Ubuntu
bind9 package

lp://staging/ubuntu/edgy-updates/bind9

Edgy (6.10)
edgy-updates

Created by James Westby on 2009-12-02 and last modified on 2009-12-02

Get this branch:: bzr branch lp://staging/ubuntu/edgy-updates/bind9

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Development

Recent revisions

12. By Soren Hansen on 2008-01-11: l.root-servers.net. got a new IP. (LP #160176)
11. By Kees Cook on 2007-07-24: * SECURITY UPDATE: query responses could be forged remotely.
* bin/named/client.c, lib/dispatch.c, lib/include/dispatch.h:
upstream fixes back ported.
* References
CVE-2007-2926
10. By Kees Cook on 2007-01-25: * SECURITY UPDATE: remote denial of service.
* lib/dns/include/dns/validator.h, lib/dns/{validator,resolver}.c,
  lib/dns/api: fixes taken from upstream changes between bind 9.3.3 and
  9.3.4, applied inline.
* References
  CVE-2007-0493 CVE-2007-0494
9. By Kees Cook on 2006-09-28: * SECURITY UPDATE: name servers accessible from the Internet could be
  used as an amplifier in DDoS attacks against other networks.
* debian/named.conf.options: allow recursion only on localnets. This
  matches the default configuration of listening on all interfaces, and
  gives a reasonable balance between allowing local recursion, and
  protecting the server from being used in a DDoS attack.
* References
  CVE-2006-0987
  http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=248899
8. By Martin Pitt on 2006-09-07: * SECURITY UPDATE:
* bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
  to fix the following flaws:
  - A remote user (DNS server) can send specially crafted RRset responses in
    return to a recursive SIG query to cause the requesting named service to
    crash [CVE-2006-4095].
  - A remote user can also send specially crafted queries to trigger an
    INSIST failure and cause the requesting service(s) to crash
    [CVE-2006-4096].
7. By Matthias Klose on 2006-02-16: Drop build dependency on g++-3.4 (#292958 was filed for g++-3.3,
fixed in g++-3.4 and up).
6. By LaMont Jones on 2006-01-16: * correct force-reload. Closes: #333841
* Fix init.d's usage message. Closes: #331090
* resolvconf tweaks. Closes: #252232, #275412
5. By LaMont Jones on 2006-01-05: * New upstream
* use lsb-base for start/stop messages in init.d.
* switch to debhelper 4
4. By LaMont Jones on 2005-04-19: resync with debian
3. By Thom May on 2004-11-29: * Nathaniel McCallum
- debian/init.d: pretty initscript
- debian/control: versioned depend on lsb-base

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp://staging/ubuntu/lucid/bind9

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntubind9 package