Fedora 21: knot Security Update

Date18 Apr 2015

Posted ByLinuxSecurity Advisories

new upstream release

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-5813
2015-04-09 04:56:39
--------------------------------------------------------------------------------

Name        : knot
Product     : Fedora 21
Version     : 1.6.3
Release     : 1.fc21
URL         : http://www.knot-dns.cz
Summary     : An authoritative DNS daemon
Description :
Knot DNS is a high-performance authoritative DNS server implementation.

--------------------------------------------------------------------------------
Update Information:

new upstream release
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr  8 2015 Jan Vcelak  1.6.3-1
- new upstream release:
  + fix: performance drop for NSEC-signed zones
  + fix: proper handling of TCP short-writes
  + fix: possible out-of-bound reads in zone parser and packet parser
  + feature: CDS and CDNSKEY support in zone parser
  + improvement: add defaults for TCP config options into documentation
  + improvement: detailed error message if zone reload fails
* Thu Feb 19 2015 Jan Vcelak  1.6.2-1
- new upstream release:
  + new config option 'max-tcp-clients'
  + fix possible resource leak when terminating inactive TCP clients
* Tue Jan 20 2015 Jan Vcelak  1.6.1-3
- service file changes:
  + remove dependency on network.target
  + remove bounding capabilities (breaks reload)
* Sat Dec 13 2014 Jan Vcelak  1.6.1-2
- new upstream release:
  + DNSSEC: support for Single-Type Signing Scheme
  + fix: journal file growing over configured limit
- service file changes:
  + run as 'knot' user and group
  + set security bounding capabilities
  + change Type to 'notify'
* Thu Oct 30 2014 Jan Vcelak  1.6.0-2
- default config: run server as unprivileged user
- service file: remove useless startup dependencies
- service file: add bounding capabilities
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update knot' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
This email address is being protected from spambots. You need JavaScript enabled to view it.
https://admin.fedoraproject.org/mailman/listinfo/package-announce