Re: dns/bind911 and 2019Q4 branch
On 20/10/2019 8:50 pm, Andrea Venturoli wrote: On 2019-10-20 11:26, Mathieu Arnold wrote: The ISC was very clear in that this update[1] is not a security related release, so I have absolutely no plan to merge it. 1: https://lists.isc.org/pipermail/bind-announce/2019-October/001139.html Sorry, I had already opened the bug as Kubilay suggested; fell free to close it, then. I'm confused though, since the link you posted says: To clarify, BIND 9.11.12 is not a security release, but BIND 9.14.7 and 9.15.5 are. The two CVEs disclosed today affect only BIND 9.14 and 9.15; the BIND 9.11 branch is not vulnerable. But on the release notes for 9.14 there are *3* CVEs and one (CVE-2019-6471) is also listed in the release notes for 9.11. ??? bye & Thanks av. All done (issue closed). Thank you for raising the question and asking though Andrea, many security updates are in fact missed, and don't end up in quarterly branches. Users can help us by identify things that slip through the cracks and reporting those issues, and requesting merges where they are necessary ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Re: dns/bind911 and 2019Q4 branch
On 2019-10-20 11:26, Mathieu Arnold wrote: The ISC was very clear in that this update[1] is not a security related release, so I have absolutely no plan to merge it. 1: https://lists.isc.org/pipermail/bind-announce/2019-October/001139.html Sorry, I had already opened the bug as Kubilay suggested; fell free to close it, then. I'm confused though, since the link you posted says: To clarify, BIND 9.11.12 is not a security release, but BIND 9.14.7 and 9.15.5 are. The two CVEs disclosed today affect only BIND 9.14 and 9.15; the BIND 9.11 branch is not vulnerable. But on the release notes for 9.14 there are *3* CVEs and one (CVE-2019-6471) is also listed in the release notes for 9.11. ??? bye & Thanks av. ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
Re: dns/bind911 and 2019Q4 branch
On Sun, Oct 20, 2019 at 11:01:31AM +0200, Andrea Venturoli wrote: > Hello. > > I'm currently testing using the ports quarterly branch. > > I see dns/bind911 was updated from 9.11.11 to 9.11.12 in head. > AFAICT this fixes a security vulnerability. > > Shouldn't this be merged in the 2019Q4 branch? > Will it? The ISC was very clear in that this update[1] is not a security related release, so I have absolutely no plan to merge it. 1: https://lists.isc.org/pipermail/bind-announce/2019-October/001139.html -- Mathieu Arnold signature.asc Description: PGP signature
Re: dns/bind911 and 2019Q4 branch
On 20/10/2019 8:01 pm, Andrea Venturoli wrote: Hello. I'm currently testing using the ports quarterly branch. I see dns/bind911 was updated from 9.11.11 to 9.11.12 in head. AFAICT this fixes a security vulnerability. Shouldn't this be merged in the 2019Q4 branch? Will it? bye & Thanks av. Hi Andrea, Short answer: Yes If there was a Bugzilla issue ("PR: x" in the commit log message) associated with the head commit, please re-open the issue and request a merge of the relevant commit. If there wasn't a Bugzilla issue, please create one: - cc ports-secteam - keyword: security - merge-quarterly ? Thanks! ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
dns/bind911 and 2019Q4 branch
Hello. I'm currently testing using the ports quarterly branch. I see dns/bind911 was updated from 9.11.11 to 9.11.12 in head. AFAICT this fixes a security vulnerability. Shouldn't this be merged in the 2019Q4 branch? Will it? bye & Thanks av. ___ freebsd-ports@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"