This is an old revision of the document!
Slackware-12.0 ChangeLog (2011-05-27)
Fri May 27 22:56:00 UTC 2011
Packages
Upgraded
- patches/packages/bind-9.4_ESV_R4_P1-i486-1_slack12.0.tgz
This release fixes security issues:
* A large RRSET from a remote authoritative server that results in
the recursive resolver trying to negatively cache the response can
hit an off by one code error in named, resulting in named crashing.
[RT #24650] [CVE-2011-1910]
* Zones that have a DS record in the parent zone but are also listed
in a DLV and won't validate without DLV could fail to validate. [RT
#24631]
For more information, see:
http://www.isc.org/software/bind/advisories/cve-2011-1910
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1910
(* Security fix *)