Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package bind for openSUSE:Factory checked in at 2026-01-22 15:12:19 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/bind (Old) and /work/SRC/openSUSE:Factory/.bind.new.1928 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "bind" Thu Jan 22 15:12:19 2026 rev:226 rq:1328514 version:9.20.18 Changes: -------- --- /work/SRC/openSUSE:Factory/bind/bind.changes 2026-01-21 14:11:15.711594743 +0100 +++ /work/SRC/openSUSE:Factory/.bind.new.1928/bind.changes 2026-01-22 15:12:27.161924631 +0100 @@ -1,0 +2,42 @@ +Wed Jan 21 13:03:10 UTC 2026 - Jorik Cronenberg <[email protected]> + +- Upgrade to release 9.20.18 + Security Fixes: + * Fix incorrect length checks for BRID and HHIT records. + (CVE-2025-13878) + [bsc#1256997] + + Feature Changes: + * Add more information to the rndc recursing output about + fetches. + * Reduce the number of outgoing queries. + * Provide more information when memory allocation fails. + + Bug Fixes: + * Make DNSSEC key rollovers more robust. + * Fix a catalog zone issue, where member zones could fail to + load. + * Allow glue in delegations with QTYPE=ANY. + * Fix slow speed when signing a large delegation zone with NSEC3 + opt-out. + * Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to + be invalid. + * Fix a possible catalog zone issue during reconfiguration. + * Fix the charts in the statistics channel. + * Adding NSEC3 opt-out records could leave invalid records in + chain. + * Fix spurious timeouts while resolving names. + * Fix bug where zone switches from NSEC3 to NSEC after + retransfer. + * AMTRELAY type 0 presentation format handling was wrong. + * Fix parsing bug in remote-servers with key or TLS. + * Fix DoT reconfigure/reload bug in the resolver. + * Skip unsupported algorithms when looking for a signing key. + * Fix dnssec-keygen key collision checking for KEY RRtype keys. + * dnssec-verify now uses exit code 1 when failing due to illegal + options. + * Prevent assertion failures of dig when a server is specified + before the -b option. + * Skip buffer allocations if not logging. + +------------------------------------------------------------------- Old: ---- bind-9.20.15.tar.xz bind-9.20.15.tar.xz.asc New: ---- bind-9.20.18.tar.xz bind-9.20.18.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ bind.spec ++++++ --- /var/tmp/diff_new_pack.vXsJWo/_old 2026-01-22 15:12:29.762032709 +0100 +++ /var/tmp/diff_new_pack.vXsJWo/_new 2026-01-22 15:12:29.762032709 +0100 @@ -34,7 +34,7 @@ %define dlz_modules_hash 5923650 Name: bind -Version: 9.20.15 +Version: 9.20.18 Release: 0 Summary: Domain Name System (DNS) Server (named) License: MPL-2.0 ++++++ bind-9.20.15.tar.xz -> bind-9.20.18.tar.xz ++++++ ++++ 103466 lines of diff (skipped)
