bind-pkcs11 - Bind with native PKCS#11 functionality for crypto
Website: | http://www.isc.org/products/BIND/ |
---|---|
License: | MPLv2.0 |
Vendor: | Scientific Linux |
- Description:
This is a version of BIND server built with native PKCS#11 functionality. It is important to have SoftHSM v2+ installed and some token initialized. For other supported HSM modules please check the BIND documentation. This version of BIND binary is supported only in setup with the IPA server.
Packages
bind-pkcs11-9.11.4-26.P2.el7_9.16.x86_64 [347 KiB] |
Changelog
by Stepan Broz (2024-04-16):
- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387 CVE-2023-50868) - Add missing design by contract tests to dns_catz* - Speed up parsing of DNS messages with many different names (CVE-2023-4408) - Do not use header_prev in expire_lru_headers |
bind-pkcs11-9.11.4-26.P2.el7_9.15.x86_64 [346 KiB] |
Changelog
by Stepan Broz (2023-09-25):
- Limit the amount of recursion possible in control channel (CVE-2023-3341) |
bind-pkcs11-9.11.4-26.P2.el7_9.14.x86_64 [346 KiB] |
Changelog
by Stepan Broz (2023-07-03):
- Prevent the cache going over the configured limit (CVE-2023-2828) |
bind-pkcs11-9.11.4-26.P2.el7_9.13.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2022-12-14):
- Tighten cache protection against record from forwarders (CVE-2021-25220) |
bind-pkcs11-9.11.4-26.P2.el7_9.10.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2022-09-22):
- Fix memory leak in ECDSA verify processing (CVE-2022-38177) - Fix memory leak in EdDSA verify processing (CVE-2022-38178) |
bind-pkcs11-9.11.4-26.P2.el7_9.7.x86_64 [344 KiB] |
Changelog
by Petr Menšík (2021-07-13):
- Apply again patch 172, got removed by mistake |
bind-pkcs11-9.11.4-26.P2.el7_9.5.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2021-04-27):
- Possible assertion failure on DNAME processing (CVE-2021-25215) |
bind-pkcs11-9.11.4-26.P2.el7_9.4.x86_64 [345 KiB] |
Changelog
by Petr Menšík (2021-02-15):
- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625) |
bind-pkcs11-9.11.4-26.P2.el7_9.2.x86_64 [344 KiB] |
Changelog
by Tomas Korbar (2020-10-02):
- Fix unsupported algorithms validation (#rh1769876) |
bind-pkcs11-9.11.4-16.P2.el7_8.6.x86_64 [344 KiB] |
Changelog
by Petr Menšík (2020-05-27):
- Fix EDNS512 loops on broken servers |
bind-pkcs11-9.11.4-16.P2.el7.x86_64 [343 KiB] |
Changelog
by Petr Menšík (2019-12-12):
- Finish dig query when name is too long (#1743572) |
bind-pkcs11-9.11.4-9.P2.el7.x86_64 [342 KiB] |
Changelog
by Petr Menšík (2019-06-19):
- Fix CVE-2019-6471 |
bind-pkcs11-9.9.4-74.el7_6.1.x86_64 [302 KiB] |
Changelog
by Petr Menšík (2019-05-23):
- Remove again broken test (CVE-2018-5743) |
bind-pkcs11-9.9.4-73.el7_6.x86_64 [288 KiB] |
Changelog
by Petr Menšík (2018-11-23):
- Fixes debug level comments (#1647539) |
bind-pkcs11-9.9.4-61.el7_5.1.x86_64 [284 KiB] |
Changelog
by Petr Menšík (2018-08-09):
- Fix CVE-2018-5740 |
bind-pkcs11-9.9.4-51.el7_4.2.x86_64 [296 KiB] |
Changelog
by Petr Menšík (2018-01-17):
- Fix CVE-2017-3145 |