: Log in!


ウェブ 検索
トップ  >  Linux16歩  >  2016-01-20 bindのupdate
20160120 bind-9.10.3-P3にupdateしました

Release Note

Security Fixes

* Specific APL data could trigger an INSIST. This flaw was discovered
  by Brian Mitchell and is disclosed in CVE-2015-8704. [RT #41396]
* Certain errors that could be encountered when printing out or
  logging an OPT record containing a CLIENT-SUBNET option could be
  mishandled, resulting in an assertion failure. This flaw was
  discovered by Brian Mitchell and is disclosed in CVE-2015-8705. 
* Named is potentially vulnerable to the OpenSSL vulnerabilty
  described in CVE-2015-3193.
* Insufficient testing when parsing a message allowed records with an
  incorrect class to be be accepted, triggering a REQUIRE failure
  when those records were subsequently cached. This flaw is disclosed
  in CVE-2015-8000. [RT #40987]
* Incorrect reference counting could result in an INSIST failure if a
  socket error occurred while performing a lookup. This flaw is
  disclosed in CVE-2015-8461. [RT#40945]

New Features

* None.

Feature Changes

* Updated the compiled in addresses for H.ROOT-SERVERS.NET.

Bug Fixes

* Authoritative servers that were marked as bogus (e.g. blackholed in
  configuration or with invalid addresses) were being queried anyway.
  [RT #41321]

・RELEASE-NOTES-BIND-9.10.3-P3.txt を参照してください
投票数:19 平均点:5.26
2016-01-17 opensshのupdate
2016-01-21 ntpのupdate