[ol7_latest] bind-pkcs11-utils-32:9.11.4-26.P2.el7_9.10.aarch64

This is a set of PKCS#11 utilities that when used together create rsa
keys in a PKCS11 keystore. Also utilities for working with DNSSEC
compiled with native PKCS#11 functionality are included.

Changelog (Show File list) (Show related packages)

• Thu Sep 22 2022 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10

  - Fix memory leak in ECDSA verify processing (CVE-2022-38177)
  - Fix memory leak in EdDSA verify processing (CVE-2022-38178)

• Mon Jan 24 2022 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9

  - Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
    (#1935152)

• Thu Oct 14 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8

  - Prevent a race after zone load (#2011220)

• Tue Jul 13 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7

  - Apply again patch 172, got removed by mistake

• Mon May 17 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6

  - Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)

• Tue Apr 27 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5

  - Possible assertion failure on DNAME processing (CVE-2021-25215)

• Mon Feb 15 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4

  - Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)

• Fri Nov 06 2020 Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3

  - Fix inline re-signing (#rh1889902)

• Fri Oct 02 2020 Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2

  - Fix unsupported algorithms validation (#rh1769876)

• Wed Aug 26 2020 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1

  - Fix tsig-request verify (CVE-2020-8622)
  - Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
  - Correct update-policy type subdomain to match documentation (CVE-2020-8624)