f9fbc75557
This includes the fix for CVE-2018-5738: When recursion is enabled but the allow-recursion and allow-query-cache ACLs are not specified, they should be limited to local networks, but they were inadvertently set to match the default allow-query, thus allowing remote queries. Signed-off-by: Noah Meyerhans <frodo@morgul.net>
31 lines
644 B
Diff
31 lines
644 B
Diff
Index: bind-9.11.5/configure.in
|
|
===================================================================
|
|
--- bind-9.11.5.orig/configure.in
|
|
+++ bind-9.11.5/configure.in
|
|
@@ -181,26 +181,11 @@ esac
|
|
#
|
|
AC_CONFIG_FILES([make/rules make/includes])
|
|
|
|
-AC_PATH_PROG(AR, ar)
|
|
-ARFLAGS="cruv"
|
|
-AC_SUBST(AR)
|
|
-AC_SUBST(ARFLAGS)
|
|
-
|
|
# The POSIX ln(1) program. Non-POSIX systems may substitute
|
|
# "copy" or something.
|
|
LN=ln
|
|
AC_SUBST(LN)
|
|
|
|
-case "$AR" in
|
|
- "")
|
|
- AC_MSG_ERROR([
|
|
-ar program not found. Please fix your PATH to include the directory in
|
|
-which ar resides, or set AR in the environment with the full path to ar.
|
|
-])
|
|
-
|
|
- ;;
|
|
-esac
|
|
-
|
|
#
|
|
# Etags.
|
|
#
|