stable

bind9-next-9.21.17-1.fc43

FEDORA-2026-b31c8d8e83 created by pemensik 3 weeks ago for Fedora 43

Update to 9.21.17 (#2415843)

Security Fixes:

Fix incorrect length checks for BRID and HHIT records. (CVE-2025-13878)

New Features:

Add support for Extended DNS Error 9 (Missing DNSKEY).
Add support for Extended DNS Error 13 (Cached Error).
Add support for Generalized DNS Notifications.

Features Changes:

Add more information to the rndc recursing output about fetches.
Enforce bounds of multiple configuration options.

Bug Fixes:

Fix inbound IXFR performance regression.
Make DNSSEC key rollovers more robust.
Fix a catalog zone issue, where member zones could fail to load.
Fix slow speed when signing a large delegation zone with NSEC3 opt-out.
Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to be invalid.
Fix a possible catalog zone issue during reconfiguration.
Fix the charts in the statistics channel.

https://downloads.isc.org/isc/bind9/9.21.17/doc/arm/html/notes.html#notes-for-bind-9-21-17

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2026-b31c8d8e83

This update has been submitted for testing by pemensik.

3 weeks ago

This update's test gating status has been changed to 'ignored'.

3 weeks ago

This update has been pushed to testing.

3 weeks ago

This update has been submitted for stable by bodhi.

2 weeks ago

This update has been pushed to stable.

2 weeks ago

Please log in to add feedback.

Metadata

Type

security

Severity

high

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

3 weeks ago

in testing

3 weeks ago

in stable

2 weeks ago

approved

2 weeks ago

Builds

bind9-next-9.21.17-1.fc43

BZ#2415843 bind9-next-9.21.17 is available

bind9-next-9.21.17-1.fc43

Automated Test Results

ignored