17ab4ed4e4
Fixes security issues: * CVE-2021-25220 -- The rules for acceptance of records into the cache have been tightened to prevent the possibility of poisoning if forwarders send records outside the configured bailiwick. * CVE-2021-25219 -- The "lame-ttl" option is now forcibly set to 0. This effectively disables the lame server cache, as it could previously be abused by an attacker to significantly degrade resolver performance. Signed-off-by: Noah Meyerhans <frodo@morgul.net> |
||
---|---|---|
.. | ||
files | ||
patches | ||
Config.in | ||
Makefile |