bind: Update to 9.11.5
authorMatthias Fischer <matthias.fischer@ipfire.org>
Sun, 4 Nov 2018 07:28:07 +0000 (08:28 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Wed, 7 Nov 2018 20:07:53 +0000 (20:07 +0000)
commitf4b6cdfbe71869fd636e41486f2044c97094cfef
tree6b8712ca695dde7e2f53bb02be4a75db20249718
parent01c2ea6b83d61fc216b834a323231b8977c5436d
bind: Update to 9.11.5

For details see:
http://ftp.isc.org/isc/bind9/9.11.5/RELEASE-NOTES-bind-9.11.5.html

Security fixes:
"named could crash during recursive processing of DNAME records when
deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740. [GL #387]

When recursion is enabled but the allow-recursion and allow-query-cache ACLs are
not specified, they should be limited to local networks, but they were
inadvertently set to match the default allow-query, thus allowing
remote queries. This flaw is disclosed in CVE-2018-5738. [GL #309]"

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
lfs/bind