[Buildroot] [PATCH] package/bind: security bump to version 9.16.27
Peter Korsgaard
peter at korsgaard.com
Mon Apr 11 13:32:45 UTC 2022
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Fixes the following security issues:
> - The rules for acceptance of records into the cache have been tightened to
> prevent the possibility of poisoning if forwarders send records outside
> the configured bailiwick. (CVE-2021-25220)
> - TCP connections with keep-response-order enabled could leave the TCP
> sockets in the CLOSE_WAIT state when the client did not properly shut down
> the connection. (CVE-2022-0396)
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed to 2022.02.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list