[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

testing bind9 for Wheezy LTS

Hi everybody,

I uploaded version 9.8.4.dfsg.P1-6+nmu2+deb7u14 of bind9 to:


Please give it a try and tell me about any problems you met. It would be great to test bind9 as a recursive server and/or with DNSSEC.


   * CVE-2016-9131: Assertion failure related to caching of TKEY records
     in upstream DNS responses.
   * CVE-2016-9147: Processing of RRSIG records in upstream DNS response
     without corresponding signed data could lead to an assertion failure.
   * CVE-2016-9444: Missing RRSIG records in the authority section of
     upstream responses could lead to an assertion failure.
   * RT #43779: Fix handling of CNAME/DNAME responses.  (Regression due
     to the CVE-2016-8864 fix.)

Reply to: