Name: bind-dnssec-utils	Distribution: AlmaLinux
Version: 9.16.23	Vendor: AlmaLinux
Release: 31.el9_6.2	Build date: Mon Nov 10 04:36:13 2025
Group: Unspecified	Build host: arm-builder03-almalinux-org.novalocal
Size: 688786	Source RPM: bind-9.16.23-31.el9_6.2.src.rpm
Packager: AlmaLinux Packaging Team <packager@almalinux.org>
Url: https://www.isc.org/downloads/bind/
Summary: DNSSEC keys and zones management utilities

Bind-dnssec-utils contains a collection of utilities for editing
DNSSEC keys and BIND zone files. These tools provide generation,
revocation and verification of keys and DNSSEC signatures in zone files.

You should install bind-dnssec-utils if you need to sign a DNS zone
or maintain keys for it.

Provides

Requires

/usr/bin/python3
bind-dnssec-doc = 32:9.16.23-31.el9_6.2
bind-libs(aarch-64) = 32:9.16.23-31.el9_6.2
ld-linux-aarch64.so.1()(64bit)
ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
libc.so.6()(64bit)
libc.so.6(GLIBC_2.17)(64bit)
libc.so.6(GLIBC_2.34)(64bit)
libdns-9.16.23-RH.so()(64bit)
libisc-9.16.23-RH.so()(64bit)
libisccfg-9.16.23-RH.so()(64bit)
python3-bind = 32:9.16.23-31.el9_6.2
rpmlib(CompressedFileNames) <= 3.0.4-1
rpmlib(FileDigests) <= 4.6.0-1
rpmlib(PayloadFilesHavePrefix) <= 4.0-1
rpmlib(PayloadIsZstd) <= 5.4.18-1
rtld(GNU_HASH)

License

MPLv2.0

Changelog

* Thu Oct 30 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-31.2
  - Replace downstream fixes with upstream changes
* Wed Oct 29 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-31.1
  - Prevent cache poisoning due to weak PRNG (CVE-2025-40780)
  - Address various spoofing attacks (CVE-2025-40778)
* Wed Jul 09 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-31
  - Add runtime tunable limit by environment NAMED_MAXADDITIONAL (RHEL-84006)
* Fri Jun 20 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-30
  - Change additional NS to be served partially (RHEL-84006)
* Tue Jun 10 2025 Petr Menšík <pemensik@redhat.com> - 32:9.18.23-29
  - Prevent name.c:670 attributes assertion failed (RHEL-30407)
  - Add extra checks for relative names
* Sat Feb 15 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-28
  - Fix test backport changes
* Wed Feb 05 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-27
  - Limit additional section records CPU processing (CVE-2024-11187)
* Wed Feb 05 2025 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-26
  - Switch to autopatch changes applying
* Fri Sep 06 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-25
  - Bump version above RHEL 9.5
* Fri Aug 09 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-24
  - Minor fix of reclimit test backport (CVE-2024-1737)
* Wed Aug 07 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-23
  - Backport addition of max-records-per-type and max-records-per-type options
* Thu Jul 18 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-22
  - Resolve CVE-2024-1975
  - Resolve CVE-2024-1737
  - Resolve CVE-2024-4076
  - Add ability to change runtime limits for max types and records per name
* Tue Jul 09 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-21
  - Increase size of hazard pointer array (RHEL-39131)
* Tue May 28 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-20
  - Ensure bind CVE fixes hits public Stream repository
* Fri Apr 12 2024 Petr Menšík <pemensik@redhat.com> - 32:9.11.36-19
  - Ensure incompatible bind-dyndb-ldap is not accepted
* Mon Mar 25 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-18
  - Prevent crashing at masterformat system test (CVE-2023-6516)
* Mon Feb 19 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-17
  - Import tests for large DNS messages fix
  - Add downstream change complementing CVE-2023-50387
* Mon Feb 12 2024 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-16
  - Prevent increased CPU load on large DNS messages (CVE-2023-4408)
  - Prevent assertion failure when nxdomain-redirect is used with
   RFC 1918 reverse zones (CVE-2023-5517)
  - Prevent assertion failure if DNS64 and serve-stale is used (CVE-2023-5679)
  - Specific recursive query patterns may lead to an out-of-memory
    condition (CVE-2023-6516)
  - Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
    CVE-2023-50868)
* Thu Dec 07 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-15
  - Update addresses of b.root-servers.net (RHEL-18188)

Files

/usr/lib/.build-id
/usr/lib/.build-id/27
/usr/lib/.build-id/27/1c6d9264d1665f915bf55570f3ad336d9dfaea
/usr/lib/.build-id/40
/usr/lib/.build-id/40/5e16a58a146b94a166ee8b825e655783752375
/usr/lib/.build-id/5e
/usr/lib/.build-id/5e/2a7aa3a74506311eac0b399437ee6682a4c21a
/usr/lib/.build-id/60
/usr/lib/.build-id/60/f720aa5f070cc1fcefcf319d5d300b619abe64
/usr/lib/.build-id/97
/usr/lib/.build-id/97/1d03ebf962ee36eed5ee8ebea0d5797810b4b1
/usr/lib/.build-id/a6
/usr/lib/.build-id/a6/0e7529bccde913eeaabc917bb387b622dcec5a
/usr/lib/.build-id/a9/d6c631077f1de0148174501a50747dec170436
/usr/lib/.build-id/cb/7d2dbbb71aabde16c0615ba8c21799f5473155
/usr/lib/.build-id/f2
/usr/lib/.build-id/f2/6202142f22d430f8b6cbd8036e13e2cf884817
/usr/sbin/dnssec-cds
/usr/sbin/dnssec-checkds
/usr/sbin/dnssec-coverage
/usr/sbin/dnssec-dsfromkey
/usr/sbin/dnssec-importkey
/usr/sbin/dnssec-keyfromlabel
/usr/sbin/dnssec-keygen
/usr/sbin/dnssec-keymgr
/usr/sbin/dnssec-revoke
/usr/sbin/dnssec-settime
/usr/sbin/dnssec-signzone
/usr/sbin/dnssec-verify

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 11 07:18:34 2025

bind-dnssec-utils-9.16.23-31.el9_6.2 RPM for aarch64

From AlmaLinux 9.6 AppStream for aarch64

Provides

Requires

License

Changelog

Files