gyare-gyaren gyara zuwa ga tsayayyen rassan uwar garken DNS , da kuma reshen gwaji na ci gaba a halin yanzu 9.15.2. Sabbin abubuwan da aka saki suna magance raunin yanayin tseren (CVE-2019-6471) wanda zai iya haifar da ƙin sabis (karewa aiwatarwa lokacin da aka ƙaddamar da ƙaddamarwa) lokacin da aka toshe babban adadin fakiti masu shigowa.
Bugu da kari, sabon sigar 9.14.4 yana ƙara tallafi ga GeoIP2 API don haɗa bayanan wuri dangane da adiresoshin IP daga kamfanin.
MaxMind (an kunna ta hanyar ginawa tare da zaɓin "-with-geoip2"). GeoIP2 baya goyan bayan wasu ACLs (kamar saurin hanyar sadarwa, ƙungiya, da lambar ƙasa) waɗanda aka taɓa tallafawa don tsohuwar GeoIP API, wanda MaxMind baya kiyayewa. Hakanan an ƙara sabbin awo dnssec-sign da dnssec-refresh tare da ƙididdiga don adadin sa hannun DNSSEC da aka ƙirƙira da sabunta su.
Bugu da ƙari, ana iya lura da shi Sabar DNS Knot 2.8.3, wanda a cikinsa an ƙara takardar shedar/fayil ɗin daidaita maɓalli na TLS zuwa kdig, abubuwan da ke cikin bayanan shigarwar log don sa hannun layi-KSK da tsarin RRL an haɓaka, kuma an faɗaɗa duban sanyi na DNSSEC.
An kuma fitar da sabuntawar Knot Resolver 4.1.0, wanda ya kawar da shi (CVE-2019-10190, CVE-2019-10191): Ikon kewaya DNSSEC cak don bacewar sunan queries (NXDOMAIN) da ikon jujjuya yankin da ke da kariya ta DNSSEC zuwa jihar DNSSEC mara kariya ta hanyar fakiti.
source: budenet.ru