[ol7_latest] bind-pkcs11-libs-32:9.11.4-26.P2.el7_9.7.aarch64

This is a set of BIND libraries (dns, isc) compiled with native PKCS#11
functionality.

Changelog (Show File list) (Show related packages)

• Tue Jul 13 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7

  - Apply again patch 172, got removed by mistake

• Mon May 17 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6

  - Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)

• Tue Apr 27 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5

  - Possible assertion failure on DNAME processing (CVE-2021-25215)

• Mon Feb 15 2021 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4

  - Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)

• Fri Nov 06 2020 Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3

  - Fix inline re-signing (#rh1889902)

• Fri Oct 02 2020 Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2

  - Fix unsupported algorithms validation (#rh1769876)

• Wed Aug 26 2020 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1

  - Fix tsig-request verify (CVE-2020-8622)
  - Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
  - Correct update-policy type subdomain to match documentation (CVE-2020-8624)

• Fri May 29 2020 Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2

  - Fix EDNS512 loops on broken servers

• Tue May 26 2020 Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2

  - rebinding protection for forwarding DNS server upstream patch (#1832812)

• Fri May 22 2020 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2

  - Add CVE tests to codebase