bind9 1:9.16.33-1~deb11u1 source package in Debian
Changelog
bind9 (1:9.16.33-1~deb11u1) bullseye-security; urgency=high
* New upstream version 9.16.33
- CVE-2022-2795: Processing large delegations may severely degrade
resolver performance
- CVE-2022-2881: Buffer overread in statistics channel code
- CVE-2022-2906: Memory leaks in code handling Diffie-Hellman key
exchange via TKEY RRs (OpenSSL 3.0.0+ only)
- CVE-2022-3080: BIND 9 resolvers configured to answer from stale
cache with zero stale-answer-client-timeout may terminate unexpectedly
- CVE-2022-38177: Memory leak in ECDSA DNSSEC verification code
- CVE-2022-38178: Memory leaks in EdDSA DNSSEC verification code
* Drop libldap2-dev from Build-Depends (Closes: #1008021)
* Add runtime dependency on libuv1 >= 1.40.0 (Closes: #1009889)
-- Ondřej Surý <email address hidden> Wed, 21 Sep 2022 12:40:02 +0200
Upload details
- Uploaded by:
- Debian DNS Team
- Uploaded to:
- Bullseye
- Original maintainer:
- Debian DNS Team
- Architectures:
- any all
- Section:
- net
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| bind9_9.16.33-1~deb11u1.dsc | 3.2 KiB | 0a6f65c3e9ac6a3ca38cdf4a113d41009586994cbebebafd9e7c3d654ca8b2ae |
| bind9_9.16.33.orig.tar.xz | 4.9 MiB | ec4fbea4b2e368d1824971509e33fa159224ad14b436034c6bcd46104c328d91 |
| bind9_9.16.33.orig.tar.xz.asc | 833 bytes | d27787a7d78645f69121270d1f356a6f4dd5088eaadef25d8c7891559ff01036 |
| bind9_9.16.33-1~deb11u1.debian.tar.xz | 76.7 KiB | ae3f95ef18d436693ef466228246f6c4c76a396d39996c0258aa3479f5078288 |
No changes file available.
