Package Release Info


Update Info: Base Release
Available in Package Hub : 15 SP5 Subpackages





Change Logs

* Mon Jun 15 2020
- Update to 1.6.0
- Changes in 1.6.0:
  * Bugfixes
  * adnshost: Support --reverse in -f mode input stream
  * timeout robustness against clock skew: track query start time and
    duration.  Clock instability may now only cause spurious timeouts
    rather than indefinite hangs or even assertion failures.
  * New features:
  * adnshost: Offer ability to set adns checkc flags
  * adnslogres: Honour --checkc-freq (if it comes first)
  * adnsresfilter: Honour --checkc-freq and --checkc-entex
  * time handling: Support use of CLOCK_MONOTONIC via an init flag.
  * adns_str* etc.: Improve robustness; more allowable inputs values.
  * Internal changes:
  * adnshost: adh-opts.c: Whitespace adjustments to option table
  * Build system and tests improvements
- Changes in 1.5.2
  * Important security fixes:
    CVE-2017-9103 CVE-2017-9104 CVE-2017-9105 CVE-2017-9109:
    Vulnerable applications: all adns callers.
    Exploitable by: the local recursive resolver.
    Likely worst case: Remote code execution.
    Vulnerable applications: those that make SOA queries.
    Exploitable by: upstream DNS data sources.
    Likely worst case: DoS (crash of the adns-using application)
    Vulnerable applications: those that use adns_qf_quoteok_query.
    Exploitable by: sources of query domain names.
    Likely worst case: DoS (crash of the adns-using application)
    Vulnerable applications: adnshost.
    Exploitable by: code responsible for framing the input.
    Likely worst case: DoS (adnshost crashes at EOF).
  * Bugfixes:
  * Do not include spurious external symbol `data' (fixes GCC10 build).
  * If server sends TC flag over TCP, bail rather than retrying.
  * Do not crash on certain strange resolv.conf contents.
  * Fix various crashes if a global system failure occurs, or
    adns_finish is called with outstanding queries.
  * Correct a parsing error message very slightly.
  * DNS packet parsing: Slight fix when packet is truncated.
  * Fix ABI compatibility in string conversion of certain RR types.
  * internal.h: Use `unsigned' for nextid; fixes theoretical C UB.
  * Portability fix:
  * add -Wno-unused-value.  Fixes build with GCC9.
  * Internal changes:
  * Additional comments describing some internal code restrions.
  * Robustness assert() against malfunctioning write() system call.
- It fixes the following CVEs [bsc#1172265]
  CVE-2017-9103, CVE-2017-9104, CVE-2017-9105, CVE-2017-9106,
  CVE-2017-9107, CVE-2017-9108, CVE-2017-9109
- refresh adns-visibility.patch
- drop adns-1.5.1-gcc10.patch that is no longer needed
* Tue Jun 02 2020
- add adns-1.5.1-gcc10.patch to fix build with GCC10
- run spec-cleaner
* Tue Nov 22 2011
- Remove redundant/unwanted tags/section (cf. specfile guidelines)
Version: 1.5.1-bp152.4.1
* Mon Jun 08 2020 Kristyna Streitova <>
- add the following patches to fix multiple vulnerabilities [bsc#1172265]
  * adns-1.5.1-CVE-2017-9103.patch [CVE-2017-9103]
  * adns-1.5.1-CVE-2017-9104.patch [CVE-2017-9104]
  * adns-1.5.1-CVE-2017-9105.patch [CVE-2017-9105]
  * adns-1.5.1-CVE-2017-9106.patch [CVE-2017-9106]
  * adns-1.5.1-CVE-2017-9107.patch [CVE-2017-9107]
  * adns-1.5.1-CVE-2017-9108.patch [CVE-2017-9108]
  * adns-1.5.1-CVE-2017-9109.patch [CVE-2017-9109]
Version: 1.5.1-bp150.1.2
* Sat Nov 04 2017
- Update to 1.5.1
  * Fix addr queries (including subqueries, ie including deferencing MX
    lookups etc.) not to crash when one of the address queries returns
    tempfail.  Also, do not return a spurious pointer to the application
    when one of the address queries returns a permanent error (although,
    the application almost certainly won't use this pointer because the
    associated count is zero).
  * Portability fix for systems where socklen_t is bigger than int.
  * Fix for malicious optimisation of memcpy in test suite, which
    causes failure with gcc-4.1.9 -O3.
  * Fix TCP async connect handling. The bug is hidden on Linux and on most
    systems where the nameserver is on localhost. If it is not hidden,
    adns's TCP support is broken unless adns_if_noautosys is used.
  * adnsresfilter: Fix addrtextbuf buffer size.  This is not actually a
    problem in real compiled code but should be corrected.
  * Properly include harness.h in adnstest.c in regress/.  Suppresses
    a couple of compiler warnings (implicit declaration of Texit, etc.)
- cleanup with spec-cleaner
* Thu Mar 23 2017
- cleanup with spec-cleaner
- get rid of %{name} macro in the patch name
- restart patch numbering
* Mon Mar 02 2015
- Remove obsolete patches
  * adns-ocloexec.patch
  * adns-1.4-ipv6.patch
- Add gpg signature
- Cleanup spec-file with spec-cleaner
- Remove already disabled %check section, tests require working
  network setup
- Update to 1.5.0
  * This release provides full IPv6 support.  Applications can
    request AAAA records (containing IPv6 addresses) as well as,
    or instead of, A records (containing IPv4 addresses).  adns
    1.5 can speak to nameservers over IPv6.
  * converting between addresses and address literals.  These carry
    less baggage than getaddrinfo and getnameinfo.
  * bugfixes and other minor changes (see changelog for details)
* Tue Jun 11 2013
- remove debug statement in the spec file, leftover from
  previous change.
* Mon Jun 10 2013
- Build with large file support in 32 bit archs, autoconf
  stuff is fine, but C files included config.h after C library
  headers, therefore no prototypes for *64 functions found.
* Wed Mar 20 2013
- Added download url as source.
  Please see
* Tue Dec 20 2011
- add autoconf as buildrequire to avoid implicit dependency
* Tue Nov 22 2011
- Remove redundant/unwanted tags/section (cf. specfile guidelines)
* Tue Nov 22 2011
- Use O_CLOEXEC in library code.
- Change the visibility patch to not use the error prone
  version-script but rather GCC visibility
* Fri Sep 16 2011
- Implement baselibs for package
- Remove redundant tags/sections from specfile
* Sun Dec 19 2010
- Use 64bit file offsets
* Fri Nov 05 2010
- export only public symbols
* Fri Jan 16 2009
- remove static libraries
* Thu Sep 18 2008
- document CVE-2008-1447 / CVE-2008-4100 poisoning vulnerability
  in README.SUSE [bnc#426515]
* Wed Feb 20 2008
- added patch to support IPv6 protocol [#350506]
* Tue Aug 07 2007
- update to version 1.4
- run ldconfig
- use library packaging policy
- run make check
* Fri Sep 01 2006
- updated to adns-1.3, providing new support for SRV RRs
  and unknown RRs as well as several portability fixes.
- adopted configure and destdir patches, removed obsolete
  codecleanup and missing_symlink patches
* Wed Apr 26 2006
- added adns-missing_symlink.diff:
  add missing symlink "" so you can dynamically
  link against libadns.
* Wed Jan 25 2006
- converted neededforbuild to BuildRequires
* Mon Dec 19 2005
- added to filelist