Hello community, here is the log from the commit of package unbound for openSUSE:Factory checked in at 2019-10-05 16:16:36 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/unbound (Old) and /work/SRC/openSUSE:Factory/.unbound.new.2352 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "unbound" Sat Oct 5 16:16:36 2019 rev:41 rq:734820 version:1.9.4 Changes: -------- --- /work/SRC/openSUSE:Factory/unbound/libunbound-devel-mini.changes 2019-09-02 13:17:48.741389678 +0200 +++ /work/SRC/openSUSE:Factory/.unbound.new.2352/libunbound-devel-mini.changes 2019-10-05 16:16:37.778011489 +0200 @@ -1,0 +2,6 @@ +Thu Oct 3 14:14:06 UTC 2019 - Michael Ströder <mich...@stroeder.com> + +- update to 1.9.4 + security fix for CVE-2019-16866 (error in parsing NOTIFY queries) + +------------------------------------------------------------------- unbound.changes: same change Old: ---- unbound-1.9.3.tar.gz New: ---- unbound-1.9.4.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libunbound-devel-mini.spec ++++++ --- /var/tmp/diff_new_pack.w4fUyh/_old 2019-10-05 16:16:39.002008302 +0200 +++ /var/tmp/diff_new_pack.w4fUyh/_new 2019-10-05 16:16:39.002008302 +0200 @@ -24,7 +24,7 @@ # Name: libunbound-devel-mini -Version: 1.9.3 +Version: 1.9.4 Release: 0 # # ++++++ unbound.spec ++++++ --- /var/tmp/diff_new_pack.w4fUyh/_old 2019-10-05 16:16:39.030008229 +0200 +++ /var/tmp/diff_new_pack.w4fUyh/_new 2019-10-05 16:16:39.034008218 +0200 @@ -36,7 +36,7 @@ %define piddir /run Name: unbound -Version: 1.9.3 +Version: 1.9.4 Release: 0 # # ++++++ unbound-1.9.3.tar.gz -> unbound-1.9.4.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/configure new/unbound-1.9.4/configure --- old/unbound-1.9.3/configure 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/configure 2019-10-03 10:53:20.000000000 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for unbound 1.9.3. +# Generated by GNU Autoconf 2.69 for unbound 1.9.4. # # Report bugs to <unbound-b...@nlnetlabs.nl or https://github.com/NLnetLabs/unbound/issues>. # @@ -591,8 +591,8 @@ # Identity of this package. PACKAGE_NAME='unbound' PACKAGE_TARNAME='unbound' -PACKAGE_VERSION='1.9.3' -PACKAGE_STRING='unbound 1.9.3' +PACKAGE_VERSION='1.9.4' +PACKAGE_STRING='unbound 1.9.4' PACKAGE_BUGREPORT='unbound-b...@nlnetlabs.nl or https://github.com/NLnetLabs/unbound/issues' PACKAGE_URL='' @@ -1445,7 +1445,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures unbound 1.9.3 to adapt to many kinds of systems. +\`configure' configures unbound 1.9.4 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1510,7 +1510,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of unbound 1.9.3:";; + short | recursive ) echo "Configuration of unbound 1.9.4:";; esac cat <<\_ACEOF @@ -1729,7 +1729,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -unbound configure 1.9.3 +unbound configure 1.9.4 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. @@ -2438,7 +2438,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by unbound $as_me 1.9.3, which was +It was created by unbound $as_me 1.9.4, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ @@ -2790,11 +2790,11 @@ UNBOUND_VERSION_MINOR=9 -UNBOUND_VERSION_MICRO=3 +UNBOUND_VERSION_MICRO=4 LIBUNBOUND_CURRENT=9 -LIBUNBOUND_REVISION=3 +LIBUNBOUND_REVISION=4 LIBUNBOUND_AGE=1 # 1.0.0 had 0:12:0 # 1.0.1 had 0:13:0 @@ -2865,6 +2865,7 @@ # 1.9.1 had 9:1:1 # 1.9.2 had 9:2:1 # 1.9.3 had 9:3:1 +# 1.9.4 had 9:4:1 # Current -- the number of the binary API that we're implementing # Revision -- which iteration of the implementation of the binary @@ -21273,7 +21274,7 @@ -version=1.9.3 +version=1.9.4 date=`date +'%b %e, %Y'` @@ -21792,7 +21793,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by unbound $as_me 1.9.3, which was +This file was extended by unbound $as_me 1.9.4, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -21858,7 +21859,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" ac_cs_version="\\ -unbound config.status 1.9.3 +unbound config.status 1.9.4 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/configure.ac new/unbound-1.9.4/configure.ac --- old/unbound-1.9.3/configure.ac 2019-08-27 09:16:09.000000000 +0200 +++ new/unbound-1.9.4/configure.ac 2019-10-03 10:53:16.000000000 +0200 @@ -11,14 +11,14 @@ # must be numbers. ac_defun because of later processing m4_define([VERSION_MAJOR],[1]) m4_define([VERSION_MINOR],[9]) -m4_define([VERSION_MICRO],[3]) +m4_define([VERSION_MICRO],[4]) AC_INIT(unbound, m4_defn([VERSION_MAJOR]).m4_defn([VERSION_MINOR]).m4_defn([VERSION_MICRO]), unbound-b...@nlnetlabs.nl or https://github.com/NLnetLabs/unbound/issues, unbound) AC_SUBST(UNBOUND_VERSION_MAJOR, [VERSION_MAJOR]) AC_SUBST(UNBOUND_VERSION_MINOR, [VERSION_MINOR]) AC_SUBST(UNBOUND_VERSION_MICRO, [VERSION_MICRO]) LIBUNBOUND_CURRENT=9 -LIBUNBOUND_REVISION=3 +LIBUNBOUND_REVISION=4 LIBUNBOUND_AGE=1 # 1.0.0 had 0:12:0 # 1.0.1 had 0:13:0 @@ -89,6 +89,7 @@ # 1.9.1 had 9:1:1 # 1.9.2 had 9:2:1 # 1.9.3 had 9:3:1 +# 1.9.4 had 9:4:1 # Current -- the number of the binary API that we're implementing # Revision -- which iteration of the implementation of the binary diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/README new/unbound-1.9.4/doc/README --- old/unbound-1.9.3/doc/README 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/README 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -README for Unbound 1.9.3 +README for Unbound 1.9.4 Copyright 2007 NLnet Labs http://unbound.net diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/example.conf.in new/unbound-1.9.4/doc/example.conf.in --- old/unbound-1.9.3/doc/example.conf.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/example.conf.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,7 +1,7 @@ # # Example configuration file. # -# See unbound.conf(5) man page, version 1.9.3. +# See unbound.conf(5) man page, version 1.9.4. # # this is a comment. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/libunbound.3.in new/unbound-1.9.4/doc/libunbound.3.in --- old/unbound-1.9.3/doc/libunbound.3.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/libunbound.3.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -.TH "libunbound" "3" "Aug 27, 2019" "NLnet Labs" "unbound 1.9.3" +.TH "libunbound" "3" "Oct 3, 2019" "NLnet Labs" "unbound 1.9.4" .\" .\" libunbound.3 -- unbound library functions manual .\" @@ -44,7 +44,7 @@ .B ub_ctx_zone_remove, .B ub_ctx_data_add, .B ub_ctx_data_remove -\- Unbound DNS validating resolver 1.9.3 functions. +\- Unbound DNS validating resolver 1.9.4 functions. .SH "SYNOPSIS" .B #include <unbound.h> .LP diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/unbound-anchor.8.in new/unbound-1.9.4/doc/unbound-anchor.8.in --- old/unbound-1.9.3/doc/unbound-anchor.8.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/unbound-anchor.8.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -.TH "unbound-anchor" "8" "Aug 27, 2019" "NLnet Labs" "unbound 1.9.3" +.TH "unbound-anchor" "8" "Oct 3, 2019" "NLnet Labs" "unbound 1.9.4" .\" .\" unbound-anchor.8 -- unbound anchor maintenance utility manual .\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/unbound-checkconf.8.in new/unbound-1.9.4/doc/unbound-checkconf.8.in --- old/unbound-1.9.3/doc/unbound-checkconf.8.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/unbound-checkconf.8.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -.TH "unbound-checkconf" "8" "Aug 27, 2019" "NLnet Labs" "unbound 1.9.3" +.TH "unbound-checkconf" "8" "Oct 3, 2019" "NLnet Labs" "unbound 1.9.4" .\" .\" unbound-checkconf.8 -- unbound configuration checker manual .\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/unbound-control.8.in new/unbound-1.9.4/doc/unbound-control.8.in --- old/unbound-1.9.3/doc/unbound-control.8.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/unbound-control.8.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -.TH "unbound-control" "8" "Aug 27, 2019" "NLnet Labs" "unbound 1.9.3" +.TH "unbound-control" "8" "Oct 3, 2019" "NLnet Labs" "unbound 1.9.4" .\" .\" unbound-control.8 -- unbound remote control manual .\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/unbound-host.1.in new/unbound-1.9.4/doc/unbound-host.1.in --- old/unbound-1.9.3/doc/unbound-host.1.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/unbound-host.1.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -.TH "unbound\-host" "1" "Aug 27, 2019" "NLnet Labs" "unbound 1.9.3" +.TH "unbound\-host" "1" "Oct 3, 2019" "NLnet Labs" "unbound 1.9.4" .\" .\" unbound-host.1 -- unbound DNS lookup utility .\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/unbound.8.in new/unbound-1.9.4/doc/unbound.8.in --- old/unbound-1.9.3/doc/unbound.8.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/unbound.8.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -.TH "unbound" "8" "Aug 27, 2019" "NLnet Labs" "unbound 1.9.3" +.TH "unbound" "8" "Oct 3, 2019" "NLnet Labs" "unbound 1.9.4" .\" .\" unbound.8 -- unbound manual .\" @@ -9,7 +9,7 @@ .\" .SH "NAME" .B unbound -\- Unbound DNS validating resolver 1.9.3. +\- Unbound DNS validating resolver 1.9.4. .SH "SYNOPSIS" .B unbound .RB [ \-h ] diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/doc/unbound.conf.5.in new/unbound-1.9.4/doc/unbound.conf.5.in --- old/unbound-1.9.3/doc/unbound.conf.5.in 2019-08-27 09:16:12.000000000 +0200 +++ new/unbound-1.9.4/doc/unbound.conf.5.in 2019-10-03 10:53:20.000000000 +0200 @@ -1,4 +1,4 @@ -.TH "unbound.conf" "5" "Aug 27, 2019" "NLnet Labs" "unbound 1.9.3" +.TH "unbound.conf" "5" "Oct 3, 2019" "NLnet Labs" "unbound 1.9.4" .\" .\" unbound.conf.5 -- unbound.conf manual .\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/unbound-1.9.3/util/data/msgparse.c new/unbound-1.9.4/util/data/msgparse.c --- old/unbound-1.9.3/util/data/msgparse.c 2019-08-27 09:16:09.000000000 +0200 +++ new/unbound-1.9.4/util/data/msgparse.c 2019-10-03 10:53:17.000000000 +0200 @@ -1061,18 +1061,18 @@ size_t rdata_len; uint8_t* rdata_ptr; log_assert(LDNS_QDCOUNT(sldns_buffer_begin(pkt)) == 1); + memset(edns, 0, sizeof(*edns)); if(LDNS_ANCOUNT(sldns_buffer_begin(pkt)) != 0 || LDNS_NSCOUNT(sldns_buffer_begin(pkt)) != 0) { if(!skip_pkt_rrs(pkt, ((int)LDNS_ANCOUNT(sldns_buffer_begin(pkt)))+ ((int)LDNS_NSCOUNT(sldns_buffer_begin(pkt))))) - return 0; + return LDNS_RCODE_FORMERR; } /* check edns section is present */ if(LDNS_ARCOUNT(sldns_buffer_begin(pkt)) > 1) { return LDNS_RCODE_FORMERR; } if(LDNS_ARCOUNT(sldns_buffer_begin(pkt)) == 0) { - memset(edns, 0, sizeof(*edns)); edns->udp_size = 512; return 0; }