upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-28 04:34:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Add CHANGES and release note for [GL #4234]

Browse source 
(cherry picked from commit 30d27928cf)
This commit is contained in:
Ondřej Surý 2023-10-11 09:15:13 +02:00 committed by Michał Kępień
parent 849c05adf4
commit 968d0a1415
No known key found for this signature in database
2 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
CHANGES
View file

@ -1,3 +1,6 @@
6315. [security] Speed up parsing of DNS messages with many different
names. (CVE-2023-4408) [GL #4234]
6314. [bug] Address race conditions in dns_tsigkey_find().
[GL #4182]

8
doc/notes/notes-current.rst
View file

@ -15,7 +15,13 @@ Notes for BIND 9.18.22
Security Fixes
~~~~~~~~~~~~~~
- None.
- Parsing DNS messages with many different names could cause excessive
CPU load. This has been fixed. :cve:`2023-4408`
ISC would like to thank Shoham Danino from Reichman University, Anat
Bremler-Barr from Tel-Aviv University, Yehuda Afek from Tel-Aviv
University, and Yuval Shavitt from Tel-Aviv University for bringing
this vulnerability to our attention. :gl:`#4234`
New Features
~~~~~~~~~~~~