Bug#602839: unblock: bind9/1:9.7.2.dfsg.P2-1

To: Moritz Muehlenhoff <jmm@inutil.org>
Cc: Julien Cristau <jcristau@debian.org>, "Adam D. Barratt" <adam@adam-barratt.org.uk>, 602839@bugs.debian.org, Moritz Muehlenhoff <jmm@debian.org>, bind9@packages.debian.org
Subject: Bug#602839: unblock: bind9/1:9.7.2.dfsg.P2-1
From: LaMont Jones <lamont@mmjgroup.com>
Date: Tue, 30 Nov 2010 17:58:02 -0700
Message-id: <[🔎] 20101201005802.GA22872@mix.mmjgroup.com>
Reply-to: LaMont Jones <lamont@mmjgroup.com>, 602839@bugs.debian.org
In-reply-to: <20101130225222.GA6144@galadriel.inutil.org>
References: <20101108175227.2663.91483.reportbug@localhost.localdomain> <1289245819.32071.85.camel@hathi.jungle.funky-badger.org> <20101120171140.GQ5063@radis.liafa.jussieu.fr> <20101130225222.GA6144@galadriel.inutil.org>

On Tue, Nov 30, 2010 at 11:52:22PM +0100, Moritz Muehlenhoff wrote:
> > Lamont, would it be possible to prepare an upload fixing just the
> > security bug for squeeze (so based on 1:9.7.1.dfsg.P2-2)?
> 
> I looked into it a bit, but couldn't pinpoint the exact changes for 
> CVE-2010-3752 (not with a certainty to not mess up DNSSEC).
> I'll give it another go in the next days.

Likewise.  Looking at my schedule, 9.7.2 is something in the "early next
week" camp.

In what I saw, this CVE seems to have come in after they had already 
fixed it - there is no mention of it prior to the 9.7.2 release notes.
I'm more inclined to support the 9.7.2 upstream than I am to support a
frankenversion where we can't find an isolated fix for the bug.

But again, I'm going to worry about it more this weekend and monday/tuesday.

lamont

Reply to:

Prev by Date: Re: emacsen-common: bugfix for squeeze
Next by Date: libgadu upload to lenny proposed updates
Previous by thread: Re: emacsen-common: bugfix for squeeze
Next by thread: Bug#602839: unblock: bind9/1:9.7.2.dfsg.P2-1
Index(es):
- Date
- Thread