9.10.4-P7

diff --git a/CHANGES b/CHANGES
index 19f00d9a213e039d914b6945c14f30f8f02fa773..887f0a77aa8e120d64a3f00c6a78677ef4b09eab 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,5 @@
+       --- 9.10.4-P7 released ---
+
 4575.  [security]      DNS64 with "break-dnssec yes;" can result in an
                        assertion failure. (CVE-2017-3136) [RT #44653]
 

diff --git a/README b/README
index e3d5222551ead2eee5406a0601a6941e539272af..c7ff008684ea20f7ff7b137b428dccb8395750c8 100644 (file)
--- a/README
+++ b/README
@@ -51,6 +51,11 @@ BIND 9
        For up-to-date release notes and errata, see
        http://www.isc.org/software/bind9/releasenotes
 
+BIND 9.10.4-P7
+
+       This version contains a fix for CVE-2017-3136, and updates
+       the built in trusted keys for the root zone.
+
 BIND 9.10.4-P6
 
        This version contains a fix for CVE-2017-3135, and a bug fix

diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index 60caf9ec3cec840a54bfaac3703ca903e2042024..0fe464d101b8f933187adad3733f326b8d2a431f 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -23,6 +23,11 @@
     <para>
       This document summarizes changes since BIND 9.10.4:
     </para>
+    <para>
+      BIND 9.10.4-P7 addresses the security issue described in
+      CVE-2017-3136, and updates the built in trusted keys for
+      the root zone.
+    </para>
     <para>
       BIND 9.10.4-P6 addresses the security issue described in
       CVE-2017-3135, and fixes a regression introduced in a prior

diff --git a/lib/dns/api b/lib/dns/api
index 2bbf23e8c44a7bd5b545ae8a89f32a45e20b9c5e..8fa2c191077362da3b04d791732feb6e863ec9de 100644 (file)
--- a/lib/dns/api
+++ b/lib/dns/api
@@ -6,5 +6,5 @@
 # 9.9-sub: 130-139, 150-159
 # 9.10: 140-149, 160-169
 LIBINTERFACE = 165
-LIBREVISION = 5
+LIBREVISION = 6
 LIBAGE = 0