aboutsummaryrefslogtreecommitdiffstats
path: root/main/bind
Commit message (Collapse)AuthorAgeFilesLines
* main/bind: add previous ISC signing keytcely2019-08-231-2/+6
| | | | | | | | | | | | | Without this TOFU unknown entry, a release signed with the older key prompts for a trust decision. Avoiding the prompt is desirable. Also, format GPG details so they are easier to check manually. Used: $ gpg --verify bind-*.asc bind-*.tar.gz $ awk \ '/gpgfingerprints=/,/(^|[^=])["'\'']$/ {print;}' \ APKBUILD
* main/bind: downloads.isc.orgtcely2019-08-081-1/+1
| | | Closes GH-9961
* main/bind: security upgrade to 9.14.4 (CVE-2019-6471)Leonardo Arena2019-08-081-2/+4
| | | | Fixes #10626
* main/bind: split dnssec-tools and py3-bindNatanael Copa2019-05-021-3/+23
| | | | | | | | move python modules and dnssec-tools to separate subpackages so we avoid install python3 by default. py3-bind may be useful separately for python scripts so lets separate out that as well.
* main/bind: become maintainertcely2019-04-301-1/+2
|
* main/bind: security upgrade to 9.14.1tcely2019-04-301-2/+8
| | | | | | | - CVE-2019-6467 - CVE-2018-5743 fixes #10367
* main/bind: upgrade to 9.14.0tcely2019-04-302-37/+84
|
* main/bind: clear depends for libs subpackageSören Tempel2019-04-091-1/+6
| | | | | | | | | | | Otherwise the dev and tools subpackages install dns-root-hints (since both depend on the libs subpackage) even though they shouldn't need it. Discussion: Unfortunately, abuild doesn't have a depends_libs variable thus we need to define a custom libs function to clear the dependency. This approach is also used by other abuilds, e.g. testing/boinc. See also: 4badc1aa803f5dd0f67d2df3004acc3f990ba23f
* main/bind: fix slow startHenrik Riomar2019-04-082-3/+3
| | | | | named-checkconf needs entropy to start, or else it will take up to a minute to start at boot.
* main/bind: remove unrecognized configure flagtcely2019-04-081-1/+0
|
* main/bind: security upgrade to 9.12.3-P4tcely2019-04-081-3/+7
| | | | | | - CVE-2019-6465 - CVE-2018-5745 - CVE-2018-5744
* main/bind: add and use -dnssec-root subpackagetcely2019-04-081-1/+19
|
* main/bind: use dns-root-hintstcely2019-04-082-98/+4
|
* main/bind: named.ca cleanup white-space warningstcely2019-02-062-26/+26
|
* main/bind: upgrade named.ca to 2018111402tcely2019-02-062-43/+50
|
* main/bind: upgrade to 9.12.3-P1tcely2019-02-061-2/+2
| | | | https://kb.isc.org/docs/dnssec-key-deletion-may-create-broken-nsec-and-nsec3-chains-and-unnecessary-rrsigs
* main/bind: Upgrade to 9.12.3Taner Tas2018-11-291-7/+19
| | | | | | * Add "--disable-isc-spnego" to use gss-spnego instead. fixes #9462
* main/bind: rebuild against openssl 1.1Natanael Copa2018-11-071-2/+2
|
* main/bind: add secfixes commenttcely2018-08-281-0/+3
|
* main/bind: Upgrade to 9.12.2-P1, enable DLZ and kerberosTaner Tas2018-08-162-66/+18
| | | | | | * Enable DLZ (Dynamically Loadable Zones) support with file system, ldap, stub backends * Enable GSSAPI/Kerberos support * Re-arrange configure options
* main/bind: security upgrade to 9.12.1_p2Jakub Jirutka2018-05-221-3/+6
|
* main/[various]: properly rebuild against json-c-0.13Natanael Copa2018-04-191-1/+1
|
* main/bind: rebuild against json-c-0.13Natanael Copa2018-04-191-1/+1
|
* main/bind: rebuild against libressl-2.7Natanael Copa2018-04-063-6/+59
|
* main/bind: upgrade to 9.12.0 and modernize abuildtcely2018-03-021-32/+25
|
* main/bind: Split OpenRC scripts, disable checkA. Wilcox2018-02-261-2/+6
|
* main/bind: Upgrade to 9.11.2-P1tcely2018-02-061-3/+5
|
* main/bind: enable json statisticsJared Szechy2017-12-151-2/+3
|
* main/bind: rebuild against libressl-2.6Natanael Copa2017-11-091-1/+1
|
* main/bind: upgrade to 9.11.2Natanael Copa2017-10-311-3/+3
|
* main/bind: bump pkgrelNatanael Copa2017-08-081-1/+1
| | | | bump pkgrel to avoid mismatch with caches
* Revert "main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7496"Francesco Colista2017-08-072-291/+2
| | | | This reverts commit 724d3ef9cc4c309dc09e750d37ca4cb86b32df85.
* main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7496Francesco Colista2017-08-072-2/+291
|
* main/bind: upgrade to 9.11.1_p2Natanael Copa2017-07-061-2/+2
|
* main/bind: security upgrade to 9.11.1_p1 (CVE-2017-3140)Natanael Copa2017-06-161-2/+2
| | | | fixes #7437
* main/bind: upgrade to 9.11.1Natanael Copa2017-06-141-3/+3
|
* main/bind: rebuild against libressl 2.5Natanael Copa2017-04-181-1/+1
|
* main/bind: security upgrade to 9.11.0_p5 - fixes #7141Sergey Lukin2017-04-141-2/+6
| | | | | | CVE-2017-3136: An error handling synthesized records could cause an assertion failure when using DNS64 with "break-dnssec yes;" CVE-2017-3137: A response packet can cause a resolver to terminate when processing an answer containing a CNAME or DNAME CVE-2017-3138: named exits with a REQUIRE assertion failure if it receives a null command string on its control channel
* main/bind: security upgrade to 9.11.0_p3 (CVE-2017-3135)Natanael Copa2017-02-091-21/+3
| | | | fixes #6828
* main/bind: dont create homedir for bind userNatanael Copa2017-01-242-2/+2
| | | | | We dont want copy the content of /etc/skel to /etc/bind ref #6725
* main/bind: Upgrade to 9.11.0-P2.Przemyslaw Pawelczyk2017-01-171-4/+4
| | | | | | | | | | | | | | https://www.isc.org/downloads/bind/bind-9-11-new-features/ https://deepthought.isc.org/article/AA-01446/0/BIND-9.11.0-P2-Release-Notes.html https://kb.isc.org/article/AA-00913/74/BIND-9-Security-Vulnerability-Matrix.html Release notes mention addressing issue described in: CVE-2016-9778: An error handling certain queries using the nxdomain-redirect feature could cause a REQUIRE assertion failure in db.c but it's not present in 9.10.x, so it's not a security upgrade.
* main/bind: security upgrade to 9.10.4_p5 - fixes #6675Sergei Lukin2017-01-131-8/+15
| | | | | | CVE-2016-9131: A malformed response to an ANY query can cause an assertion failure during recursion CVE-2016-9147: An error handling a query response containing inconsistent DNSSEC information could cause an assertion failure CVE-2016-9444: An unusually-formed DS record response could cause an assertion failure
* main/bind: security upgrade to 9.10.4_p4 (CVE-2016-8864)Natanael Copa2016-11-021-5/+5
|
* main/bind: rebuild against libresslNatanael Copa2016-10-101-2/+2
|
* main/bind: security upgrade to 9.10.4_p3 (CVE-2016-2776)Natanael Copa2016-09-281-4/+4
| | | | fixes #6223
* main/bind: security upgrade to 9.10.4_p2 (CVE-2016-2775)Natanael Copa2016-07-251-5/+5
| | | | fixes #5951
* main/bind: rebuild with libxml2. Fixes #5711Francesco Colista2016-06-271-3/+3
|
* main/bind: upgrade to 9.10.4_p1Natanael Copa2016-05-271-5/+5
|
* main/bind: upgrade to 9.10.4Natanael Copa2016-05-161-5/+5
|
* main/[various]: bump pkgrel for pre-install fixesPrzemyslaw Pawelczyk2016-04-251-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-10-07 12:36:14 +0000