Bug#891801: stretch-pu: package unbound/1.6.0-3+deb9u2

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 891801@bugs.debian.org
Cc: Robert Edmonds <edmonds@debian.org>
Subject: Bug#891801: stretch-pu: package unbound/1.6.0-3+deb9u2
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 14 Jul 2018 08:46:58 +0200
Message-id: <[🔎] 20180714064658.GA10383@eldamar.local>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 891801@bugs.debian.org
In-reply-to: <1520012992.15218.25.camel@adam-barratt.org.uk>
References: <20180228224709.lh3monc6dke5im4y@mycre.ws> <20180228224709.lh3monc6dke5im4y@mycre.ws> <1520012992.15218.25.camel@adam-barratt.org.uk> <20180228224709.lh3monc6dke5im4y@mycre.ws>

Control: tags -1 - moreinfo

On Fri, Mar 02, 2018 at 05:49:52PM +0000, Adam D. Barratt wrote:
> Control: tags -1 + moreinfo
> 
> On Wed, 2018-02-28 at 17:47 -0500, Robert Edmonds wrote:
> > I would like to fix a DNSSEC validation bug (CVE-2017-15105) in the
> > unbound package shipped in stretch. After discussion with the
> > security
> > team, this bug was deemed minor enough that the fix could be shipped
> > in
> > a point release:
> > 
> > https://security-tracker.debian.org/tracker/CVE-2017-15105
> > 
> 
> According to the above Security Tracker entry, this issue has not yet
> been fixed in unstable. Assuming that's correct, I'm afraid that's a
> blocker for looking at an update in stable.

This happened later on with the 1.7.1-1 upload.

Regards,
Salvatore

Reply to:

Prev by Date: Bug#903697: nmu: ros-geometry2_0.6.2-6
Next by Date: Processed: Re: Bug#891801: stretch-pu: package unbound/1.6.0-3+deb9u2
Previous by thread: Bug#903697: marked as done (nmu: ros-geometry2_0.6.2-6)
Next by thread: Processed: Re: Bug#891801: stretch-pu: package unbound/1.6.0-3+deb9u2
Index(es):
- Date
- Thread