mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-29 21:47:59 +00:00
Code Issues Releases Wiki Activity

Add CHANGES and release note for GL #2037

Browse Source
This commit is contained in:
Ondřej Surý 2020-07-21 15:24:21 +02:00 committed by Michał Kępień
parent 52733368fd
commit aaeea046ed
2 changed files with 13 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
CHANGES
View File

@ -14,7 +14,11 @@
5481. [placeholder] 5481. [placeholder]
5480. [placeholder] 5480. [security] When BIND 9 was compiled with native PKCS#11 support, it
was possible to trigger an assertion failure in code
determining the number of bits in the PKCS#11 RSA public
key with a specially crafted packet. (CVE-2020-8623)
[GL #2037]
5479. [security] named could crash in certain query resolution scenarios 5479. [security] named could crash in certain query resolution scenarios
where QNAME minimization and forwarding were both where QNAME minimization and forwarding were both

8
doc/notes/notes-current.rst
View File

@ -36,6 +36,14 @@ Security Fixes
ISC would like to thank Dave Feldman, Jeff Warren, and Joel Cunningham ISC would like to thank Dave Feldman, Jeff Warren, and Joel Cunningham
of Oracle for bringing this vulnerability to our attention. [GL #2028] of Oracle for bringing this vulnerability to our attention. [GL #2028]
- When BIND 9 was compiled with native PKCS#11 support, it was possible
to trigger an assertion failure in code determining the number of bits
in the PKCS#11 RSA public key with a specially crafted packet. This
was disclosed in CVE-2020-8623.
ISC would like to thank Lyu Chiy for bringing this vulnerability to
our attention. [GL #2037]
Known Issues Known Issues
~~~~~~~~~~~~ ~~~~~~~~~~~~