diff options
| -rw-r--r-- | NEWS | 16 | ||||
| -rw-r--r-- | meson.build | 2 |
2 files changed, 11 insertions, 7 deletions
@@ -1,9 +1,10 @@ -Knot Resolver ?? +Knot Resolver 4.3.0 (2019-12-04) ================================ -Security --------- -- fix CVE-2019-19331: improve CNAME chain length accounting (DoS, #518) +Security - CVE-2019-19331 +------------------------- +- fix speed of processing large RRsets (DoS, #518) +- improve CNAME chain length accounting (DoS, !899) Bugfixes -------- @@ -12,12 +13,15 @@ Bugfixes have been configured with IP addresses after reboot (!884) - sendmmsg: improve reliability (!704) - cache: fix crash on insertion via lua for NS and CNAME (!889) +- rpm package: move root.keys to /var/lib/knot-resolver (#513, !888) Improvements ------------ -- increase file-descriptor count limit to maximum allowed value (hard limit) -- watchdog module: support testing a DNS query (and switch C -> lua; !878) +- increase file-descriptor count limit to maximum allowed value (hard limit; !876) +- watchdog module: support testing a DNS query (and switch C -> lua; !878, !881) - performance: use sendmmsg syscall towards clients by default (!877) +- performance: avoid excessive getsockname() syscalls (!854) +- performance: lua-related improvements (!874) - daemon now attempts to drop all capabilities (!896) - reduce CNAME chain length limit - now <= 12 (!899) diff --git a/meson.build b/meson.build index 9825580e..9527acaf 100644 --- a/meson.build +++ b/meson.build @@ -2,7 +2,7 @@ project( 'knot-resolver', ['c', 'cpp'], license: 'GPLv3+', - version: '4.2.2', + version: '4.3.0', default_options: ['c_std=gnu11', 'b_ndebug=if-release'], meson_version: '>=0.46', ) |