mmezi mmezi na ngalaba sava DNS kwụsiri ike , yana ngalaba nnwale na-emepe emepe ugbu a 9.15.2. Mwepụta ọhụrụ ahụ na-ekwu maka adịghị ike agbụrụ agbụrụ (CVE-2019-6471) nke nwere ike iduga n'ịjụ ọrụ (nkwụsị usoro mgbe a na-eme ka nkwupụta) mgbe a na-egbochi ọtụtụ ngwugwu na-abata.
Na mgbakwunye, ụdị 9.14.4 ọhụrụ ahụ na-agbakwụnye nkwado maka GeoIP2 API maka ijikọ ebe nchekwa data dabere na adreesị IP sitere na ụlọ ọrụ ahụ.
MaxMind (nyere ya site na iji nhọrọ “-with-geoip2” rụọ ọrụ). GeoIP2 anaghị akwado ụfọdụ ACL (dị ka ọsọ netwọkụ, nhazi, na koodu obodo) nke akwadoburu maka ochie GeoIP API, nke MaxMind na-adịghị echekwa ya. agbakwunyere metrics dnssec-sign na dnssec-refresh na ọnụ ọgụgụ nke mbinye aka DNSSEC emepụtara na emelitere.
Ọzọkwa, enwere ike ịdeba ya Ihe nkesa DNS Knot 2.8.3, nke gbakwunyere faịlụ nhazi akwụkwọ/isi igodo maka TLS ka kdig, ụbara ọdịnaya ozi nke ndenye log maka ntinye aka na-anọghị n'ịntanetị-KSK yana modul RRL, yana nyocha nhazi DNSSEC gbasaa.
E wepụtakwara Knot Resolver 4.1.0, nke kpochapụrụ (CVE-2019-10190, CVE-2019-10191): Ikike ịgafe DNSSEC ndenye ego maka ajụjụ aha na-efu efu (NXDOMAIN) yana ikike ịtụgharị ngalaba echekwara DNSSEC gaa na steeti DNSSEC na-enweghị nchebe site na mkpochapụ ngwugwu.
isi: opennet.ru