Bind security announce
Hello, ISC published new versions of their DNS server: bind. This version is corrects bug and one security issue (classified as High) that impacts the version shipped in Debian Lenny. It has been published yeterday and I still can't see any update in the security repository. Is there any plan to upgrade the bind version in debian to 9.6-ESV-R3 which correct the bugs? https://www.isc.org/software/bind/advisories/cve-2010-3613 https://www.isc.org/software/bind/advisories/cve-2010-3614
Re: Bind security announce
On Thu, 02 Dec 2010 08:34:40 -1000, Debian security wrote: Hello, ISC published new versions of their DNS server: bind. This version is corrects bug and one security issue (classified as High) that impacts the version shipped in Debian Lenny. It has been published yeterday and I still can't see any update in the security repository. Is there any plan to upgrade the bind version in debian to 9.6-ESV-R3 which correct the bugs? https://www.isc.org/software/bind/advisories/cve-2010-3613 https://www.isc.org/software/bind/advisories/cve-2010-3614 This is the first I've heard of these issues. You can submit a bug report against bind9 to encourage the maintainer to start working on a fix for unstable and a backport for lenny. It would be even more helpful if you can extract the patches, apply them, and send a diff against the current packages. Mike -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101202140928.24213d1f.michael.s.gilb...@gmail.com
Re: Bind security announce
On 2010-12-02, Debian security debian-secur...@mana.pf wrote: --=-PKfS7p5OBjSN/MdjuBqP Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Hello, ISC published new versions of their DNS server: bind. This version is corrects bug and one security issue (classified as High) that impacts the version shipped in Debian Lenny. It has been published yeterday and I still can't see any update in the security repository. Is there any plan to upgrade the bind version in debian to 9.6-ESV-R3 which correct the bugs? An update is currently being prepared. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/slrniffv0f.2e3@inutil.org
Re: Bind security announce
On 02/12/10 14:09 -0500, Michael Gilbert wrote: https://www.isc.org/software/bind/advisories/cve-2010-3613 https://www.isc.org/software/bind/advisories/cve-2010-3614 This is the first I've heard of these issues. You can submit a bug report against bind9 to encourage the maintainer to start working on a fix for unstable and a backport for lenny. It would be even more helpful if you can extract the patches, apply them, and send a diff against the current packages. Ubuntu issued a USN with fixed packages yesterday. The patches should apply to the corresponding debian versions. http://www.ubuntu.com/usn/usn-1025-1 regards Rolf -- ... And there comes a time when one must take a position that is neither safe, nor politic, nor popular but one must take it because one's conscience tells one that it is right. — Martin Luther King, Jr. signature.asc Description: Digital signature