bind-pkcs11 - Bind with native PKCS#11 functionality for crypto
| Website: | http://www.isc.org/products/BIND/ |
|---|---|
| License: | MPLv2.0 |
| Vendor: | Scientific Linux |
- Description:
This is a version of BIND server built with native PKCS#11 functionality. It is important to have SoftHSM v2+ installed and some token initialized. For other supported HSM modules please check the BIND documentation. This version of BIND binary is supported only in setup with the IPA server.
Packages
| bind-pkcs11-9.11.4-26.P2.el7_9.14.x86_64 [346 KiB] |
Changelog
by Stepan Broz (2023-07-03):
- Prevent the cache going over the configured limit (CVE-2023-2828) |
| bind-pkcs11-9.11.4-26.P2.el7_9.13.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2022-12-14):
- Tighten cache protection against record from forwarders (CVE-2021-25220) |
| bind-pkcs11-9.11.4-26.P2.el7_9.10.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2022-09-22):
- Fix memory leak in ECDSA verify processing (CVE-2022-38177) - Fix memory leak in EdDSA verify processing (CVE-2022-38178) |
| bind-pkcs11-9.11.4-26.P2.el7_9.7.x86_64 [344 KiB] |
Changelog
by Petr Menšík (2021-07-13):
- Apply again patch 172, got removed by mistake |
| bind-pkcs11-9.11.4-26.P2.el7_9.5.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2021-04-27):
- Possible assertion failure on DNAME processing (CVE-2021-25215) |
| bind-pkcs11-9.11.4-26.P2.el7_9.4.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2021-02-15):
- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625) |
| bind-pkcs11-9.11.4-26.P2.el7_9.2.x86_64 [344 KiB] |
Changelog
by Tomas Korbar (2020-10-02):
- Fix unsupported algorithms validation (#rh1769876) |
| bind-pkcs11-9.11.4-16.P2.el7_8.6.x86_64 [344 KiB] |
Changelog
by Petr Menšík (2020-05-27):
- Fix EDNS512 loops on broken servers |
| bind-pkcs11-9.11.4-16.P2.el7.x86_64 [343 KiB] |
Changelog
by Petr Menšík (2019-12-12):
- Finish dig query when name is too long (#1743572) |
| bind-pkcs11-9.11.4-9.P2.el7.x86_64 [342 KiB] |
Changelog
by Petr Menšík (2019-06-19):
- Fix CVE-2019-6471 |
| bind-pkcs11-9.9.4-74.el7_6.1.x86_64 [302 KiB] |
Changelog
by Petr Menšík (2019-05-23):
- Remove again broken test (CVE-2018-5743) |
| bind-pkcs11-9.9.4-73.el7_6.x86_64 [288 KiB] |
Changelog
by Petr Menšík (2018-11-23):
- Fixes debug level comments (#1647539) |
| bind-pkcs11-9.9.4-61.el7_5.1.x86_64 [284 KiB] |
Changelog
by Petr Menšík (2018-08-09):
- Fix CVE-2018-5740 |
| bind-pkcs11-9.9.4-51.el7_4.2.x86_64 [296 KiB] |
Changelog
by Petr Menšík (2018-01-17):
- Fix CVE-2017-3145 |
| bind-pkcs11-9.9.4-51.el7.x86_64 [295 KiB] |
Changelog
by Petr Menšík (2017-06-29):
- Fix CVE-2017-3142 and CVE-2017-3143 |
| bind-pkcs11-9.9.4-50.el7_3.1.x86_64 [294 KiB] |
Changelog
by Petr Menšík (2017-06-30):
- Bump again above RHEL-7.4 |
| bind-pkcs11-9.9.4-38.el7_3.3.x86_64 [294 KiB] |
Changelog
by Petr Menšík (2017-04-12):
- Fix CVE-2017-3136 (ISC change 4575) - Fix CVE-2017-3137 (ISC change 4578) |
| bind-pkcs11-9.9.4-38.el7_3.2.x86_64 [294 KiB] |
Changelog
by Petr Menšík (2017-02-08):
- Fix CVE-2017-3135 (ISC change 4557) - Fix and test caching CNAME before DNAME (ISC change 4558) |
| bind-pkcs11-9.9.4-38.el7_3.1.x86_64 [294 KiB] |
Changelog
by Petr Menšík (2017-01-09):
- Fix CVE-2016-9131 (ISC change 4508) - Fix CVE-2016-9147 (ISC change 4510) - Fix regression introduced by CVE-2016-8864 (ISC change 4530) - Fix CVE-2016-9444 (ISC change 4517) |
| bind-pkcs11-9.9.4-38.el7_3.x86_64 [294 KiB] |
Changelog
by Tomas Hozza (2016-10-31):
- Fix CVE-2016-8864 |