Skip to content

CentOS 7 - Updates for x86_64: system environment/daemons: bind-pkcs11

bind-pkcs11 - Bind with native PKCS#11 functionality for crypto

Website: http://www.isc.org/products/BIND/
License: MPLv2.0
Vendor: CentOS
Description:
This is a version of BIND server built with native PKCS#11 functionality.
It is important to have SoftHSM v2+ installed and some token initialized.
For other supported HSM modules please check the BIND documentation.
This version of BIND binary is supported only in setup with the IPA server.

Packages

bind-pkcs11-9.11.4-26.P2.el7_9.16.x86_64 [363 KiB] Changelog by Stepan Broz (2024-04-16):
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
bind-pkcs11-9.11.4-26.P2.el7_9.15.x86_64 [363 KiB] Changelog by Stepan Broz (2023-09-25):
- Limit the amount of recursion possible in control channel (CVE-2023-3341)
bind-pkcs11-9.11.4-26.P2.el7_9.14.x86_64 [363 KiB] Changelog by Stepan Broz (2023-07-03):
- Prevent the cache going over the configured limit (CVE-2023-2828)
bind-pkcs11-9.11.4-26.P2.el7_9.13.x86_64 [362 KiB] Changelog by Petr Menšík (2022-12-14):
- Tighten cache protection against record from forwarders (CVE-2021-25220)
bind-pkcs11-9.11.4-26.P2.el7_9.10.x86_64 [362 KiB] Changelog by Petr Menšík (2022-09-22):
- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
bind-pkcs11-9.11.4-26.P2.el7_9.9.x86_64 [362 KiB] Changelog by Petr Menšík (2022-01-24):
- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
bind-pkcs11-9.11.4-26.P2.el7_9.8.x86_64 [362 KiB] Changelog by Petr Menšík (2021-10-14):
- Prevent a race after zone load (#2011220)
bind-pkcs11-9.11.4-26.P2.el7_9.7.x86_64 [362 KiB] Changelog by Petr Menšík (2021-07-13):
- Apply again patch 172, got removed by mistake
bind-pkcs11-9.11.4-26.P2.el7_9.5.x86_64 [361 KiB] Changelog by Petr Menšík (2021-04-27):
- Possible assertion failure on DNAME processing (CVE-2021-25215)
bind-pkcs11-9.11.4-26.P2.el7_9.4.x86_64 [361 KiB] Changelog by Petr Menšík (2021-02-15):
- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
bind-pkcs11-9.11.4-26.P2.el7_9.3.x86_64 [361 KiB] Changelog by Tomas Korbar (2020-11-06):
- Fix inline re-signing (#rh1889902)
bind-pkcs11-9.11.4-26.P2.el7_9.2.x86_64 [361 KiB] Changelog by Tomas Korbar (2020-10-02):
- Fix unsupported algorithms validation (#rh1769876)
bind-pkcs11-9.11.4-26.P2.el7.x86_64 [361 KiB] Changelog by Artem Egorenkov (2020-05-29):
- Fix EDNS512 loops on broken servers
bind-pkcs11-9.11.4-16.P2.el7_8.6.x86_64 [360 KiB] Changelog by Petr Menšík (2020-05-27):
- Fix EDNS512 loops on broken servers
bind-pkcs11-9.11.4-16.P2.el7_8.3.x86_64 [360 KiB] Changelog by Miroslav Lichvar (2020-03-04):
- Disable atomic operations on ppc64, ppc64le, aarch64, ppc (#1779589)
bind-pkcs11-9.11.4-16.P2.el7_8.2.x86_64 [360 KiB] Changelog by Tomas Korbar (2020-02-22):
- Disable unit test timer_test on ppc64le because of its instability
bind-pkcs11-9.11.4-16.P2.el7.x86_64 [360 KiB] Changelog by Petr Menšík (2019-12-12):
- Finish dig query when name is too long (#1743572)
bind-pkcs11-9.11.4-9.P2.el7.x86_64 [359 KiB] Changelog by Petr Menšík (2019-06-19):
- Fix CVE-2019-6471
bind-pkcs11-9.9.4-74.el7_6.2.x86_64 [302 KiB] Changelog by Petr Menšík (2019-06-21):
- Fix unstable zone transfers (#1724071)
- Understand keep-response-order for backward compatibility
bind-pkcs11-9.9.4-74.el7_6.1.x86_64 [302 KiB] Changelog by Petr Menšík (2019-05-23):
- Remove again broken test (CVE-2018-5743)
bind-pkcs11-9.9.4-73.el7_6.x86_64 [301 KiB] Changelog by Petr Menšík (2018-11-23):
- Fixes debug level comments (#1647539)
bind-pkcs11-9.9.4-72.el7.x86_64 [301 KiB] Changelog by Petr Menšík (2018-09-20):
- Fix automatic selinux boolean named_write_master_zones (#1569466)
- Allow starting named with readonly home again
bind-pkcs11-9.9.4-61.el7_5.1.x86_64 [298 KiB] Changelog by Petr Menšík (2018-08-09):
- Fix CVE-2018-5740
bind-pkcs11-9.9.4-61.el7.x86_64 [298 KiB] Changelog by Petr Menšík (2018-01-16):
- Fix CVE-2017-3145
bind-pkcs11-9.9.4-51.el7_4.2.x86_64 [297 KiB] Changelog by Petr Menšík (2018-01-17):
- Fix CVE-2017-3145
bind-pkcs11-9.9.4-51.el7_4.1.x86_64 [296 KiB] Changelog by Petr Menšík (2017-10-20):
- Fix named-chroot restart leak (#1504700)
bind-pkcs11-9.9.4-51.el7.x86_64 [296 KiB] Changelog by Petr Menšík (2017-06-29):
- Fix CVE-2017-3142 and CVE-2017-3143
bind-pkcs11-9.9.4-50.el7_3.1.x86_64 [295 KiB] Changelog by Petr Menšík (2017-06-30):
- Bump again above RHEL-7.4
bind-pkcs11-9.9.4-50.el7.x86_64 [296 KiB] Changelog by Petr Menšík (2017-05-22):
- Update root servers and trust anchor (#1452635)
bind-pkcs11-9.9.4-38.el7_3.3.x86_64 [295 KiB] Changelog by Petr Menšík (2017-04-12):
- Fix CVE-2017-3136 (ISC change 4575)
- Fix CVE-2017-3137 (ISC change 4578)
bind-pkcs11-9.9.4-38.el7_3.2.x86_64 [295 KiB] Changelog by Petr Menšík (2017-02-08):
- Fix CVE-2017-3135 (ISC change 4557)
- Fix and test caching CNAME before DNAME (ISC change 4558)
bind-pkcs11-9.9.4-38.el7_3.1.x86_64 [295 KiB] Changelog by Petr Menšík (2017-01-09):
- Fix CVE-2016-9131 (ISC change 4508)
- Fix CVE-2016-9147 (ISC change 4510)
- Fix regression introduced by CVE-2016-8864 (ISC change 4530)
- Fix CVE-2016-9444 (ISC change 4517)
bind-pkcs11-9.9.4-38.el7_3.x86_64 [295 KiB] Changelog by Tomas Hozza (2016-10-31):
- Fix CVE-2016-8864
bind-pkcs11-9.9.4-37.el7.x86_64 [295 KiB] Changelog by Tomas Hozza (2016-09-23):
- Fix CVE-2016-2776
bind-pkcs11-9.9.4-29.el7_2.4.x86_64 [292 KiB] Changelog by Tomas Hozza (2016-09-23):
- Fix CVE-2016-2776
bind-pkcs11-9.9.4-29.el7_2.3.x86_64 [292 KiB] Changelog by Tomas Hozza (2016-03-08):
- Fix CVE-2016-1285 and CVE-2016-1286
bind-pkcs11-9.9.4-29.el7_2.2.x86_64 [292 KiB] Changelog by Tomas Hozza (2016-01-18):
- Fix CVE-2015-8704
bind-pkcs11-9.9.4-29.el7_2.1.x86_64 [292 KiB] Changelog by Tomas Hozza (2015-12-14):
- Fix CVE-2015-8000
bind-pkcs11-9.9.4-29.el7.x86_64 [292 KiB] Changelog by Tomas Hozza (2015-09-02):
- Fix CVE-2015-5722

Listing created by repoview