Fedora 21: knot Security Update

    Date18 Apr 2015
    Posted ByLinuxSecurity Advisories
    new upstream release
    Fedora Update Notification
    2015-04-09 04:56:39
    Name        : knot
    Product     : Fedora 21
    Version     : 1.6.3
    Release     : 1.fc21
    URL         : http://www.knot-dns.cz
    Summary     : An authoritative DNS daemon
    Description :
    Knot DNS is a high-performance authoritative DNS server implementation.
    Update Information:
    new upstream release
    * Wed Apr  8 2015 Jan Vcelak  1.6.3-1
    - new upstream release:
      + fix: performance drop for NSEC-signed zones
      + fix: proper handling of TCP short-writes
      + fix: possible out-of-bound reads in zone parser and packet parser
      + feature: CDS and CDNSKEY support in zone parser
      + improvement: add defaults for TCP config options into documentation
      + improvement: detailed error message if zone reload fails
    * Thu Feb 19 2015 Jan Vcelak  1.6.2-1
    - new upstream release:
      + new config option 'max-tcp-clients'
      + fix possible resource leak when terminating inactive TCP clients
    * Tue Jan 20 2015 Jan Vcelak  1.6.1-3
    - service file changes:
      + remove dependency on network.target
      + remove bounding capabilities (breaks reload)
    * Sat Dec 13 2014 Jan Vcelak  1.6.1-2
    - new upstream release:
      + DNSSEC: support for Single-Type Signing Scheme
      + fix: journal file growing over configured limit
    - service file changes:
      + run as 'knot' user and group
      + set security bounding capabilities
      + change Type to 'notify'
    * Thu Oct 30 2014 Jan Vcelak  1.6.0-2
    - default config: run server as unprivileged user
    - service file: remove useless startup dependencies
    - service file: add bounding capabilities
    This update can be installed with the "yum" update program.  Use
    su -c 'yum update knot' at the command line.
    For more information, refer to "Managing Software with yum",
    available at http://docs.fedoraproject.org/yum/.
    All packages are signed with the Fedora Project GPG key.  More details on the
    GPG keys used by the Fedora Project can be found at
    package-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the LinuxSecurity Privacy news articles?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    [{"id":"90","title":"Love them!","votes":"5","type":"x","order":"1","pct":100,"resources":[]},{"id":"91","title":"I'm indifferent","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"92","title":"Not interested in this topic","votes":"0","type":"x","order":"3","pct":0,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.