system environment/daemons

bind-pkcs11 - Bind with native PKCS#11 functionality for crypto

Website: http://www.isc.org/products/BIND/
License: MPLv2.0
Vendor: Scientific Linux
Description:
This is a version of BIND server built with native PKCS#11 functionality.
It is important to have SoftHSM v2+ installed and some token initialized.
For other supported HSM modules please check the BIND documentation.
This version of BIND binary is supported only in setup with the IPA server.

Packages

bind-pkcs11-9.11.4-26.P2.el7_9.16.x86_64 [347 KiB] Changelog by Stepan Broz (2024-04-16):
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
bind-pkcs11-9.11.4-26.P2.el7_9.15.x86_64 [346 KiB] Changelog by Stepan Broz (2023-09-25):
- Limit the amount of recursion possible in control channel (CVE-2023-3341)
bind-pkcs11-9.11.4-26.P2.el7_9.14.x86_64 [346 KiB] Changelog by Stepan Broz (2023-07-03):
- Prevent the cache going over the configured limit (CVE-2023-2828)
bind-pkcs11-9.11.4-26.P2.el7_9.13.x86_64 [345 KiB] Changelog by Petr Menšík (2022-12-14):
- Tighten cache protection against record from forwarders (CVE-2021-25220)
bind-pkcs11-9.11.4-26.P2.el7_9.10.x86_64 [345 KiB] Changelog by Petr Menšík (2022-09-22):
- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
bind-pkcs11-9.11.4-26.P2.el7_9.7.x86_64 [344 KiB] Changelog by Petr Menšík (2021-07-13):
- Apply again patch 172, got removed by mistake
bind-pkcs11-9.11.4-26.P2.el7_9.5.x86_64 [345 KiB] Changelog by Petr Menšík (2021-04-27):
- Possible assertion failure on DNAME processing (CVE-2021-25215)
bind-pkcs11-9.11.4-26.P2.el7_9.4.x86_64 [345 KiB] Changelog by Petr Menšík (2021-02-15):
- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
bind-pkcs11-9.11.4-26.P2.el7_9.2.x86_64 [344 KiB] Changelog by Tomas Korbar (2020-10-02):
- Fix unsupported algorithms validation (#rh1769876)
bind-pkcs11-9.11.4-16.P2.el7_8.6.x86_64 [344 KiB] Changelog by Petr Menšík (2020-05-27):
- Fix EDNS512 loops on broken servers
bind-pkcs11-9.11.4-16.P2.el7.x86_64 [343 KiB] Changelog by Petr Menšík (2019-12-12):
- Finish dig query when name is too long (#1743572)
bind-pkcs11-9.11.4-9.P2.el7.x86_64 [342 KiB] Changelog by Petr Menšík (2019-06-19):
- Fix CVE-2019-6471
bind-pkcs11-9.9.4-74.el7_6.1.x86_64 [302 KiB] Changelog by Petr Menšík (2019-05-23):
- Remove again broken test (CVE-2018-5743)
bind-pkcs11-9.9.4-73.el7_6.x86_64 [288 KiB] Changelog by Petr Menšík (2018-11-23):
- Fixes debug level comments (#1647539)
bind-pkcs11-9.9.4-61.el7_5.1.x86_64 [284 KiB] Changelog by Petr Menšík (2018-08-09):
- Fix CVE-2018-5740
bind-pkcs11-9.9.4-51.el7_4.2.x86_64 [296 KiB] Changelog by Petr Menšík (2018-01-17):
- Fix CVE-2017-3145
bind-pkcs11-9.9.4-51.el7.x86_64 [295 KiB] Changelog by Petr Menšík (2017-06-29):
- Fix CVE-2017-3142 and CVE-2017-3143
bind-pkcs11-9.9.4-50.el7_3.1.x86_64 [294 KiB] Changelog by Petr Menšík (2017-06-30):
- Bump again above RHEL-7.4
bind-pkcs11-9.9.4-38.el7_3.3.x86_64 [294 KiB] Changelog by Petr Menšík (2017-04-12):
- Fix CVE-2017-3136 (ISC change 4575)
- Fix CVE-2017-3137 (ISC change 4578)
bind-pkcs11-9.9.4-38.el7_3.2.x86_64 [294 KiB] Changelog by Petr Menšík (2017-02-08):
- Fix CVE-2017-3135 (ISC change 4557)
- Fix and test caching CNAME before DNAME (ISC change 4558)
bind-pkcs11-9.9.4-38.el7_3.1.x86_64 [294 KiB] Changelog by Petr Menšík (2017-01-09):
- Fix CVE-2016-9131 (ISC change 4508)
- Fix CVE-2016-9147 (ISC change 4510)
- Fix regression introduced by CVE-2016-8864 (ISC change 4530)
- Fix CVE-2016-9444 (ISC change 4517)
bind-pkcs11-9.9.4-38.el7_3.x86_64 [294 KiB] Changelog by Tomas Hozza (2016-10-31):
- Fix CVE-2016-8864
bind-pkcs11-9.9.4-29.el7_2.4.x86_64 [292 KiB] Changelog by Tomas Hozza (2016-09-23):
- Fix CVE-2016-2776
bind-pkcs11-9.9.4-29.el7_2.3.x86_64 [292 KiB] Changelog by Tomas Hozza (2016-03-08):
- Fix CVE-2016-1285 and CVE-2016-1286
bind-pkcs11-9.9.4-29.el7_2.2.x86_64 [291 KiB] Changelog by Tomas Hozza (2016-01-18):
- Fix CVE-2015-8704
bind-pkcs11-9.9.4-29.el7_2.1.x86_64 [291 KiB] Changelog by Tomas Hozza (2015-12-14):
- Fix CVE-2015-8000
bind-pkcs11-9.9.4-29.el7.x86_64 [291 KiB] Changelog by Tomas Hozza (2015-09-02):
- Fix CVE-2015-5722

Listing created by Repoview-0.6.6-4.el7