mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-31 22:45:39 +00:00
Code Issues Releases Wiki Activity

[master] spelling, release note

Browse Source
This commit is contained in:
Evan Hunt
2018-02-02 10:32:17 -08:00
parent 5fdca0da2f
commit c34680cf3b
2 changed files with 15 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
CHANGES
View File

@@ -6,11 +6,12 @@
4881. [bug] Only include dst_openssl.h when OpenSSL is required. 4881. [bug] Only include dst_openssl.h when OpenSSL is required.
[RT #47068] [RT #47068]
4880. [bug] Named wasn't returning the target of a cross zone 4880. [bug] Named wasn't returning the target of a cross-zone
CNAME between to served zones when recursion was CNAME between two served zones when recursion was
desired and available (RD=1, RA=1). Don't return desired and available (RD=1, RA=1). (When this is
the CNAME target otherwise to prevent accidental not the case, the CNAME target is deliberately
cache poisoning. [RT #47078] withheld to prevent accidental cache poisoning.)
[RT #47078]
4879. [bug] dns_rdata_caa:value_len field was too small. 4879. [bug] dns_rdata_caa:value_len field was too small.
[RT #47086] [RT #47086]

9
doc/arm/notes.xml
View File

@@ -87,6 +87,15 @@
<section xml:id="relnotes_bugs"><info><title>Bug Fixes</title></info> <section xml:id="relnotes_bugs"><info><title>Bug Fixes</title></info>
<itemizedlist> <itemizedlist>
<listitem>
<para>
When answering authoritative queries, <command>named</command>
does not return the target of a cross-zone CNAME between two
locally served zones; this prevents accidental cache poisoning.
This same restriction was incorrectly applied to recursive
queries as well; this has been fixed. [RT #47078]
</para>
</listitem>
<listitem> <listitem>
<para> <para>
Attempting to validate improperly unsigned CNAME responses Attempting to validate improperly unsigned CNAME responses