[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1003629: bullseye-pu: package python-dnslib/0.9.16-1

HI Scott,

On Wed, Jan 12, 2022 at 03:56:22PM -0500, Scott Kitterman wrote:
> Package: release.debian.org
> Severity: normal
> Tags: bullseye
> User: release.debian.org@packages.debian.org
> Usertags: pu
> 
> Security issue was evaluated as no-dsa, so following up as a regular
> stable update:
> 
> https://security-tracker.debian.org/tracker/CVE-2022-22846
> 
> The dnslib package through 0.9.16 for Python does not verify that the ID value
> in a DNS reply matches an ID value in a query.
> 
> The only change in the new upstream release is the fix for this issue,
> so it seems better to bump to the new release.  Package is ready for
> upload.  Both package and autopkgtest tests pass.  There is a minor
> change from how the tests were called bullseye to better match with how
> it was done with this version in unstable.
> 
> Most of the change is documentation changes driven by tooling changes in
> the upstream build system.  The code changes are very minor.
> 
> bullseye debdiff attached.

Is this the right debdiff? It looks this is the one which hit
unstable?

Regards,
Salvatore
Reply to: