Bug#1008021: marked as done (bind9: unused build-dependency on libldap2-dev)

[Debian Bug Tracking System]

Your message dated Sat, 24 Sep 2022 19:02:10 +0000
with message-id <e1ocapi-00506j...@fasolo.debian.org>
and subject line Bug#1008021: fixed in bind9 1:9.16.33-1~deb11u1
has caused the Debian Bug report #1008021,
regarding bind9: unused build-dependency on libldap2-dev
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1008021: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008021
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: bind9
Version: 1:9.18.1-1
Severity: minor

Dear Maintainer,

I think bind9's build-dependency on libldap2-dev is unused.

As far as I can tell, it was added to support the dlz-ldap module:

https://salsa.debian.org/dns-team/bind9/-/commit/dcc91657062f34b22cceaceaac176e3d445770e9#58ef006ab62b83b4bec5d81fe5b32c3b4c2d1cc2

However, building the dlz modules seems to be disabled since 2011:

https://salsa.debian.org/dns-team/bind9/-/commit/6c6fcc660cb7be94857f42979bbae5558c7a4486

The current binary packages have no dependency on libldap, and I didn't 
find the word "ldap" in their contents, except for the apparmor profile 
and some documentation.

The package builds successfully with libldap2-dev dropped. The build is 
not reproducible (for other reasons) so I couldn't easily check whether 
the results were identical.

thanks,
Ryan

--- End Message ---

--- Begin Message ---

Source: bind9
Source-Version: 1:9.16.33-1~deb11u1
Done: Ondřej Surý <ond...@debian.org>

We believe that the bug you reported is fixed in the latest version of
bind9, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1008...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Ondřej Surý <ond...@debian.org> (supplier of updated bind9 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 21 Sep 2022 12:40:02 +0200
Source: bind9
Binary: bind9 bind9-dbgsym bind9-dev bind9-dnsutils bind9-dnsutils-dbgsym 
bind9-doc bind9-host bind9-host-dbgsym bind9-libs bind9-libs-dbgsym bind9-utils 
bind9-utils-dbgsym bind9utils dnsutils
Architecture: source amd64 all
Version: 1:9.16.33-1~deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: Debian DNS Team <team+...@tracker.debian.org>
Changed-By: Ondřej Surý <ond...@debian.org>
Description:
 bind9      - Internet Domain Name Server
 bind9-dev  - Static Libraries and Headers used by BIND 9
 bind9-dnsutils - Clients provided with BIND 9
 bind9-doc  - Documentation for BIND 9
 bind9-host - DNS Lookup Utility
 bind9-libs - Shared Libraries used by BIND 9
 bind9-utils - Utilities for BIND 9
 bind9utils - Transitional package for bind9-utils
 dnsutils   - Transitional package for bind9-dnsutils
Closes: 1008021 1009889
Changes:
 bind9 (1:9.16.33-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream version 9.16.33
    - CVE-2022-2795: Processing large delegations may severely degrade
      resolver performance
    - CVE-2022-2881: Buffer overread in statistics channel code
    - CVE-2022-2906: Memory leaks in code handling Diffie-Hellman key
      exchange via TKEY RRs (OpenSSL 3.0.0+ only)
    - CVE-2022-3080: BIND 9 resolvers configured to answer from stale
      cache with zero stale-answer-client-timeout may terminate unexpectedly
    - CVE-2022-38177: Memory leak in ECDSA DNSSEC verification code
    - CVE-2022-38178: Memory leaks in EdDSA DNSSEC verification code
   * Drop libldap2-dev from Build-Depends (Closes: #1008021)
   * Add runtime dependency on libuv1 >= 1.40.0 (Closes: #1009889)
Checksums-Sha1:
 9608ebd938f05de5e032ec8b4819bf4bad06f8bb 3266 bind9_9.16.33-1~deb11u1.dsc
 29b1d31666e6f6030759ee700f512de8537f5b25 5092516 bind9_9.16.33.orig.tar.xz
 87345affc6843a0d6ec812d24d09fcd7a1810b0c 833 bind9_9.16.33.orig.tar.xz.asc
 5e2b3df585add099078106201deed3f714784cf5 78552 
bind9_9.16.33-1~deb11u1.debian.tar.xz
 622e2f5eac0a61c505ea4776d49e72d37915967f 515568 
bind9-dbgsym_9.16.33-1~deb11u1_amd64.deb
 740247b01a7cd6e251db6b312633e4d8f52b032f 1764200 
bind9-dev_9.16.33-1~deb11u1_amd64.deb
 37793b0fec4b0e5aee79700c9e2d6695ead5878b 283768 
bind9-dnsutils-dbgsym_9.16.33-1~deb11u1_amd64.deb
 4bb57b2b3aae27b1fb6043528911673a0d371b2c 399828 
bind9-dnsutils_9.16.33-1~deb11u1_amd64.deb
 4229dc4561a1b03f5110122dd742322ce5cb9e0d 5139692 
bind9-doc_9.16.33-1~deb11u1_all.deb
 a7d6cf81cdbbd203738df33b54dde8b3fa48e7ad 80152 
bind9-host-dbgsym_9.16.33-1~deb11u1_amd64.deb
 59f1b166ba167490489e4886494d669a16c68b93 305788 
bind9-host_9.16.33-1~deb11u1_amd64.deb
 7e8a7d9d454141cd796efbd491eef011c48524c7 3444592 
bind9-libs-dbgsym_9.16.33-1~deb11u1_amd64.deb
 2452a395560d3fc934370317fd01bf2674cd195c 1410264 
bind9-libs_9.16.33-1~deb11u1_amd64.deb
 34b9975271fbea335d1f4cdabccbf7441915cf3d 263380 
bind9-utils-dbgsym_9.16.33-1~deb11u1_amd64.deb
 c7ab8908f640e734a7ad2d25fe3fe6352c80203d 432200 
bind9-utils_9.16.33-1~deb11u1_amd64.deb
 736e97d11f07a1cc241587c3e70d217d7ee07a7b 15138 
bind9_9.16.33-1~deb11u1_amd64.buildinfo
 c118f4be067913a1403b48502e6b397059b79541 491204 
bind9_9.16.33-1~deb11u1_amd64.deb
 084487f328b7d74e4d75086af674a54bcc6afd57 264736 
bind9utils_9.16.33-1~deb11u1_all.deb
 e76052e3a76072435f15d8bb7d780567e0ec3b15 264736 
dnsutils_9.16.33-1~deb11u1_all.deb
Checksums-Sha256:
 0a6f65c3e9ac6a3ca38cdf4a113d41009586994cbebebafd9e7c3d654ca8b2ae 3266 
bind9_9.16.33-1~deb11u1.dsc
 ec4fbea4b2e368d1824971509e33fa159224ad14b436034c6bcd46104c328d91 5092516 
bind9_9.16.33.orig.tar.xz
 d27787a7d78645f69121270d1f356a6f4dd5088eaadef25d8c7891559ff01036 833 
bind9_9.16.33.orig.tar.xz.asc
 ae3f95ef18d436693ef466228246f6c4c76a396d39996c0258aa3479f5078288 78552 
bind9_9.16.33-1~deb11u1.debian.tar.xz
 4cda6daa98b19f6eb83ae24e5d57b117de52b28c08d2480c4d7517624ead828f 515568 
bind9-dbgsym_9.16.33-1~deb11u1_amd64.deb
 1f2a3f53f4295a65896567b9adf3d2705b417c2e44367395ce00ce26ec1a357d 1764200 
bind9-dev_9.16.33-1~deb11u1_amd64.deb
 231e3f050f2969a5aaa1067df2fa392953aa83b6a59b4c0dbc38c1a0d1c775cd 283768 
bind9-dnsutils-dbgsym_9.16.33-1~deb11u1_amd64.deb
 b049235e8e1936f8cf490bd0c0cfc8fd9d2ab7f6a8fe5bcf0d2edab7e87df194 399828 
bind9-dnsutils_9.16.33-1~deb11u1_amd64.deb
 9b2e1a63fd885c8f44fe15451bf09f0d7414d67883f8f2f51a760f5be37b7290 5139692 
bind9-doc_9.16.33-1~deb11u1_all.deb
 52de511e1140923a87e5868c3f122a74f0371adc461d6abc9195ee35f97c3514 80152 
bind9-host-dbgsym_9.16.33-1~deb11u1_amd64.deb
 f49f3578f75021d3cc764af6a4f7360a65aef1b33a2b7afbbce091fe21ff8b14 305788 
bind9-host_9.16.33-1~deb11u1_amd64.deb
 58ef8b669a5ab20d1e922c617361c615a653108c2522e64613e2fb79a3c71703 3444592 
bind9-libs-dbgsym_9.16.33-1~deb11u1_amd64.deb
 9a5937522c1520c523da22f4b17208c976f8b9845d2330621fed8da5e2350446 1410264 
bind9-libs_9.16.33-1~deb11u1_amd64.deb
 24cdd1a7676c74643dda084148aef4d6dd2f5dc016e320f08e3eb37e7714ac42 263380 
bind9-utils-dbgsym_9.16.33-1~deb11u1_amd64.deb
 4dc8c29c0734881a161f02c4400bf2298708d52e6e7c30f9bc00b3cf4b764581 432200 
bind9-utils_9.16.33-1~deb11u1_amd64.deb
 d00c49eec128679eef2614a0567687a5ff331c466cd51538a4b5c91bda2d08db 15138 
bind9_9.16.33-1~deb11u1_amd64.buildinfo
 40b1755ad58075fbb5e96cc7480ce5719f6a687aa21f015807735cb4979557b5 491204 
bind9_9.16.33-1~deb11u1_amd64.deb
 836106f3620fdd63c69977e37425d2b2a8d962c23050e7e996c0ccd8068dbbc8 264736 
bind9utils_9.16.33-1~deb11u1_all.deb
 1d6c145c04454057278fd8d80de76864d30c37b820cf337382ed8404cb8e481f 264736 
dnsutils_9.16.33-1~deb11u1_all.deb
Files:
 cbcbabe7395bd2f978f8342b1e134610 3266 net optional bind9_9.16.33-1~deb11u1.dsc
 4b31052fd765bfebcca60accb0418090 5092516 net optional bind9_9.16.33.orig.tar.xz
 b33f57b58f134ffede1c106ebcc7ba1a 833 net optional bind9_9.16.33.orig.tar.xz.asc
 9a5c543db3585a99f96ac453b1dc5b47 78552 net optional 
bind9_9.16.33-1~deb11u1.debian.tar.xz
 77129d22d29a7123d866d9bca4639236 515568 debug optional 
bind9-dbgsym_9.16.33-1~deb11u1_amd64.deb
 145b68c068d2b5eda0880537b8119f96 1764200 devel optional 
bind9-dev_9.16.33-1~deb11u1_amd64.deb
 c6090ceadac204be7c1dcf445555fb70 283768 debug optional 
bind9-dnsutils-dbgsym_9.16.33-1~deb11u1_amd64.deb
 00028c5cfb0b32f203e58402985aea7b 399828 net standard 
bind9-dnsutils_9.16.33-1~deb11u1_amd64.deb
 68261a6ab0f336f104aab400932830cc 5139692 doc optional 
bind9-doc_9.16.33-1~deb11u1_all.deb
 2c6116f81483f4f8df95a924b36093bb 80152 debug optional 
bind9-host-dbgsym_9.16.33-1~deb11u1_amd64.deb
 7fbf226eb24ebd9b3cc439e7eec9b7bb 305788 net standard 
bind9-host_9.16.33-1~deb11u1_amd64.deb
 34147ec4488ea1a713c0772a17f4c4ee 3444592 debug optional 
bind9-libs-dbgsym_9.16.33-1~deb11u1_amd64.deb
 d78c6e8ef392405d71396490e388053e 1410264 libs standard 
bind9-libs_9.16.33-1~deb11u1_amd64.deb
 cc2c1522c7f565699dd82be2195c93eb 263380 debug optional 
bind9-utils-dbgsym_9.16.33-1~deb11u1_amd64.deb
 3bf85bd071156cb6d6e15f0d5a9c5016 432200 net optional 
bind9-utils_9.16.33-1~deb11u1_amd64.deb
 8e14f1ee7604f15cff647ac7a7b8d2ca 15138 net optional 
bind9_9.16.33-1~deb11u1_amd64.buildinfo
 f40e609ee136134ed704d6bdd73ecfb9 491204 net optional 
bind9_9.16.33-1~deb11u1_amd64.deb
 688353b53e4045e37684449e99c4a066 264736 oldlibs optional 
bind9utils_9.16.33-1~deb11u1_all.deb
 97aba8c438e9f83560bff7b4882bb660 264736 oldlibs optional 
dnsutils_9.16.33-1~deb11u1_all.deb

-----BEGIN PGP SIGNATURE-----
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=ZM2Y
-----END PGP SIGNATURE-----

--- End Message ---