Hello community, here is the log from the commit of package pdns-recursor for openSUSE:Factory checked in at 2020-07-03 00:11:09 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/pdns-recursor (Old) and /work/SRC/openSUSE:Factory/.pdns-recursor.new.3060 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "pdns-recursor" Fri Jul 3 00:11:09 2020 rev:34 rq:818168 version:4.3.2 Changes: -------- --- /work/SRC/openSUSE:Factory/pdns-recursor/pdns-recursor.changes 2020-05-19 14:51:07.620421728 +0200 +++ /work/SRC/openSUSE:Factory/.pdns-recursor.new.3060/pdns-recursor.changes 2020-07-03 00:13:34.528297584 +0200 @@ -1,0 +2,13 @@ +Wed Jul 1 18:39:32 UTC 2020 - Adam Majer <[email protected]> + +- update to 4.3.2 + * Fixes a access restriction bypass vulnerability where ACL applied + to the internal web server via webserver-allow-from is + not properly enforced, allowing a remote attacker to send + HTTP queries to the internal web server, bypassing the restriction. + (CVE-2020-14196, bsc#1173302) + * improves CNAME loop detection + * Fix the handling of DS queries for the root + * Fix RPZ removals when an update has several deltas + +------------------------------------------------------------------- Old: ---- pdns-recursor-4.3.1.tar.bz2 pdns-recursor-4.3.1.tar.bz2.sig New: ---- pdns-recursor-4.3.2.tar.bz2 pdns-recursor-4.3.2.tar.bz2.sig ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pdns-recursor.spec ++++++ --- /var/tmp/diff_new_pack.n25u6y/_old 2020-07-03 00:13:36.164303001 +0200 +++ /var/tmp/diff_new_pack.n25u6y/_new 2020-07-03 00:13:36.168303015 +0200 @@ -35,7 +35,7 @@ %endif Name: pdns-recursor -Version: 4.3.1 +Version: 4.3.2 Release: 0 BuildRequires: autoconf BuildRequires: automake ++++++ pdns-recursor-4.3.1.tar.bz2 -> pdns-recursor-4.3.2.tar.bz2 ++++++ ++++ 2649 lines of diff (skipped)
