Hi everybody,
I uploaded version 9.8.4.dfsg.P1-6+nmu2+deb7u14 of bind9 to:
https://people.debian.org/~alteholz/packages/wheezy-lts/bind9/amd64/
Please give it a try and tell me about any problems you met. It would be
great to test bind9 as a recursive server and/or with DNSSEC.
Thanks!
Thorsten
* CVE-2016-9131: Assertion failure related to caching of TKEY records
in upstream DNS responses.
* CVE-2016-9147: Processing of RRSIG records in upstream DNS response
without corresponding signed data could lead to an assertion failure.
* CVE-2016-9444: Missing RRSIG records in the authority section of
upstream responses could lead to an assertion failure.
* RT #43779: Fix handling of CNAME/DNAME responses. (Regression due
to the CVE-2016-8864 fix.)
