From: Tinderbox User <tbox@isc.org>
Date: Sat, 19 Oct 2019 23:30:23 +0000 (+0000)
Subject: Merge branch 'security-master'
X-Git-Tag: v9.15.6~56
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=8c573fc3fdb42f6ac9f5b79008940d18d3de524e;p=thirdparty%2Fbind9.git

Merge branch 'security-master'
---

8c573fc3fdb42f6ac9f5b79008940d18d3de524e
diff --cc CHANGES
index d34cc8b978b,3047b5d6c64..2f4f972fc79
--- a/CHANGES
+++ b/CHANGES
@@@ -1,14 -1,12 +1,20 @@@
 +5301.	[bug]		Detect partial prefixes / incomplete IPv4 address in
 +			acls. [GL #1143]
 +
 +5300.	[bug]		dig/mdig/delv: Add a colon after EDNS option names,
 +			even when the option is empty, to improve
 +			readability and allow correct parsing of YAML
 +			output. [GL #1226]
 +
- 5299.	[placeholder]
+ 	--- 9.15.5 released ---
  
- 5298.	[placeholder]
+ 5299.	[security]	A flaw in DNSSEC verification when transferring
+ 			mirror zones could allow data to be incorrectly
+ 			marked valid. (CVE-2019-6475) [GL #1252]
+ 
+ 5298.	[security]	Named could assert if a forwarder returned a
+ 			referral, rather than resolving the query, when QNAME
+ 			minimization was enabled. (CVE-2019-6476) [GL #1051]
  
  5297.	[bug]		Check whether a previous QNAME minimization fetch
  			is still running before starting a new one; return