Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package bind for openSUSE:Factory checked in
at 2023-06-23 21:51:53
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/bind (Old)
and /work/SRC/openSUSE:Factory/.bind.new.15902 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "bind"
Fri Jun 23 21:51:53 2023 rev:196 rq:1094609 version:9.18.16
Changes:
--------
--- /work/SRC/openSUSE:Factory/bind/bind.changes 2023-05-18
15:18:23.565569237 +0200
+++ /work/SRC/openSUSE:Factory/.bind.new.15902/bind.changes 2023-06-23
21:51:56.438401052 +0200
@@ -1,0 +2,40 @@
+Thu Jun 22 08:04:23 UTC 2023 - Jorik Cronenberg <jorik.cronenb...@suse.com>
+
+- Update to release 9.18.16
+ Security Fixes:
+ * The overmem cleaning process has been improved, to prevent the
+ cache from significantly exceeding the configured
+ max-cache-size limit. (CVE-2023-2828)
+ * A query that prioritizes stale data over lookup triggers a
+ fetch to refresh the stale data in cache. If the fetch is
+ aborted for exceeding the recursion quota, it was possible for
+ named to enter an infinite callback loop and crash due to stack
+ overflow. This has been fixed. (CVE-2023-2911)
+
+ New Features:
+ * The system test suite can now be executed with pytest (along
+ with pytest-xdist for parallel execution).
+
+ Removed Features:
+ * TKEY mode 2 (Diffie-Hellman Exchanged Keying) is now
+ deprecated, and will be removed in a future release. A warning
+ will be logged when the tkey-dhkey option is used in
+ named.conf.
+
+ Bug Fixes:
+ * BIND could get stuck on reconfiguration when a listen-on
+ statement for HTTP is removed from the configuration. That has
+ been fixed.
+ * Previously, it was possible for a delegation from cache to be
+ returned to the client after the stale-answer-client-timeout
+ duration. This has been fixed.
+ * BIND could allocate too big buffers when sending data via
+ stream-based DNS transports, leading to increased memory usage.
+ This has been fixed.
+ * When the stale-answer-enable option was enabled and the
+ stale-answer-client-timeout option was enabled and larger than
+ 0, named previously allocated two slots from the
+ clients-per-query limit for each client and failed to gradually
+ auto-tune its value, as configured. This has been fixed.
+
+-------------------------------------------------------------------
Old:
----
bind-9.18.15.tar.xz
bind-9.18.15.tar.xz.asc
New:
----
bind-9.18.16.tar.xz
bind-9.18.16.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ bind.spec ++++++
--- /var/tmp/diff_new_pack.38kmsf/_old 2023-06-23 21:51:58.222410743 +0200
+++ /var/tmp/diff_new_pack.38kmsf/_new 2023-06-23 21:51:58.254410918 +0200
@@ -56,7 +56,7 @@
%define _fillupdir %{_localstatedir}/adm/fillup-templates
%endif
Name: bind
-Version: 9.18.15
+Version: 9.18.16
Release: 0
Summary: Domain Name System (DNS) Server (named)
License: MPL-2.0
++++++ bind-9.18.15.tar.xz -> bind-9.18.16.tar.xz ++++++
++++ 7509 lines of diff (skipped)
