This update for nsd fixes the following issues:
nsd was updated to the new upstream release 4.3.4
FEATURES:
- Merge PR #141: ZONEMD RR type.
BUG FIXES:
- Fix that symlink does not interfere with chown of pidfile
(boo#1179191, CVE-2020-28935)
- Fix #128: Fix that the invalid port number is logged for sendmmsg failed: Invalid argument.
- Fix #133: fix 0-init of local ( stack ) buffer.
- Fix #134: IPV4_MINIMAL_RESPONSE_SIZE vs EDNS_MAX_MESSAGE_LEN.
- Fix to add missing closest encloser NSEC3 for wildcard nodata type DS answer.
- Fix #138: NSD returns non-EDNS answer when QUESTION is empty.
- Fix #142: NODATA answers missin SOA in authority section after CNAME chain.
New upstream release 4.3.3:
FEATURES:
-
Follow DNS flag day 2020 advice and set default EDNS message size to 1232.
-
Merged PR #113 with fixes. Instead of listing an IP-address to
listen on, an interface name can be specified in nsd.conf, with
ip-address: eth0. The IP-addresses for that interface are then used.
-
New upstream release 4.3.2
FEATURES:
- Fix #96: log-only-syslog: yes sets to only use syslog, fixes
that the default configuration and systemd results in duplicate
log messages.
- Fix #107: nsd -v shows configure line, openssl version and libevent
version.
- Fix #103 with #110: min-expire-time option. To provide a lower
bound for expire period. Expressed in number of seconds or
refresh+retry+1.
BUG FIXES:
- Fix to omit the listen-on lines from log at startup, unless verbose.
- Fix #97: EDNS unknown version: query not in response.
- Fix #99: Fix copying of socket properties with reuseport enabled.
- Document default value for tcp-timeout.
- Merge PR#102 from and0x000: add missing default in documentation for drop-updates.
- Fix unlink of pidfile warning if not possible due to permissions,
nsd can display the message at high verbosity levels.
- Removed contrib/nsd.service, example is too complicated and not useful.
- Merge #108 from Nomis: Make the max-retry-time...