Re: squeeze update of dnsmasq?

To: Simon Kelley <simon@thekelleys.org.uk>
Cc: debian-lts@lists.debian.org, 683372@bugs.debian.org
Subject: Re: squeeze update of dnsmasq?
From: Santiago Ruano Rincón <santiagorr@riseup.net>
Date: Sat, 16 May 2015 12:26:51 +0200
Message-id: <[🔎] 20150516102651.GA18031@novelo>
In-reply-to: <[🔎] 20150515142430.GA3071@novelo>
References: <[🔎] 20150513130738.GA9461@home.ouaza.com> <[🔎] 55550C34.9070007@thekelleys.org.uk> <[🔎] 20150515142430.GA3071@novelo>

Hi Simon,

On Fri, May 15, 2015 at 04:24:30PM +0200, Santiago Ruano Rincón wrote:
...
> I'm attaching the clean patch to fix CVE-2015-3294.

These other CVEs are related each other and still affect dnsmasq in
squeeze and wheeze:
https://security-tracker.debian.org/tracker/CVE-2012-3411
https://security-tracker.debian.org/tracker/CVE-2013-0198

As far as I understand, your fix to those bugs introduces the new
--bind-dynamic option in dnsmasq. This fix also depends on libvirt, that
needs to be modified to pass --bind-dynamic instead of
--bind-interfaces. Please, correct me if I'm wrong.

Given that in Debian they have been classified as low priority, do you
think it's worth to do adapt those changes into squeeze and wheeze?

Best regards,

Santiago

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: squeeze update of dnsmasq?
  - From: Santiago Ruano Rincón <santiagorr@riseup.net>
- Re: squeeze update of dnsmasq?
  - From: Simon Kelley <simon@thekelleys.org.uk>

References:
- squeeze update of dnsmasq?
  - From: Raphael Hertzog <hertzog@debian.org>
- Re: squeeze update of dnsmasq?
  - From: Simon Kelley <simon@thekelleys.org.uk>
- Re: squeeze update of dnsmasq?
  - From: Santiago Ruano Rincón <santiagorr@riseup.net>

Prev by Date: Re: Updating dpkg in squeeze-lts
Next by Date: Re: squeeze update of dnsmasq?
Previous by thread: Re: squeeze update of dnsmasq?
Next by thread: Re: squeeze update of dnsmasq?
Index(es):
- Date
- Thread