Re: Call for testing: dnsmasq security update

To: debian-lts@lists.debian.org
Subject: Re: Call for testing: dnsmasq security update
From: dw@mpex.de
Date: Fri, 6 Oct 2017 15:06:58 +0200
Message-id: <[🔎] 817693cc-1a46-4a4d-9bc8-e8db84c1a89f@mpex.de>
In-reply-to: <[🔎] 1507221069.2677.57.camel@debian.org>
References: <[🔎] 1507221069.2677.57.camel@debian.org>

Hi Ben,

I've tested the resolver part of 'dnsmasq_2.62-3+deb7u4' for wheezy,
works as expected! Did no testing on dhcp part though.

Hope it helps to get released soon!


Cheers,

Dennis


On Thu, Oct 05, 2017 at 05:31:09PM +0100, Ben Hutchings wrote:
> I've prepared a security update for dnsmasq in wheezy, fixing the
> relevant CVEs:
>
>   * CVE-2017-14491: DNS heap buffer overflow
>   * CVE-2017-14492: DHCPv6 RA heap overflow
>   * CVE-2017-14494: Infoleak handling DHCPv6 forwarded requests
>   * CVE-2017-14496: Integer underflow in DNS response creation
>
> I checked that the package builds cleanly, the daemon runs and answers
> DNS requests.  But I'm not familiar with this package so I would
> appreciate some wider testing before uploading.
>
> The updated source and amd64 binaries are available under
> <https://people.debian.org/~benh/packages/wheezy-security/>.

Reply to:

Follow-Ups:
- Re: Call for testing: dnsmasq security update
  - From: Ben Hutchings <ben@decadent.org.uk>

References:
- Call for testing: dnsmasq security update
  - From: Ben Hutchings <benh@debian.org>

Prev by Date: Re: Call for testing: dnsmasq security update
Next by Date: Re: Call for testing: db
Previous by thread: Re: Call for testing: dnsmasq security update
Next by thread: Re: Call for testing: dnsmasq security update
Index(es):
- Date
- Thread