This document summarizes changes since BIND 9.10.4:
</p>
<p>
- BIND 9.10.4-P5 addresses the security issue described in
- CVE-2016-9131.
+ BIND 9.10.4-P5 addresses the security issues described in
+ CVE-2016-9131 and CVE-2016-9147.
</p>
<p>
BIND 9.10.4-P4 addresses the security issue described in
<div class="titlepage"><div><div><h3 class="title">
<a name="relnotes_security"></a>Security Fixes</h3></div></div></div>
<div class="itemizedlist"><ul class="itemizedlist" style="list-style-type: disc; ">
+<li class="listitem"><p>
+ Named mishandled some responses where covering RRSIG
+ records are returned without the requested data
+ resulting in a assertion failure. This flaw is disclosed in
+ CVE-2016-9147. [RT #43548]
+ </p></li>
<li class="listitem"><p>
Named incorrectly tried to cache TKEY records which could
trigger a assertion failure when there was a class mismatch.
This document summarizes changes since BIND 9.10.4:
</p>
<p>
- BIND 9.10.4-P5 addresses the security issue described in
- CVE-2016-9131.
+ BIND 9.10.4-P5 addresses the security issues described in
+ CVE-2016-9131 and CVE-2016-9147.
</p>
<p>
BIND 9.10.4-P4 addresses the security issue described in
<div class="titlepage"><div><div><h3 class="title">
<a name="relnotes_security"></a>Security Fixes</h3></div></div></div>
<div class="itemizedlist"><ul class="itemizedlist" style="list-style-type: disc; ">
+<li class="listitem"><p>
+ Named mishandled some responses where covering RRSIG
+ records are returned without the requested data
+ resulting in a assertion failure. This flaw is disclosed in
+ CVE-2016-9147. [RT #43548]
+ </p></li>
<li class="listitem"><p>
Named incorrectly tried to cache TKEY records which could
trigger a assertion failure when there was a class mismatch.
projects / thirdparty / bind9.git / commitdiff
