From b8876de4ab0fa1c5cd1633f83c0e338ccfb2627e Mon Sep 17 00:00:00 2001 From: Mark Andrews Date: Wed, 15 Feb 2017 13:02:17 +1100 Subject: [PATCH] 9.9.9-P7 --- CHANGES | 2 ++ README | 5 +++++ doc/arm/notes.xml | 5 +++++ lib/dns/api | 2 +- 4 files changed, 13 insertions(+), 1 deletion(-) diff --git a/CHANGES b/CHANGES index 449a24c31d0..d581a252e1e 100644 --- a/CHANGES +++ b/CHANGES @@ -1,3 +1,5 @@ + --- 9.9.9-P7 released --- + 4575. [security] DNS64 with "break-dnssec yes;" can result in an assertion failure. (CVE-2017-3136) [RT #44653] diff --git a/README b/README index fb0263f91ee..31488ef50dd 100644 --- a/README +++ b/README @@ -51,6 +51,11 @@ BIND 9 For up-to-date release notes and errata, see http://www.isc.org/software/bind9/releasenotes +BIND 9.9.9-P7 + + This version contains a fix for CVE-2017-3136, and updates + the built in trusted keys for the root zone. + BIND 9.9.9-P6 This version contains a fix for CVE-2017-3135, and a bug fix diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml index a1c6cf268ef..48c041b9ec1 100644 --- a/doc/arm/notes.xml +++ b/doc/arm/notes.xml @@ -23,6 +23,11 @@ This document summarizes changes since BIND 9.9.9: + + BIND 9.9.9-P7 addresses the security issue described in + CVE-2017-3136, and updates the built in trusted keys for + the root zone. + BIND 9.9.9-P6 addresses the security issue described in CVE-2017-3135, and fixes a regression introduced in a prior diff --git a/lib/dns/api b/lib/dns/api index 9b31d25d322..272e0e17979 100644 --- a/lib/dns/api +++ b/lib/dns/api @@ -7,5 +7,5 @@ # 9.10: 140-149 # 9.11: 160-169 LIBINTERFACE = 172 -LIBREVISION = 5 +LIBREVISION = 6 LIBAGE = 0 -- 2.47.3