** Description changed: - Scheduled-For: 23.01 Upstream: tbd - Debian: 1:9.11.19+dfsg-2.1 + Debian: 1:9.11.19+dfsg-2.1 Ubuntu: 1:9.11.19+dfsg-2.1ubuntu1 - Debian does new releases regularly, so it's likely there will be newer versions available before FF that we can pick up if this merge is done later in the cycle. - ### New Debian Changes ### bind9-libs (1:9.11.19+dfsg-2.1) unstable; urgency=medium - * Non-maintainer upload. - * Add patch from Jorge Niedbalski to stop redundant DHCP servers - from crashing. (Closes: #968298) + * Non-maintainer upload. + * Add patch from Jorge Niedbalski to stop redundant DHCP servers + from crashing. (Closes: #968298) - -- Adrian Bunk <b...@debian.org> Sun, 25 Jul 2021 23:22:48 +0300 + -- Adrian Bunk <b...@debian.org> Sun, 25 Jul 2021 23:22:48 +0300 bind9-libs (1:9.11.19+dfsg-2) unstable; urgency=high - * Although none of these CVEs affect the ISC DHCP, it's better to have - them all fixed just for the same the assumption proves false in the - future: - + [CVE-2020-8625]: Fix off-by-one bug in ISC SPNEGO implementation. - + [CVE-2020-8624]: 'update-policy' rules of type 'subdomain' were - incorrectly treated as 'zonesub' rules, which allowed keys used in - 'subdomain' rules to update names outside of the specified - subdomains. The problem was fixed by making sure 'subdomain' rules - are again processed as described in the ARM. - + [CVE-2020-8622]: It was possible to trigger an assertion failure - when verifying the response to a TSIG-signed request. + * Although none of these CVEs affect the ISC DHCP, it's better to have + them all fixed just for the same the assumption proves false in the + future: + + [CVE-2020-8625]: Fix off-by-one bug in ISC SPNEGO implementation. + + [CVE-2020-8624]: 'update-policy' rules of type 'subdomain' were + incorrectly treated as 'zonesub' rules, which allowed keys used in + 'subdomain' rules to update names outside of the specified + subdomains. The problem was fixed by making sure 'subdomain' rules + are again processed as described in the ARM. + + [CVE-2020-8622]: It was possible to trigger an assertion failure + when verifying the response to a TSIG-signed request. - -- Ondřej Surý <ond...@debian.org> Tue, 16 Feb 2021 09:35:53 +0100 + -- Ondřej Surý <ond...@debian.org> Tue, 16 Feb 2021 09:35:53 +0100 bind9-libs (1:9.11.19+dfsg-1) unstable; urgency=medium - * New upstream version 9.11.19+dfsg + * New upstream version 9.11.19+dfsg - -- Ondřej Surý <ond...@debian.org> Tue, 19 May 2020 22:19:50 +0200 + -- Ondřej Surý <ond...@debian.org> Tue, 19 May 2020 22:19:50 +0200 bind9-libs (1:9.11.18+dfsg-1) unstable; urgency=medium - * New upstream version 9.11.18+dfsg + * New upstream version 9.11.18+dfsg - -- Ondřej Surý <ond...@debian.org> Thu, 16 Apr 2020 08:44:01 +0200 + -- Ondřej Surý <ond...@debian.org> Thu, 16 Apr 2020 08:44:01 +0200 bind9-libs (1:9.11.17+dfsg-4) unstable; urgency=medium - * Revert the SONAME back to 1110, to accomodate to the binNMUs - that has been issued meanwhile. I'll poke myself to be more - careful about the ABI bumps. + * Revert the SONAME back to 1110, to accomodate to the binNMUs + that has been issued meanwhile. I'll poke myself to be more + careful about the ABI bumps. - -- Ondřej Surý <ond...@debian.org> Mon, 23 Mar 2020 10:16:17 +0100 + -- Ondřej Surý <ond...@debian.org> Mon, 23 Mar 2020 10:16:17 +0100 bind9-libs (1:9.11.17+dfsg-3) unstable; urgency=medium - * Revert 'Bump the SONAME of libdns to 1110' + * Revert 'Bump the SONAME of libdns to 1110' - -- Ondřej Surý <ond...@debian.org> Mon, 23 Mar 2020 09:44:25 +0100 + -- Ondřej Surý <ond...@debian.org> Mon, 23 Mar 2020 09:44:25 +0100 bind9-libs (1:9.11.17+dfsg-2) unstable; urgency=medium - * Upload to unstable and misc changes to d/control + * Upload to unstable and misc changes to d/control - -- Ondřej Surý <ond...@debian.org> Sun, 22 Mar 2020 09:02:08 +0100 + -- Ondřej Surý <ond...@debian.org> Sun, 22 Mar 2020 09:02:08 +0100 bind9-libs (1:9.11.17+dfsg-1) experimental; urgency=medium - * New upstream version 9.11.17+dfsg - * Bump the SONAME of libdns to 1110 + * New upstream version 9.11.17+dfsg + * Bump the SONAME of libdns to 1110 - -- Ondřej Surý <ond...@debian.org> Fri, 20 Mar 2020 14:31:18 +0100 + -- Ondřej Surý <ond...@debian.org> Fri, 20 Mar 2020 14:31:18 +0100 bind9-libs (1:9.11.16+dfsg-3) experimental; urgency=medium - * Cleanup dnsutils package and don't install manpages - * Add lintian override for isc-config.sh + * Cleanup dnsutils package and don't install manpages + * Add lintian override for isc-config.sh - -- Ondřej Surý <ond...@debian.org> Thu, 20 Feb 2020 16:54:48 +0100 + -- Ondřej Surý <ond...@debian.org> Thu, 20 Feb 2020 16:54:48 +0100 bind9-libs (1:9.11.16+dfsg-2) experimental; urgency=medium - * Change the package to library only + * Change the package to library only - -- Ondřej Surý <ond...@debian.org> Thu, 20 Feb 2020 15:28:42 +0100 + -- Ondřej Surý <ond...@debian.org> Thu, 20 Feb 2020 15:28:42 +0100 bind9 (1:9.11.16+dfsg-1) unstable; urgency=medium - * New upstream version 9.11.16+dfsg - * Bump libisc SOVERSION to 1105 + * New upstream version 9.11.16+dfsg + * Bump libisc SOVERSION to 1105 - -- Ondřej Surý <ond...@debian.org> Thu, 20 Feb 2020 10:44:11 +0100 + -- Ondřej Surý <ond...@debian.org> Thu, 20 Feb 2020 10:44:11 +0100 bind9 (1:9.11.15+dfsg-1) unstable; urgency=medium - * New upstream version 9.11.15+dfsg - * Bump libdns SOVERSION to 1109 + * New upstream version 9.11.15+dfsg + * Bump libdns SOVERSION to 1109 - -- Ondřej Surý <ond...@debian.org> Thu, 23 Jan 2020 11:04:18 +0100 + -- Ondřej Surý <ond...@debian.org> Thu, 23 Jan 2020 11:04:18 +0100 bind9 (1:9.11.14+dfsg-3) unstable; urgency=medium - * cherry-pick upstream patch to fix FTBFS on armel + * cherry-pick upstream patch to fix FTBFS on armel - -- Bernhard Schmidt <be...@debian.org> Thu, 16 Jan 2020 16:58:50 +0100 + -- Bernhard Schmidt <be...@debian.org> Thu, 16 Jan 2020 16:58:50 +0100 bind9 (1:9.11.14+dfsg-2) unstable; urgency=medium - [ Bernhard Schmidt ] - * Unmark bind9-host as deprecated (Closes: #948139) - + [ Bernhard Schmidt ] + * Unmark bind9-host as deprecated (Closes: #948139) ### Old Ubuntu Delta ### bind9-libs (1:9.11.19+dfsg-2.1ubuntu1) impish; urgency=medium - * Merge with Debian unstable. Remaining changes: - - Allow building without udeb packages. (LP: #1938456) - * Dropped changes: - - debian/patches/0010-fix-1872118.patch: Check if pending_send - if set before calling dispatch_send. Fixes LP: #1872118. - [ Incorporated by Debian. ] + * Merge with Debian unstable. Remaining changes: + - Allow building without udeb packages. (LP: #1938456) + * Dropped changes: + - debian/patches/0010-fix-1872118.patch: Check if pending_send + if set before calling dispatch_send. Fixes LP: #1872118. + [ Incorporated by Debian. ] - -- Sergio Durigan Junior <sergio.duri...@canonical.com> Wed, 28 Jul + -- Sergio Durigan Junior <sergio.duri...@canonical.com> Wed, 28 Jul 2021 17:46:53 -0400
** Changed in: bind9-libs (Ubuntu) Milestone: None => ubuntu-22.01 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1946846 Title: Merge bind9-libs from Debian unstable for 22.04 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9-libs/+bug/1946846/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs