upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-28 04:34:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
bind9/bin
History
Ondřej Surý b247dbb350
Validate DNS message CLASS early in request processing 
Reject requests with unsupported or misused CLASS values before
further processing.  Only IN, CH, HS, RESERVED0 (for DNS Cookies),
ANY (for TKEY negotiation), and NONE (for DNS UPDATE) are accepted;
all other classes return NOTIMP.  Misuse of NONE or ANY outside
their allowed contexts returns FORMERR.

This adds further protection against bugs of the same general class
as YWH-PGM40640-70 and YWH-PGM40640-73.

(cherry picked from commit 0a687451505037e9f9a850c9cb113aed4995b03f)
2026-05-07 13:21:59 +02:00
..
check Resolve ERR_MISSING_GLUE / ERR_EXTRA_AAAA value collision 2026-04-29 15:32:03 +00:00
confgen Size HMAC key generation buffers to the maximum block size 2026-04-30 06:01:01 +02:00
delv Use const pointer with strchr of const pointer 2026-01-20 06:00:56 +00:00
dig Document that query options are order sensitive 2026-02-09 22:47:20 +00:00
dnssec Fix dnssec-signzone usage output 2026-03-23 09:36:54 +00:00
named Disable UPDATE and NOTIFY for non-IN classes 2026-05-07 13:21:59 +02:00
nsupdate nsupdate does not handle zero length RDATA well 2026-04-09 00:34:20 +00:00
plugins standardize CHECK and RETERR macros 2025-12-03 19:18:12 -08:00
rndc document config option dependency for showzone 2025-10-23 20:11:45 +00:00
tests Validate DNS message CLASS early in request processing 2026-05-07 13:21:59 +02:00
tools Use const pointer with strchr of const pointer 2026-01-20 06:00:56 +00:00
Makefile.am Remove native PKCS#11 support 2021-09-09 15:35:39 +02:00