2022-04-12 13:41:18 +02:00
|
|
|
.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")
|
|
|
|
|
..
|
|
|
|
|
.. SPDX-License-Identifier: MPL-2.0
|
|
|
|
|
..
|
|
|
|
|
.. This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
|
.. License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
|
.. file, you can obtain one at https://mozilla.org/MPL/2.0/.
|
|
|
|
|
..
|
|
|
|
|
.. See the COPYRIGHT file distributed with this work for additional
|
|
|
|
|
.. information regarding copyright ownership.
|
|
|
|
|
|
2023-08-07 10:23:55 +02:00
|
|
|
Notes for BIND 9.19.17
|
2023-01-13 15:35:32 +01:00
|
|
|
----------------------
|
2022-04-12 13:41:18 +02:00
|
|
|
|
|
|
|
|
Security Fixes
|
|
|
|
|
~~~~~~~~~~~~~~
|
|
|
|
|
|
|
|
|
|
- None.
|
|
|
|
|
|
|
|
|
|
New Features
|
|
|
|
|
~~~~~~~~~~~~
|
|
|
|
|
|
2023-04-27 13:40:24 +02:00
|
|
|
- Add support for User Statically Defined Tracing (USDT) probes - static tracing
|
|
|
|
|
points for user-level software. This allows a fine-grained application
|
|
|
|
|
tracing with zero-overhead when the probes are not enabled. :gl:`#4041`
|
2023-03-30 15:32:59 +02:00
|
|
|
|
2022-04-12 13:41:18 +02:00
|
|
|
Removed Features
|
|
|
|
|
~~~~~~~~~~~~~~~~
|
|
|
|
|
|
2023-09-04 13:11:49 +02:00
|
|
|
- The :any:`dnssec-must-be-secure` option has been deprecated and will be
|
|
|
|
|
removed in a future release. :gl:`#4263`
|
2023-03-22 15:06:58 -07:00
|
|
|
|
2022-04-12 13:41:18 +02:00
|
|
|
Feature Changes
|
|
|
|
|
~~~~~~~~~~~~~~~
|
|
|
|
|
|
2023-08-10 10:47:05 +02:00
|
|
|
- Make :iscman:`nsupdate` honor the ``-v`` option for SOA queries, that is send
|
|
|
|
|
the request over TCP, only if the server is specified. :gl:`#1181`
|
2023-02-21 14:39:27 +00:00
|
|
|
|
2023-07-04 13:46:02 +10:00
|
|
|
- Extend client side support for the EDNS EXPIRE option to IXFR and
|
|
|
|
|
AXFR query types. ``named`` will now be making EDNS queries AXFR
|
|
|
|
|
and IXFR queries with EDNS options present. :gl:`#4170`
|
|
|
|
|
|
2022-04-12 13:41:18 +02:00
|
|
|
Bug Fixes
|
|
|
|
|
~~~~~~~~~
|
|
|
|
|
|
2023-08-14 11:20:41 +02:00
|
|
|
- The value of If-Modified-Since header in statistics channel was not checked
|
|
|
|
|
for length leading to possible buffer overflow by an authorized user. We
|
|
|
|
|
would like to emphasize that statistics channel must be properly setup to
|
|
|
|
|
allow access only from authorized users of the system. :gl:`#4124`
|
|
|
|
|
|
2023-08-21 15:15:26 +02:00
|
|
|
This issue was reported independently by Eric Sesterhenn of X41 D-SEC and
|
|
|
|
|
Cameron Whitehead.
|
|
|
|
|
|
2023-06-28 12:01:58 +10:00
|
|
|
- The value of Content-Length header in statistics channel was not
|
|
|
|
|
bound checked and negative or large enough value could lead to
|
|
|
|
|
overflow and assertion failure. :gl:`#4125`
|
|
|
|
|
|
|
|
|
|
This issue was reported by Eric Sesterhenn of X41 D-SEC.
|
|
|
|
|
|
|
|
|
|
- Address memory leaks due to not clearing OpenSSL error stack. :gl:`#4159`
|
2023-08-21 15:15:26 +02:00
|
|
|
|
|
|
|
|
This issue was reported by Eric Sesterhenn of X41 D-SEC.
|
2023-08-14 11:20:41 +02:00
|
|
|
|
2023-08-28 12:28:35 +10:00
|
|
|
- Following the introduction of krb5-subdomain-self-rhs and
|
|
|
|
|
ms-subdomain-self-rhs update rules, removal of nonexistent PTR
|
|
|
|
|
and SRV records via UPDATE could fail. This has been fixed. :gl:`#4280`
|
|
|
|
|
|
2023-08-24 11:49:52 +02:00
|
|
|
- The value of :any:`stale-refresh-time` was set to zero after ``rndc flush``.
|
|
|
|
|
This has been fixed. :gl:`#4278`
|
|
|
|
|
|
2022-11-07 14:03:15 +01:00
|
|
|
Known Issues
|
|
|
|
|
~~~~~~~~~~~~
|
|
|
|
|
|
2023-03-07 14:10:26 +01:00
|
|
|
- There are no new known issues with this release. See :ref:`above
|
|
|
|
|
<relnotes_known_issues>` for a list of all known issues affecting this
|
|
|
|
|
BIND 9 branch.
|
