1*00b67f09SDavid van Moolenbroek<!-- 2*00b67f09SDavid van Moolenbroek - 3*00b67f09SDavid van Moolenbroek - Permission to use, copy, modify, and/or distribute this software for any 4*00b67f09SDavid van Moolenbroek - purpose with or without fee is hereby granted, provided that the above 5*00b67f09SDavid van Moolenbroek - copyright notice and this permission notice appear in all copies. 6*00b67f09SDavid van Moolenbroek - 7*00b67f09SDavid van Moolenbroek - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH 8*00b67f09SDavid van Moolenbroek - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY 9*00b67f09SDavid van Moolenbroek - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT, 10*00b67f09SDavid van Moolenbroek - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM 11*00b67f09SDavid van Moolenbroek - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE 12*00b67f09SDavid van Moolenbroek - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR 13*00b67f09SDavid van Moolenbroek - PERFORMANCE OF THIS SOFTWARE. 14*00b67f09SDavid van Moolenbroek--> 15*00b67f09SDavid van Moolenbroek<!-- Id --> 16*00b67f09SDavid van Moolenbroek<html> 17*00b67f09SDavid van Moolenbroek<head> 18*00b67f09SDavid van Moolenbroek<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> 19*00b67f09SDavid van Moolenbroek<title></title> 20*00b67f09SDavid van Moolenbroek<meta name="generator" content="DocBook XSL Stylesheets V1.71.1"> 21*00b67f09SDavid van Moolenbroek</head> 22*00b67f09SDavid van Moolenbroek<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><div class="article" lang="en"><div class="sect1" lang="en"> 23*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h2 class="title" style="clear: both"> 24*00b67f09SDavid van Moolenbroek<a name="id2542126"></a>Release Notes for BIND Version 9.10.2-P4</h2></div></div></div> 25*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 26*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 27*00b67f09SDavid van Moolenbroek<a name="relnotes_intro"></a>Introduction</h3></div></div></div> 28*00b67f09SDavid van Moolenbroek<p> 29*00b67f09SDavid van Moolenbroek This document summarizes changes since BIND 9.10.2: 30*00b67f09SDavid van Moolenbroek </p> 31*00b67f09SDavid van Moolenbroek<p> 32*00b67f09SDavid van Moolenbroek BIND 9.10.2-P4 addresses security issues described in 33*00b67f09SDavid van Moolenbroek CVE-2015-5722 and CVE-2015-5986. 34*00b67f09SDavid van Moolenbroek </p> 35*00b67f09SDavid van Moolenbroek<p> 36*00b67f09SDavid van Moolenbroek BIND 9.10.2-P3 addresses a security issue described in 37*00b67f09SDavid van Moolenbroek CVE-2015-5477. 38*00b67f09SDavid van Moolenbroek </p> 39*00b67f09SDavid van Moolenbroek<p> 40*00b67f09SDavid van Moolenbroek BIND 9.10.2-P2 addresses a security issue described in 41*00b67f09SDavid van Moolenbroek CVE-2015-4620. 42*00b67f09SDavid van Moolenbroek </p> 43*00b67f09SDavid van Moolenbroek<p> 44*00b67f09SDavid van Moolenbroek BIND 9.10.2-P1 addressed several bugs that have been identified 45*00b67f09SDavid van Moolenbroek in the BIND 9.10 implementation of response-policy zones (RPZ). 46*00b67f09SDavid van Moolenbroek The bugs are in code which optimizes searching through multiple 47*00b67f09SDavid van Moolenbroek policy zones. In some cases, they can cause RPZ to behave 48*00b67f09SDavid van Moolenbroek inefficiently by searching for query matches in more policy 49*00b67f09SDavid van Moolenbroek zones than are strictly necessary, or to behave unpredictably 50*00b67f09SDavid van Moolenbroek by failing to search a policy zone that should have been 51*00b67f09SDavid van Moolenbroek searched. In the worst case, they can lead to assertion 52*00b67f09SDavid van Moolenbroek failures, terminating <span><strong class="command">named</strong></span>. 53*00b67f09SDavid van Moolenbroek </p> 54*00b67f09SDavid van Moolenbroek</div> 55*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 56*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 57*00b67f09SDavid van Moolenbroek<a name="relnotes_download"></a>Download</h3></div></div></div> 58*00b67f09SDavid van Moolenbroek<p> 59*00b67f09SDavid van Moolenbroek The latest versions of BIND 9 software can always be found at 60*00b67f09SDavid van Moolenbroek <a href="http://www.isc.org/downloads/" target="_top">http://www.isc.org/downloads/</a>. 61*00b67f09SDavid van Moolenbroek There you will find additional information about each release, 62*00b67f09SDavid van Moolenbroek source code, and pre-compiled versions for Microsoft Windows 63*00b67f09SDavid van Moolenbroek operating systems. 64*00b67f09SDavid van Moolenbroek </p> 65*00b67f09SDavid van Moolenbroek</div> 66*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 67*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 68*00b67f09SDavid van Moolenbroek<a name="relnotes_security"></a>Security Fixes</h3></div></div></div> 69*00b67f09SDavid van Moolenbroek<div class="itemizedlist"><ul type="disc"> 70*00b67f09SDavid van Moolenbroek<li><p> 71*00b67f09SDavid van Moolenbroek An incorrect boundary check in the OPENPGPKEY rdatatype 72*00b67f09SDavid van Moolenbroek could trigger an assertion failure. This flaw is disclosed 73*00b67f09SDavid van Moolenbroek in CVE-2015-5986. [RT #40286] 74*00b67f09SDavid van Moolenbroek </p></li> 75*00b67f09SDavid van Moolenbroek<li> 76*00b67f09SDavid van Moolenbroek<p> 77*00b67f09SDavid van Moolenbroek A buffer accounting error could trigger an assertion failure 78*00b67f09SDavid van Moolenbroek when parsing certain malformed DNSSEC keys. 79*00b67f09SDavid van Moolenbroek </p> 80*00b67f09SDavid van Moolenbroek<p> 81*00b67f09SDavid van Moolenbroek This flaw was discovered by Hanno B쎶eck of the Fuzzing 82*00b67f09SDavid van Moolenbroek Project, and is disclosed in CVE-2015-5722. [RT #40212] 83*00b67f09SDavid van Moolenbroek </p> 84*00b67f09SDavid van Moolenbroek</li> 85*00b67f09SDavid van Moolenbroek<li> 86*00b67f09SDavid van Moolenbroek<p> 87*00b67f09SDavid van Moolenbroek A specially crafted query could trigger an assertion failure 88*00b67f09SDavid van Moolenbroek in message.c. 89*00b67f09SDavid van Moolenbroek </p> 90*00b67f09SDavid van Moolenbroek<p> 91*00b67f09SDavid van Moolenbroek This flaw was discovered by Jonathan Foote, and is disclosed 92*00b67f09SDavid van Moolenbroek in CVE-2015-5477. [RT #39795] 93*00b67f09SDavid van Moolenbroek </p> 94*00b67f09SDavid van Moolenbroek</li> 95*00b67f09SDavid van Moolenbroek<li> 96*00b67f09SDavid van Moolenbroek<p> 97*00b67f09SDavid van Moolenbroek On servers configured to perform DNSSEC validation, an 98*00b67f09SDavid van Moolenbroek assertion failure could be triggered on answers from 99*00b67f09SDavid van Moolenbroek a specially configured server. 100*00b67f09SDavid van Moolenbroek </p> 101*00b67f09SDavid van Moolenbroek<p> 102*00b67f09SDavid van Moolenbroek This flaw was discovered by Breno Silveira Soares, and is 103*00b67f09SDavid van Moolenbroek disclosed in CVE-2015-4620. [RT #39795] 104*00b67f09SDavid van Moolenbroek </p> 105*00b67f09SDavid van Moolenbroek</li> 106*00b67f09SDavid van Moolenbroek</ul></div> 107*00b67f09SDavid van Moolenbroek</div> 108*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 109*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 110*00b67f09SDavid van Moolenbroek<a name="relnotes_features"></a>New Features</h3></div></div></div> 111*00b67f09SDavid van Moolenbroek<div class="itemizedlist"><ul type="disc"><li><p>None</p></li></ul></div> 112*00b67f09SDavid van Moolenbroek</div> 113*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 114*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 115*00b67f09SDavid van Moolenbroek<a name="relnotes_changes"></a>Feature Changes</h3></div></div></div> 116*00b67f09SDavid van Moolenbroek<div class="itemizedlist"><ul type="disc"><li><p>None</p></li></ul></div> 117*00b67f09SDavid van Moolenbroek</div> 118*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 119*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 120*00b67f09SDavid van Moolenbroek<a name="relnotes_bugs"></a>Bug Fixes</h3></div></div></div> 121*00b67f09SDavid van Moolenbroek<div class="itemizedlist"><ul type="disc"> 122*00b67f09SDavid van Moolenbroek<li><p> 123*00b67f09SDavid van Moolenbroek Asynchronous zone loads were not handled correctly when the 124*00b67f09SDavid van Moolenbroek zone load was already in progress; this could trigger a crash 125*00b67f09SDavid van Moolenbroek in zt.c. [RT #37573] 126*00b67f09SDavid van Moolenbroek </p></li> 127*00b67f09SDavid van Moolenbroek<li> 128*00b67f09SDavid van Moolenbroek<p> 129*00b67f09SDavid van Moolenbroek Several bugs have been fixed in the RPZ implementation: 130*00b67f09SDavid van Moolenbroek </p> 131*00b67f09SDavid van Moolenbroek<div class="itemizedlist"><ul type="circle"> 132*00b67f09SDavid van Moolenbroek<li><p> 133*00b67f09SDavid van Moolenbroek Policy zones that did not specifically require recursion 134*00b67f09SDavid van Moolenbroek could be treated as if they did; consequently, setting 135*00b67f09SDavid van Moolenbroek <span><strong class="command">qname-wait-recurse no;</strong></span> was 136*00b67f09SDavid van Moolenbroek sometimes ineffective. This has been corrected. 137*00b67f09SDavid van Moolenbroek In most configurations, behavioral changes due to this 138*00b67f09SDavid van Moolenbroek fix will not be noticeable. [RT #39229] 139*00b67f09SDavid van Moolenbroek </p></li> 140*00b67f09SDavid van Moolenbroek<li><p> 141*00b67f09SDavid van Moolenbroek The server could crash if policy zones were updated (e.g. 142*00b67f09SDavid van Moolenbroek via <span><strong class="command">rndc reload</strong></span> or an incoming zone 143*00b67f09SDavid van Moolenbroek transfer) while RPZ processing was still ongoing for an 144*00b67f09SDavid van Moolenbroek active query. [RT #39415] 145*00b67f09SDavid van Moolenbroek </p></li> 146*00b67f09SDavid van Moolenbroek<li><p> 147*00b67f09SDavid van Moolenbroek On servers with one or more policy zones configured as 148*00b67f09SDavid van Moolenbroek slaves, if a policy zone updated during regular operation 149*00b67f09SDavid van Moolenbroek (rather than at startup) using a full zone reload, such as 150*00b67f09SDavid van Moolenbroek via AXFR, a bug could allow the RPZ summary data to fall out 151*00b67f09SDavid van Moolenbroek of sync, potentially leading to an assertion failure in 152*00b67f09SDavid van Moolenbroek rpz.c when further incremental updates were made to the 153*00b67f09SDavid van Moolenbroek zone, such as via IXFR. [RT #39567] 154*00b67f09SDavid van Moolenbroek </p></li> 155*00b67f09SDavid van Moolenbroek<li><p> 156*00b67f09SDavid van Moolenbroek The server could match a shorter prefix than what was 157*00b67f09SDavid van Moolenbroek available in CLIENT-IP policy triggers, and so, an 158*00b67f09SDavid van Moolenbroek unexpected action could be taken. This has been 159*00b67f09SDavid van Moolenbroek corrected. [RT #39481] 160*00b67f09SDavid van Moolenbroek </p></li> 161*00b67f09SDavid van Moolenbroek<li><p> 162*00b67f09SDavid van Moolenbroek The server could crash if a reload of an RPZ zone was 163*00b67f09SDavid van Moolenbroek initiated while another reload of the same zone was 164*00b67f09SDavid van Moolenbroek already in progress. [RT #39649] 165*00b67f09SDavid van Moolenbroek </p></li> 166*00b67f09SDavid van Moolenbroek</ul></div> 167*00b67f09SDavid van Moolenbroek</li> 168*00b67f09SDavid van Moolenbroek</ul></div> 169*00b67f09SDavid van Moolenbroek</div> 170*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 171*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 172*00b67f09SDavid van Moolenbroek<a name="end_of_life"></a>End of Life</h3></div></div></div> 173*00b67f09SDavid van Moolenbroek<p> 174*00b67f09SDavid van Moolenbroek The end of life for BIND 9.10 is yet to be determined but 175*00b67f09SDavid van Moolenbroek will not be before BIND 9.12.0 has been released for 6 months. 176*00b67f09SDavid van Moolenbroek <a href="https://www.isc.org/downloads/software-support-policy/" target="_top">https://www.isc.org/downloads/software-support-policy/</a> 177*00b67f09SDavid van Moolenbroek </p> 178*00b67f09SDavid van Moolenbroek</div> 179*00b67f09SDavid van Moolenbroek<div class="sect2" lang="en"> 180*00b67f09SDavid van Moolenbroek<div class="titlepage"><div><div><h3 class="title"> 181*00b67f09SDavid van Moolenbroek<a name="relnotes_thanks"></a>Thank You</h3></div></div></div> 182*00b67f09SDavid van Moolenbroek<p> 183*00b67f09SDavid van Moolenbroek Thank you to everyone who assisted us in making this release possible. 184*00b67f09SDavid van Moolenbroek If you would like to contribute to ISC to assist us in continuing to 185*00b67f09SDavid van Moolenbroek make quality open source software, please visit our donations page at 186*00b67f09SDavid van Moolenbroek <a href="http://www.isc.org/donate/" target="_top">http://www.isc.org/donate/</a>. 187*00b67f09SDavid van Moolenbroek </p> 188*00b67f09SDavid van Moolenbroek</div> 189*00b67f09SDavid van Moolenbroek</div></div></body> 190*00b67f09SDavid van Moolenbroek</html> 191