bind-dnssec-utils-9.16.23-28.el9 RPM for x86_64

From CentOS Stream 9 AppStream for x86_64

Bind-dnssec-utils contains a collection of utilities for editing
DNSSEC keys and BIND zone files. These tools provide generation,
revocation and verification of keys and DNSSEC signatures in zone files.

You should install bind-dnssec-utils if you need to sign a DNS zone
or maintain keys for it.

Provides

• bind-dnssec-utils
• bind-dnssec-utils(x86-64)

Requires

• /usr/bin/python3
• bind-dnssec-doc = 32:9.16.23-28.el9
• bind-libs(x86-64) = 32:9.16.23-28.el9
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.14)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.3)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libdns-9.16.23-RH.so()(64bit)
• libisc-9.16.23-RH.so()(64bit)
• libisccfg-9.16.23-RH.so()(64bit)
• python3-bind = 32:9.16.23-28.el9
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

MPLv2.0

Changelog

* Sat Feb 15 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-28
  - Fix test backport changes
* Wed Feb 05 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-27
  - Limit additional section records CPU processing (CVE-2024-11187)
* Wed Feb 05 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-26
  - Switch to autopatch changes applying
* Fri Sep 06 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-25
  - Bump version above RHEL 9.5
* Fri Aug 09 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-24
  - Minor fix of reclimit test backport (CVE-2024-1737)
* Wed Aug 07 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-23
  - Backport addition of max-records-per-type and max-records-per-type options
* Thu Jul 18 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-22
  - Resolve CVE-2024-1975
  - Resolve CVE-2024-1737
  - Resolve CVE-2024-4076
  - Add ability to change runtime limits for max types and records per name
* Tue Jul 09 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-21
  - Increase size of hazard pointer array (RHEL-39131)
* Tue May 28 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-20
  - Ensure bind CVE fixes hits public Stream repository
* Fri Apr 12 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-19
  - Ensure incompatible bind-dyndb-ldap is not accepted
* Mon Mar 25 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-18
  - Prevent crashing at masterformat system test (CVE-2023-6516)
* Mon Feb 19 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-17
  - Import tests for large DNS messages fix
  - Add downstream change complementing CVE-2023-50387
* Mon Feb 12 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-16
  - Prevent increased CPU load on large DNS messages (CVE-2023-4408)
  - Prevent assertion failure when nxdomain-redirect is used with
   RFC 1918 reverse zones (CVE-2023-5517)
  - Prevent assertion failure if DNS64 and serve-stale is used (CVE-2023-5679)
  - Specific recursive query patterns may lead to an out-of-memory
    condition (CVE-2023-6516)
  - Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
    CVE-2023-50868)
* Thu Dec 07 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-15
  - Update addresses of b.root-servers.net (RHEL-18188)
* Wed Sep 20 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-14
  - Limit the amount of recursion possible in control channel (CVE-2023-3341)
* Mon Jun 26 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-13
  - Prevent possible endless loop when refreshing stale data (CVE-2023-2911)
* Tue Jun 20 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-12
  - Strengten cache cleaning to prevent overflowing configured limit
    (CVE-2023-2828)
* Mon Feb 27 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-11
  - Correct backport issue in statistics rendering fix (#2126912)
* Sat Feb 25 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-10
  - Handle subtle difference between upstream and rhel (CVE-2022-3094)

Files

/usr/lib/.build-id
/usr/lib/.build-id/50
/usr/lib/.build-id/50/6a1d9dd708980be79937c87033cf202aa1b99b
/usr/lib/.build-id/52
/usr/lib/.build-id/52/588d1aa97babf49be5754974d8e733b883ab1e
/usr/lib/.build-id/9f
/usr/lib/.build-id/9f/01c4c89c375df369b1f002dd462951bb683dbe
/usr/lib/.build-id/a1
/usr/lib/.build-id/a1/303cde26f39c1d3c96fce0798c13534671088a
/usr/lib/.build-id/bb
/usr/lib/.build-id/bb/6947a0bdeb2622cd080db3425bb71fb671b049
/usr/lib/.build-id/c3
/usr/lib/.build-id/c3/0c430a1039913c4f57ebfa4bdf13e39b5fa592
/usr/lib/.build-id/da
/usr/lib/.build-id/da/9482807af5345322b09f46445dcd0eaa86caa9
/usr/lib/.build-id/db
/usr/lib/.build-id/db/6a0ea565b6d2413158762c010114a80461a6f5
/usr/lib/.build-id/ff
/usr/lib/.build-id/ff/955c3af4e3bd77a34758b8ca30fb407f2423b6
/usr/sbin/dnssec-cds
/usr/sbin/dnssec-checkds
/usr/sbin/dnssec-coverage
/usr/sbin/dnssec-dsfromkey
/usr/sbin/dnssec-importkey
/usr/sbin/dnssec-keyfromlabel
/usr/sbin/dnssec-keygen
/usr/sbin/dnssec-keymgr
/usr/sbin/dnssec-revoke
/usr/sbin/dnssec-settime
/usr/sbin/dnssec-signzone
/usr/sbin/dnssec-verify

Generated by rpm2html 1.8.1

Fabrice Bellet, Wed May 28 04:10:52 2025