-2012-1667
- files modified:
- debian/changelog
expand all
collapse all
added
removed
