mirror of
https://github.com/novatiq/packages.git
synced 2026-04-27 06:14:41 +01:00
f9fbc75557
This includes the fix for CVE-2018-5738: When recursion is enabled but the allow-recursion and allow-query-cache ACLs are not specified, they should be limited to local networks, but they were inadvertently set to match the default allow-query, thus allowing remote queries. Signed-off-by: Noah Meyerhans <frodo@morgul.net>