./net/bind912, Berkeley Internet Name Daemon implementation of DNS, version 9.12

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 9.12.4pl2nb2, Package name: bind-9.12.4pl2nb2, Maintainer: pkgsrc-users

BIND, the Berkeley Internet Name Daemon. This package contains the BIND
9.12 release.

This package contains the BIND 9.12 release.

- named and related libraries have been substantially refactored for
improved query performance.
- Code implementing the name server query processing logic has been
moved into a new libns library.
- The DNS Response Policy Service API (DNSRPS) is now supported.
- Log file timestamps can now also be formatted in ISO 8601 (local)
or ISO 8601 (UTC) formats.
- Added support for the EDNS Padding and Keepalive options.
- 'new-zones-directory' option sets the location where the
configuration data for zones added by rndc addzone is stored.
- The default key algorithm in rndc-confgen is now hmac-sha256.
- filter-aaaa-on-v4 and filter-aaaa-on-v6 options are now available
by default without a configure option.
- The obsolete isc-hmac-fixup command has been removed.

MESSAGE.rcd [+/-]


Package options: inet6, threads

Master sites:

SHA1: 80d35c9ee07bf9bdd87b8b0f68e5d551ffb14085
RMD160: 301d4f319980a185d9364b2970caa197d2f36e42
Filesize: 7729.208 KB

Version history: (Expand)


CVS history: (Expand)


   2019-08-18 14:55:29 by Juraj Lutter | Files touched by this commit (1)
Log message:
net/bind912: add zlib dependency. fixes build on SmartOS.
   2019-08-11 15:25:21 by Thomas Klausner | Files touched by this commit (3557) | Package updated
Log message:
Bump PKGREVISIONs for perl 5.30.0
   2019-06-28 19:01:31 by Jonathan Perkin | Files touched by this commit (6) | Package updated
Log message:
bind*: Remove privileges from SMF method script.

This inadvertently opened up the named process to more privileges than
necessary and could be considered a security risk.  This may affect chroot
support, adding back in support for that will need to be done carefully.

Bump PKGREVISIONs.
   2019-06-20 14:26:33 by Jonathan Perkin | Files touched by this commit (6)
Log message:
bind*: Move MESSAGE to MESSAGE.rcd, they are rc.d specific.
   2019-06-20 04:15:20 by Takahiro Kambe | Files touched by this commit (2) | Package updated
Log message:
net/bind912: update to 9.12.4pl2

Update bind912 to 9.12.4pl2 (BIND 9.12.4-P2).

	--- 9.12.4-P2 released ---

5244.	[security]	Fixed a race condition in dns_dispatch_getnext()
			that could cause an assertion failure if a
			significant number of incoming packets were
			rejected. (CVE-2019-6471) [GL #942]
   2019-06-19 12:58:49 by Jonathan Perkin | Files touched by this commit (3)
Log message:
bind*: Fix a couple of issues in the SMF method.

Fix a typo in the configuration_file arguments, joyent/pkgsrc#189.
Ensure the /var/run/named directory has the correct permissions.
   2019-05-02 15:31:07 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
net/bind912: fix an error when reloading configuration

Fix an error when reloading configuration.  There is on more check to
"directory" in option statement is writable.

Bump PKGREVISION.
   2019-04-30 04:46:16 by Takahiro Kambe | Files touched by this commit (10) | Package updated
Log message:
net/bind912: update to 9.12.4pl1

Update bind912 to 9.12.4pl1 (BIND 9.12.4-P1).

Fix security problem CVE-2018-5743 and CVE-2019-6467 and overhaul pkgsrc.
Now no need to change namedb is permission under NetBSD.

pkgsrc changes:

* Simplify DESCR.
* Update note about required directories.
* Drop pkg-config from USE_TOOLS.
* Drop none existing configure arguments and PKG_OPTIONS:
	- fetchlimit
	- sit
* Sort PLIST.

Please refer CHANGES file in detail before 9.12.4 release:

	--- 9.12.4-P1 released ---

5200.	[security]	tcp-clients settings could be exceeded in some cases,
			which could lead to exhaustion of file descriptors.
			(CVE-2018-5743) [GL #615]

5199.	[security]	In certain configurations, named could crash
			if nxdomain-redirect was in use and a redirected
			query resulted in an NXDOMAIN from the cache.
			(CVE-2019-6467) [GL #880]

5167.	[bug]		nxdomain-redirect could sometimes lookup the wrong
			redirect name. [GL #892]