From: Mark Andrews <marka@isc.org>
Date: Wed, 15 Feb 2017 02:02:17 +0000 (+1100)
Subject: 9.9.9-P7
X-Git-Tag: v9.9.9-P8~16
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=b8876de4ab0fa1c5cd1633f83c0e338ccfb2627e;p=thirdparty%2Fbind9.git

9.9.9-P7
---

diff --git a/CHANGES b/CHANGES
index 449a24c31d0..d581a252e1e 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,5 @@
+	--- 9.9.9-P7 released ---
+
 4575.	[security]	DNS64 with "break-dnssec yes;" can result in an
 			assertion failure. (CVE-2017-3136) [RT #44653]
 
diff --git a/README b/README
index fb0263f91ee..31488ef50dd 100644
--- a/README
+++ b/README
@@ -51,6 +51,11 @@ BIND 9
 	For up-to-date release notes and errata, see
 	http://www.isc.org/software/bind9/releasenotes
 
+BIND 9.9.9-P7
+
+	This version contains a fix for CVE-2017-3136, and updates
+	the built in trusted keys for the root zone.
+
 BIND 9.9.9-P6
 
 	This version contains a fix for CVE-2017-3135, and a bug fix
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index a1c6cf268ef..48c041b9ec1 100644
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -23,6 +23,11 @@
     <para>
       This document summarizes changes since BIND 9.9.9:
     </para>
+    <para>
+      BIND 9.9.9-P7 addresses the security issue described in
+      CVE-2017-3136, and updates the built in trusted keys for
+      the root zone.
+    </para>
     <para>
       BIND 9.9.9-P6 addresses the security issue described in
       CVE-2017-3135, and fixes a regression introduced in a prior
diff --git a/lib/dns/api b/lib/dns/api
index 9b31d25d322..272e0e17979 100644
--- a/lib/dns/api
+++ b/lib/dns/api
@@ -7,5 +7,5 @@
 # 9.10: 140-149
 # 9.11: 160-169
 LIBINTERFACE = 172
-LIBREVISION = 5
+LIBREVISION = 6
 LIBAGE = 0