-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2012-06-04 13:26:07 UTC
-
Revision ID:
package-import@ubuntu.com-20120604132607-6k176c9xn04f6bfh
Tags: 1:9.7.3.dfsg-1ubuntu4.2
* SECURITY UPDATE: ghost domain names attack
- lib/dns/rbtdb.c: Restrict the TTL of NS RRset to no more than that
of the old NS RRset when replacing it.
- Patch backported from 9.7.5.
- CVE-2012-1033
* SECURITY UPDATE: denial of service via zero length rdata handling
- lib/dns/rdata.c,lib/dns/rdataslab.c: use sentinel pointer for
duplicate rdata.
- Patch backported from 9.7.6-P1.
- CVE-2012-1667