Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Thu, Feb 3, 2011 at 07:58:24 +1000, Andrew Pollock wrote: On Wed, Feb 02, 2011 at 09:51:05PM +0100, Moritz Mühlenhoff wrote: Hmm, that was a misunderstanding, then: It was tagged by release managers as not-a-blocker, i.e. it doesn't hold back the release if not fixed, a fix through

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Sat, Feb 12, 2011 at 01:09:30PM +0100, Julien Cristau wrote: On Thu, Feb 3, 2011 at 07:58:24 +1000, Andrew Pollock wrote: On Wed, Feb 02, 2011 at 09:51:05PM +0100, Moritz Mühlenhoff wrote: Hmm, that was a misunderstanding, then: It was tagged by release managers as

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wed, Jan 26, 2011 at 03:24:19PM -0600, Raphael Geissert wrote: Package: isc-dhcp-server Version: 4.1.1-P1-15 Severity: grave Tags: security patch Hi Ari, Just as a public record, the following advisory (CVE-2011-0413[0]) has been published by ISC[1]: When the DHCPv6 server code

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wed, Feb 02, 2011 at 09:15:39PM +0100, Moritz Mühlenhoff wrote: Why was there no maintainer reaction since a week? No we need to prepare a DSA for this :-/ There was no maintainer reaction because I thought previous responses were that it was okay to deal with post-release. Is this now

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Thu, Feb 03, 2011 at 06:33:04AM +1000, Andrew Pollock wrote: On Wed, Feb 02, 2011 at 09:15:39PM +0100, Moritz Mühlenhoff wrote: Why was there no maintainer reaction since a week? No we need to prepare a DSA for this :-/ There was no maintainer reaction because I thought previous

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wed, Feb 02, 2011 at 09:51:05PM +0100, Moritz Mühlenhoff wrote: Hmm, that was a misunderstanding, then: It was tagged by release managers as not-a-blocker, i.e. it doesn't hold back the release if not fixed, a fix through unstable would still have been possible. Any way, not it's too late

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

Package: isc-dhcp-server Version: 4.1.1-P1-15 Severity: grave Tags: security patch Hi Ari, Just as a public record, the following advisory (CVE-2011-0413[0]) has been published by ISC[1]: When the DHCPv6 server code processes a message for an address that was previously declined and

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

user release.debian@packages.debian.org usertag 611217 + squeeze-can-defer tag 611217 + squeeze-ignore thanks On Wed, 2011-01-26 at 15:24 -0600, Raphael Geissert wrote: When the DHCPv6 server code processes a message for an address that was previously declined and internally tagged as

Processed: Re: Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

Processing commands for cont...@bugs.debian.org: user release.debian@packages.debian.org Setting user to release.debian@packages.debian.org (was a...@adam-barratt.org.uk). usertag 611217 + squeeze-can-defer Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message There were

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wednesday 26 January 2011 15:24:19 Raphael Geissert wrote: Hi Ari, Andrew, of course :) (Thanks to adsb for pointing it out) Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject