mirror
/
openwrt-packages
mirror of https://git.openwrt.org/feed/packages.git
1
0
Fork 0
Code Releases Activity
openwrt-packages/net/bind
History
Noah Meyerhans a9f1d7095c bind: bump to 9.18.24 
Fixes CVEs:

- CVE-2023-50387: Validating DNS messages containing a lot of DNSSEC signatures
  could cause excessive CPU load, leading to a denial-of-service condition.
- CVE-2023-50868: Preparing an NSEC3 closest encloser proof could cause
  excessive CPU load, leading to a denial-of-service condition.
- CVE-2023-4408: Parsing DNS messages with many different names could cause
  excessive CPU load.
- CVE-2023-5517: Specific queries could cause named to crash with an assertion
  failure when nxdomain-redirect was enabled.
- CVE-2023-5679: A bad interaction between DNS64 and serve-stale could cause
  named to crash with an assertion failure, when both of these features were
  enabled.

Signed-off-by: Noah Meyerhans <frodo@morgul.net>
(cherry picked from commit d277e41e78)
 		2024-02-16 19:21:54 +01:00
..
files named: don't leak mktemp files on reload 2022-03-15 15:20:15 -07:00
Config.in bind: support compile-time exclusion of DNS-over-HTTPS support 2022-02-07 21:31:54 -08:00
Makefile bind: bump to 9.18.24 2024-02-16 19:21:54 +01:00